5 matches found
PT-2025-16955
Name of the Vulnerable Software and Affected Versions DeimosC2 version 1.1.0-Beta Description The graph functionality of DeimosC2 is susceptible to Stored Cross-Site Scripting XSS. This allows for the potential theft of session cookies and unauthorized access to the C2 server. DeimosC2 is a...
Exploit for CVE-2025-26244
CVE-2025-26244-POC The code to exploit this vulnerability can...
Lazarus Group's infrastructure reuse leads to discovery of new malware
In the Lazarus Groups latest campaign, which we detailed in a recent blog, the North Korean state-sponsored actor is exploiting CVE-2022-47966, a ManageEngine ServiceDesk vulnerability to deploy multiple threats. In addition to their "QuiteRAT" malware, which we covered in the blog, we also...
DeimosC2: What SOC Analysts and Incident Responders Need to Know About This C&C Framework
This report provides defenders and security operations center teams with the technical details they need to know should they encounter the DeimosC2 C&C framework...
DeimosC2 - A Golang Command And Control Framework For Post-Exploitation
DeimosC2 is a post-exploitation Command & Control C2 tool that leverages multiple communication methods in order to control machines that have been compromised. DeimosC2 server and agents works on, and has been tested on, Windows, Darwin, and Linux. It is entirely written in Golang with a front e...