The Slingshot CS Matrix Edition was made in collaboration with SANS, Ryan O'Grady, and C2 Matrix contributors. The goal is to lower the learning curve of installing each C2 framework and getting you straight to testing which C2s work against your organization. Slingshot C2 Matrix Edition is ideal for red team, blue team, and purple team functions.
Slingshot C2 Matrix Edition brings the following C2s pre-installed:
Slingshot - C2 Matrix Edition also includes a number of other tools that red teamers and penetration testers will find useful such as VECTR for tracking red and purple team exercises.
SANS Slingshot C2 Matrix Edition 2020.5 can be downloaded from here: https://www.sans.org/slingshot-vmware-linux/download
Ensure you have vmware Workstation, Player, or Fusion so that it can be imported. Double clicking it and clicking import should do the trick:
The default network device is configured as NAT for your own safety and to start of with a basic lab.
Login with the user: slingshot and password: slingshot
Double click MATE Terminal to change your password with the passwd command:
What is the username and password of Slingshot?
Username: slingshotPassword: slingshot
Why is the image so big? The various Command and Control frameworks bring a number of dependencies. As we wanted this to be a standalone image, we have pre-downloaded and installed them for you.
What is the SHA256 sum:
How do I start VECTR:
VECTR is a tool for managing and tracking red and purple team exercises. Start it like this:
Then open Firefox and visit VECTR homepage: https://vectr.internal:8081
Username: adminPassword: 11_ThisIsTheFirstPassword_11
cd /opt/vectr/Edit docker-compose.ymlChange line that states "image: securityriskadvisors/vectr_tomcat:5.5.7" to "image: securityriskadvisors/vectr_tomcat:5.7.0"Save./vectr-bootstrap.sh
Something is bound to port 80, 443, or something else, how do I stop it?
2020.5:sudo service apache2 stop2020.4:cd /opt/apfellsudo ./stop_apfell.shsudo service postgresql stopsudo service apache2 stop