Sliver

Sliver is an open-source command-and-control (C2) framework used by red teams and advanced threat actors. It generates implants that work across multiple architectures and uses various callback protocols, including DNS, TCP, and HTTP/S.

Known Variants

Regularly updated to support additional callback protocols and functionalities.

Mitigation Strategies

Monitor for C2 traffic signatures, deploy deception tools like honeypots, and enforce strict network access controls.

Targeted Industries or Sectors

Often used in penetration tests but abused by attackers targeting IT infrastructure and critical systems.

Associated Threat Actors

Used by professional red teams and advanced persistent threat groups for stealthy operations.

References

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Hunt Intelligence, Inc.