c2structs

package

v1.3.13 Latest Latest Go to latest Published: Mar 29, 2024 License: BSD-3-Clause Imports: 9 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/MythicMeta/MythicContainer

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
Variables
type C2ConfigCheckMessage
type C2ConfigCheckMessageResponse
type C2GetDebugOutputMessage
type C2GetDebugOutputMessageResponse
type C2GetIOCMessage
type C2GetIOCMessageResponse
type C2GetRedirectorRuleMessage
type C2GetRedirectorRuleMessageResponse
type C2HostFileMessage
type C2HostFileMessageResponse
type C2OPSECMessage
type C2OPSECMessageResponse
type C2Parameter
type C2ParameterDictionary
type C2ParameterType
type C2Parameters
- func (arg *C2Parameters) GetArg(name string) (interface{}, error)
- func (arg *C2Parameters) GetArgNames() []string
- func (arg *C2Parameters) GetArrayArg(name string) ([]string, error)
- func (arg *C2Parameters) GetBooleanArg(name string) (bool, error)
- func (arg *C2Parameters) GetChooseMultipleArg(name string) ([]string, error)
- func (arg *C2Parameters) GetChooseOneArg(name string) (string, error)
- func (arg *C2Parameters) GetCryptoArg(name string) (CryptoArg, error)
- func (arg *C2Parameters) GetDateArg(name string) (string, error)
- func (arg *C2Parameters) GetDictionaryArg(name string) (map[string]string, error)
- func (arg *C2Parameters) GetFileArg(name string) (string, error)
- func (arg *C2Parameters) GetNumberArg(name string) (float64, error)
- func (arg *C2Parameters) GetStringArg(name string) (string, error)
- func (arg *C2Parameters) GetTypedArrayArg(name string) ([][]string, error)
type C2Profile
type C2RPCGetFileMessage
type C2RPCGetFileMessageResponse
type C2RPCListFileMessage
type C2RPCListFileMessageResponse
type C2RPCOtherServiceRPCMessage
type C2RPCOtherServiceRPCMessageResponse
type C2RPCReSyncMessage
type C2RPCReSyncMessageResponse
type C2RPCRemoveFileMessage
type C2RPCRemoveFileMessageResponse
type C2RPCStartServerMessage
type C2RPCStartServerMessageResponse
type C2RPCStopServerMessage
type C2RPCStopServerMessageResponse
type C2RPCWriteFileMessage
type C2RPCWriteFileMessageResponse
type C2SampleMessageMessage
type C2SampleMessageResponse
type C2SyncMessage
type C2SyncMessageResponse
type C2_GET_REDIRECTOR_RULE_STATUS
type C2_HOST_FILE_STATUS
type CryptoArg
type IOC
type RabbitmqDirectMethod
type RabbitmqRPCMethod
type SimplifiedC2ParameterDictionary

Constants ¶

View Source

const (
	C2_PARAMETER_TYPE_STRING          C2ParameterType = "String"
	C2_PARAMETER_TYPE_BOOLEAN                         = "Boolean"
	C2_PARAMETER_TYPE_CHOOSE_ONE                      = "ChooseOne"
	C2_PARAMETER_TYPE_CHOOSE_MULTIPLE                 = "ChooseMultiple"
	C2_PARAMETER_TYPE_ARRAY                           = "Array"
	C2_PARAMETER_TYPE_DATE                            = "Date"
	C2_PARAMETER_TYPE_DICTIONARY                      = "Dictionary"
	C2_PARAMETER_TYPE_NUMBER                          = "Number"
	C2_PARAMETER_TYPE_TYPED_ARRAY                     = "TypedArray"
	C2_PARAMETER_TYPE_FILE                            = "File"
)

Variables ¶

View Source

var (
	AllC2Data containerC2Data
)

Functions ¶

This section is empty.

Types ¶

type C2ConfigCheckMessage ¶

type C2ConfigCheckMessage struct {
	C2Parameters
}

type C2ConfigCheckMessageResponse ¶

type C2ConfigCheckMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
	Message string `json:"message"`
}

type C2GetDebugOutputMessage ¶

type C2GetDebugOutputMessage struct {
	Name string `json:"c2_profile_name"`
}

type C2GetDebugOutputMessageResponse ¶

type C2GetDebugOutputMessageResponse struct {
	Success               bool   `json:"success"`
	Error                 string `json:"error"`
	Message               string `json:"message"`
	InternalServerRunning bool   `json:"server_running"`
}

type C2GetIOCMessage ¶ added in v1.1.0

type C2GetIOCMessage struct {
	C2Parameters
}

C2GetIOCMessage given the following C2 configuration, determine the IOCs that a defender should look for

type C2GetIOCMessageResponse ¶ added in v1.1.0

type C2GetIOCMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
	IOCs    []IOC  `json:"iocs"`
}

C2GetIOCMessageResponse the resulting set of IOCs that a defender should look out for based on the C2GetIOCMessage configuration

type C2GetRedirectorRuleMessage ¶

type C2GetRedirectorRuleMessage struct {
	C2Parameters
}

type C2GetRedirectorRuleMessageResponse ¶

type C2GetRedirectorRuleMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
	Message string `json:"message"`
}

type C2HostFileMessage ¶ added in v1.1.0

type C2HostFileMessage struct {
	Name     string `json:"c2_profile_name"`
	FileUUID string `json:"file_uuid"`
	HostURL  string `json:"host_url"`
}

type C2HostFileMessageResponse ¶ added in v1.1.0

type C2HostFileMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
}

type C2OPSECMessage ¶

type C2OPSECMessage struct {
	C2Parameters
}

type C2OPSECMessageResponse ¶

type C2OPSECMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
	Message string `json:"message"`
}

type C2Parameter ¶

type C2Parameter struct {
	Description       string                  `json:"description"`
	Name              string                  `json:"name"`
	DefaultValue      interface{}             `json:"default_value"`
	Randomize         bool                    `json:"randomize"`
	FormatString      string                  `json:"format_string"`
	ParameterType     C2ParameterType         `json:"parameter_type"`
	Required          bool                    `json:"required"`
	VerifierRegex     string                  `json:"verifier_regex"`
	IsCryptoType      bool                    `json:"crypto_type"`
	Choices           []string                `json:"choices"`
	DictionaryChoices []C2ParameterDictionary `json:"dictionary_choices"`
}

type C2ParameterDictionary ¶

type C2ParameterDictionary struct {
	Name         string `json:"name"`
	DefaultValue string `json:"default_value"`
	DefaultShow  bool   `json:"default_show"`
}

type C2ParameterType ¶

type C2ParameterType = string

C2_SYNC STRUCTS

type C2Parameters ¶ added in v1.1.0

type C2Parameters struct {
	Name       string                 `json:"c2_profile_name"`
	Parameters map[string]interface{} `json:"parameters"`
}

func (*C2Parameters) GetArg ¶ added in v1.1.0

func (arg *C2Parameters) GetArg(name string) (interface{}, error)

func (*C2Parameters) GetArgNames ¶ added in v1.1.0

func (arg *C2Parameters) GetArgNames() []string

func (*C2Parameters) GetArrayArg ¶ added in v1.1.0

func (arg *C2Parameters) GetArrayArg(name string) ([]string, error)

func (*C2Parameters) GetBooleanArg ¶ added in v1.1.0

func (arg *C2Parameters) GetBooleanArg(name string) (bool, error)

func (*C2Parameters) GetChooseMultipleArg ¶ added in v1.1.0

func (arg *C2Parameters) GetChooseMultipleArg(name string) ([]string, error)

func (*C2Parameters) GetChooseOneArg ¶ added in v1.1.0

func (arg *C2Parameters) GetChooseOneArg(name string) (string, error)

func (*C2Parameters) GetCryptoArg ¶ added in v1.1.0

func (arg *C2Parameters) GetCryptoArg(name string) (CryptoArg, error)

func (*C2Parameters) GetDateArg ¶ added in v1.1.0

func (arg *C2Parameters) GetDateArg(name string) (string, error)

func (*C2Parameters) GetDictionaryArg ¶ added in v1.1.0

func (arg *C2Parameters) GetDictionaryArg(name string) (map[string]string, error)

func (*C2Parameters) GetFileArg ¶ added in v1.1.0

func (arg *C2Parameters) GetFileArg(name string) (string, error)

func (*C2Parameters) GetNumberArg ¶ added in v1.1.0

func (arg *C2Parameters) GetNumberArg(name string) (float64, error)

func (*C2Parameters) GetStringArg ¶ added in v1.1.0

func (arg *C2Parameters) GetStringArg(name string) (string, error)

func (*C2Parameters) GetTypedArrayArg ¶ added in v1.3.13

func (arg *C2Parameters) GetTypedArrayArg(name string) ([][]string, error)

type C2Profile ¶

type C2Profile struct {
	Name                       string                                                                                   `json:"name"`
	Description                string                                                                                   `json:"description"`
	Author                     string                                                                                   `json:"author"`
	IsP2p                      bool                                                                                     `json:"is_p2p"`
	IsServerRouted             bool                                                                                     `json:"is_server_routed"`
	ServerBinaryPath           string                                                                                   `json:"-"`
	ServerFolderPath           string                                                                                   `json:"-"`
	ConfigCheckFunction        func(message C2ConfigCheckMessage) C2ConfigCheckMessageResponse                          `json:"-"`
	GetRedirectorRulesFunction func(message C2GetRedirectorRuleMessage) C2GetRedirectorRuleMessageResponse              `json:"-"`
	OPSECCheckFunction         func(message C2OPSECMessage) C2OPSECMessageResponse                                      `json:"-"`
	GetIOCFunction             func(message C2GetIOCMessage) C2GetIOCMessageResponse                                    `json:"-"`
	SampleMessageFunction      func(message C2SampleMessageMessage) C2SampleMessageResponse                             `json:"-"`
	HostFileFunction           func(message C2HostFileMessage) C2HostFileMessageResponse                                `json:"-"`
	CustomRPCFunctions         map[string]func(message C2RPCOtherServiceRPCMessage) C2RPCOtherServiceRPCMessageResponse `json:"-"`
}

type C2RPCGetFileMessage ¶

type C2RPCGetFileMessage struct {
	Name     string `json:"c2_profile_name"`
	Filename string `json:"filename"`
}

type C2RPCGetFileMessageResponse ¶

type C2RPCGetFileMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
	Message []byte `json:"message"`
}

type C2RPCListFileMessage ¶

type C2RPCListFileMessage struct {
	Name string `json:"c2_profile_name"`
}

type C2RPCListFileMessageResponse ¶

type C2RPCListFileMessageResponse struct {
	Success bool     `json:"success"`
	Error   string   `json:"error"`
	Files   []string `json:"files"`
}

type C2RPCOtherServiceRPCMessage ¶

type C2RPCOtherServiceRPCMessage struct {
	ServiceName                 string                 `json:"service_name"` //required
	ServiceRPCFunction          string                 `json:"service_function"`
	ServiceRPCFunctionArguments map[string]interface{} `json:"service_arguments"`
}

type C2RPCOtherServiceRPCMessageResponse ¶

type C2RPCOtherServiceRPCMessageResponse struct {
	Success bool                   `json:"success"`
	Error   string                 `json:"error"`
	Result  map[string]interface{} `json:"result"`
}

type C2RPCReSyncMessage ¶

type C2RPCReSyncMessage struct {
	Name string `json:"c2_profile_name"`
}

type C2RPCReSyncMessageResponse ¶

type C2RPCReSyncMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
}

type C2RPCRemoveFileMessage ¶

type C2RPCRemoveFileMessage struct {
	Name     string `json:"c2_profile_name"`
	Filename string `json:"filename"`
}

type C2RPCRemoveFileMessageResponse ¶

type C2RPCRemoveFileMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
}

type C2RPCStartServerMessage ¶

type C2RPCStartServerMessage struct {
	Name string `json:"c2_profile_name"`
}

type C2RPCStartServerMessageResponse ¶

type C2RPCStartServerMessageResponse struct {
	Success               bool   `json:"success"`
	Error                 string `json:"error"`
	Message               string `json:"message"`
	InternalServerRunning bool   `json:"server_running"`
}

type C2RPCStopServerMessage ¶

type C2RPCStopServerMessage struct {
	Name string `json:"c2_profile_name"`
}

type C2RPCStopServerMessageResponse ¶

type C2RPCStopServerMessageResponse struct {
	Success               bool   `json:"success"`
	Error                 string `json:"error"`
	Message               string `json:"message"`
	InternalServerRunning bool   `json:"server_running"`
}

type C2RPCWriteFileMessage ¶

type C2RPCWriteFileMessage struct {
	Name     string `json:"c2_profile_name"`
	Filename string `json:"filename"`
	Contents []byte `json:"contents"`
}

type C2RPCWriteFileMessageResponse ¶

type C2RPCWriteFileMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
	Message string `json:"message"`
}

type C2SampleMessageMessage ¶ added in v1.1.0

type C2SampleMessageMessage struct {
	C2Parameters
}

C2SampleMessageMessage - Generate sample C2 Traffic based on this configuration so that the operator and developer can more easily troubleshoot

type C2SampleMessageResponse ¶ added in v1.1.0

type C2SampleMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
	Message string `json:"message"`
}

C2SampleMessageResponse - Provide a string representation of the C2 Traffic that the corresponding C2SampleMessageMessage configuration would generate

type C2SyncMessage ¶

type C2SyncMessage struct {
	Profile          C2Profile     `json:"c2_profile"`
	Parameters       []C2Parameter `json:"parameters"`
	ContainerVersion string        `json:"container_version"`
}

type C2SyncMessageResponse ¶

type C2SyncMessageResponse struct {
	Success bool   `json:"success"`
	Error   string `json:"error"`
}

type C2_GET_REDIRECTOR_RULE_STATUS ¶

type C2_GET_REDIRECTOR_RULE_STATUS = string

type C2_HOST_FILE_STATUS ¶ added in v1.1.0

type C2_HOST_FILE_STATUS = string

type CryptoArg ¶ added in v1.1.0

type CryptoArg struct {
	Value  string `json:"value" mapstructure:"value"`
	EncKey string `json:"enc_key" mapstructure:"enc_key"`
	DecKey string `json:"dec_key" mapstructure:"dec_key"`
}

type IOC ¶ added in v1.1.0

type IOC struct {
	Type string `json:"type" mapstructure:"type"`
	IOC  string `json:"ioc" mapstructure:"ioc"`
}

IOC identify the type of ioc with Type and the actual IOC value An example could be a Type of URL with the actual IOC value being the configured callback URL with URI parameters

type RabbitmqDirectMethod ¶

type RabbitmqDirectMethod struct {
	RabbitmqRoutingKey         string
	RabbitmqProcessingFunction func([]byte)
}

type RabbitmqRPCMethod ¶

type RabbitmqRPCMethod struct {
	RabbitmqRoutingKey         string
	RabbitmqProcessingFunction func([]byte) interface{}
}

type SimplifiedC2ParameterDictionary ¶

type SimplifiedC2ParameterDictionary struct {
	Name  string `json:"name"`
	Value string `json:"value"`
	Key   string `json:"key"`
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL