link: command and control framework written in rust

by do son · May 23, 2021

link

link provides MacOS, Linux, and Windows implants which may lack the necessary evasive tradecraft provided by other more mature command and control frameworks.

Tested on Linux only.

Features

Hopefully, this list expands for humans to actually want to use this:

HTTPS communication
Process injection
In-memory .NET assembly execution
SharpCollection tools
sRDI implementation for shellcode generation
Windows link reloads DLLs from disk into the current process

Install

$ git clone https://github.com/postrequest/link
$ cd link/
$ ./kali-install.sh

Notes

All links take a long time to generate on the first time but will be much quicker on subsequent generations.
Building MacOS links relies on the osxcross toolchain. When generating the first MacOS link, link will clone and build osxcross locally. This takes a lot of time but is only required once.

Offline

If you require link to work offline, ensure that you have generated links for all targets and installed SharpCollection (if required). This can be done by generating links and running sharp init like so:

🔗 > generate 192.168.1.1:8443

please wait...                                                                                                                                             

link successfully built

output: link.exe

output: link.dll

output: link.bin

🔗 > generate-osx 192.168.1.1:8443

please wait...

link successfully built

output: link

🔗 > generate-linux 192.168.1.1:8443

please wait...

link successfully built

output: link

🔗 > sharp init

download SharpCollection

downloaded

🔗 >