Skip to content

AUCyberClub/NorthStarC2

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
NorthstarStager
NorthstarStager
 
 
css
css
 
 
files
files
 
 
functions
functions
 
 
js
js
 
 
sfiles
sfiles
 
 
ss
ss
 
 
vendor
vendor
 
 
wwiki
wwiki
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
banner.png
banner.png
 
 
chckinteract.php
chckinteract.php
 
 
chcksid.php
chcksid.php
 
 
clients.php
clients.php
 
 
conn.php
conn.php
 
 
getin.php
getin.php
 
 
getjuice.php
getjuice.php
 
 
getresponse.php
getresponse.php
 
 
index.php
index.php
 
 
install.sh
install.sh
 
 
interact.php
interact.php
 
 
ipAndUserAgent.php
ipAndUserAgent.php
 
 
login.php
login.php
 
 
logout.php
logout.php
 
 
logs.php
logs.php
 
 
northstar.sql
northstar.sql
 
 
session.php
session.php
 
 
smanage.php
smanage.php
 
 
update.php
update.php
 
 
user.php
user.php
 
 

Repository files navigation

GPL 3.0
NorthStarC2 is an open-source command and control framework developed for educational purposes by Engin Demirbilek, a senior majoring in Computer Engineering at Ankara University Faculty of Engineering who is also the leader of the Ankara University Cyber Security Club(AUCC) at the time of the release of this tool.

NorthStar C2 Framework consists of two applications, a server-side GUI web application for managing sessions and a client-side stager to communicate with C2 server.

This is an imported repository and may not be up-to-date. To get latest updates check out original repository: NorthStarC2

Quick Installation

git clone https://github.com/EnginDemirbilek/NorthStarC2.git
cd NorthStarC2/
chmod +x install.sh
sudo ./install.sh

In order to install the NorthStar C2 properly and get the best experience possible, please refer to Wiki page

NorthStarC2 Features

This project is being maintained and updated constantly so make sure to check back for new features and modules! See Roadmap.

Languages ​​and technologies used in the NorthStar C2:
Client-Side: C # .NET
Server-Side: PHP, JS, HTML, CSS

Currently, the client-side application (NorthStar Stager) has the following functions:

  • Connecting to the C2 Server via HTTP or HTTPS,
  • Receiving commands from the server-side application and responding to the command via HTTP methods,
  • Encrypting the communication traffic with XOR and obfuscating it with Base64,
  • Copying itself to a different directory,
  • Persistance through start-up folders and schtasks,
  • Host Reconnaissance : Hostname, Username, Current Privileges, Exec Dir and Process ID,
  • Privilege Escalation : UAC bypass through eventvwr.exe,
  • Taking screenshots and saving them into a directory,
  • Uploading any file to the victim machine,
  • Downloading any file from the victim machine,
  • SAM dump via reg save command,
  • Changing the working directory,
  • View the files and folders in the directory,
  • Viewing the contents of the files,
  • Deleting files,
  • Send commands directly on cmd.exe.

Currently, server-side application has the following functions:

  • User-Friendly GUI with everything needed to manage sessions opened by the stager.

Contributors

During the development process these guys spent their hours on this project: Selçuk Demir and Hasan Ekin Dumanoğulları.

GUI Preview

alt text


alt text


alt text

Acknowledgements

For theme : RuangAdmin

For most of the source code : StackOverflow

About

.NET and PHP Powered Command Control Framework

Resources

Readme

License

GPL-3.0 license

Security policy

Security policy
Activity
Custom properties

Stars

4 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages