Bifrost: Open-source post-exploitation using Discord API
What’s Bifrost?
Bifrost is an open-source Discord BOT that works as Command and Control (C2). This C2 uses Discord API for communication between clients and servers.
Developed with Python, this C2 has multiples features for post-exploitation.
How Bifrost works?
As mentioned before, Bifrost is basically a discord bot that receives commands from the Discord user and does a pre-defined task.
So for every client that you are going to “infect”, you will send a copy of this discord bot, and it will respond to you using discord. This allows you to hide behind Discord service being stealth and have a secure connection between you and your client.
Disclaimer: This project should be used for authorized testing or educational purposes only.
Virustotal
Virustotal detection was 5/67 when there was no defense against sandbox execution.
Antivirus that detected Bifrost as malicious was SecureAge APEX, Jiangmin, Cynet, Zillya, and Palo Alto Networks
Bifrost Features
- Multiple clients.
- Multi-platform support.
- Keylogger.
- Antivirus enumeration.
- Real-time communication.
- Encrypted(HTTPS) communication.
- Fast and stealth communication through Discord API.
- No need for public service.
- Screenshot gathering.
- Download and upload files.
Install & Use
Copyright (C) 2021 th3r4ven
