sliver
There are multiple commands from type ‘sliver’ to controll the sliver-server via API.
start_https_listener
Start an HTTPS-Listener
###
commands:
- type: sliver
cmd: start_https_listener
host: 0.0.0.0
port: 443
- host
Interface to bind server to.
- Type:
str
- Default:
0.0.0.0
- port
TCP-Listen port
- Type:
int
- Default:
443
- domain
Limit responses to specific domain
- Type:
str
- Default:
`` ``
- website
Website name
- Type:
str
- Default:
`` ``
- acme
Attempt to provision a let’s encrypt certificate
- Type:
bool
- Default:
False
- persistent
Make persistent across restarts.
- Type:
bool
- Default:
False
- enforce_otp
Enable or disable OTP authentication
- Type:
bool
- Default:
True
- randomize_jarm
Enable randomized Jarm fingerprints
- Type:
bool
- Default:
True
- long_poll_timeout
Server-Side long poll timeout(in seconds)
- Type:
int
- Default:
1
- long_poll_jitter
Server-Side long poll jitter(in seconds)
- Type:
int
- Default:
2
- timeout
Command timeout in seconds.
- Type:
int
- Default:
60
generate_implant
Generate a new sliver binary and saves the implant to a given path or to /tmp/<name>.
###
commands:
- type: sliver
cmd: start_https_listener
host: 0.0.0.0
port: 443
- type: sliver
cmd: generate_implant
name: "linux_implant"
target: linux/amd64
- target
Compile the binary for the given operatingsystem to the given architecture. The following targets are supported:
darwin/amd64
darwin/arm64
linux/386
linux/amd64
windows/386
windows/amd64
- Type:
str
- Default:
linux/amd64
- c2url
Url which is used by the implant to find the C2 server.
- Type:
str
- Required:
True
- format
Specifies the output format for the implant. Valid formats are:
EXECUTABLE
SERVICE
SHARED_LIB
SHELLCODE
- Type:
str
- Default:
EXECUTABLE
- name
Name of the Implant
- Type:
str
- Required:
True
- filepath
The local filepath to save the implant to.
- Type:
str
- Default:
/tmp/<name>
- IsBeacon
Generate a beacon binary
- Type:
bool
- Default:
False
- RunAtLoad
Run the implant entrypoint from DllMain/Constructor(shared library only)
- Type:
bool
- Default:
False
- Evasion
Enable evasion features (e.g. overwrite user space hooks)
- Type:
bool
- Default:
False- Type:
bool
- Default:
False