id: supershell-c2 info: name: Supershell C2 - Detect author: pussycat0x severity: info description: | Supershell is a C2 remote control platform accessed through WEB services. By establishing a reverse SSH tunnel, a fully interactive shell can be obtained, and it supports multi-platform architecture Payload. reference: - https://twitter.com/S4nsLimit3/status/1693619836339859497 - https://github.com/tdragon6/Supershell/blob/main/README_EN.md metadata: verified: true max-request: 1 fofa-query: icon_hash="-1010228102" tags: c2,ir,osint,supershell,panel http: - method: GET path: - '{{BaseURL}}' host-redirects: true matchers-condition: and matchers: - type: word part: body words: - 'Supershell - 登录' - type: status status: - 200 # digest: 4b0a00483046022100bdce1bbaea1c70968c31ec72bb56feee26a202a8f6b08265fbbf159cc16640b102210091eb2061e5587873505478b7cea53cf34485dd1b75b300f4c1f6c52d5c905a48:922c64590222798bb761d5b6d8e72950