Revenant is a lightweight, flexible C++ framework that transforms HTTP into a covert C2 infrastructure for remote control of victim devices. Its features include encrypted tunneling, multi-victim management, and stealthy communication, making it suitable for red team exercises and security testing. #Revenant #CommandAndControl #ReverseShell
Keypoints
- Revenant creates a stealthy reverse shell infrastructure using HTTP requests and responses.
- The framework integrates Cloudflared tunnels for location-agnostic and port-forwarding-free access.
- Revenant supports encrypted HTTPS communication to blend traffic with normal web activity.
- It manages multiple victims with device-specific identification and persistent logging.
- The payloads are designed for both Windows and Linux systems, enabling remote command execution behind firewalls or NAT.