building-c2-infrastructure-with-sliver-framework

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 1.00). Both URLs are high-risk because sliver.sh/install is an install script for a dual-use C2 framework (direct curl|bash installation is dangerous) and c2.example.com is a C2 callback/redirector domain used to host or deliver implants, making them suitable for malware distribution.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This content is explicitly malicious in intent: it is a step‑by‑step playbook to deploy resilient C2 infrastructure and redirectors, generate implants/beacons and shellcode, enable evasion (domain fronting, HTTPS, redirectors), automate listener and implant creation, and perform post‑exploitation actions (in‑memory execution, DLL sideloading including mimikatz, pivoting/port‑forwarding, socks5) — all of which enable remote code execution, credential theft, persistent backdoors and data exfiltration.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly tells the user to fetch-and-execute a public installer ("curl https://sliver.sh/install | sudo bash") and the included scripts (scripts/process.py) perform live nslookup/SSL/socket checks against externally supplied domains/IPs, so the skill clearly ingests open third‑party content that can materially influence actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill instructs at runtime to run an installation command that fetches and executes remote code — "curl https://sliver.sh/install | sudo bash" — which is a required install step and thus a high-risk external dependency.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt instructs installing software with sudo, editing system/NGINX/iptables configs, starting systemctl services, and creating C2 implants—all privileged actions that modify the host state and require elevated access.