building-red-team-c2-infrastructure-with-havoc

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes plaintext operator passwords in the Havoc profile, which requires the agent to handle and reproduce secret values verbatim (high exfiltration risk).

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). These links point to Havoc C2 GitHub repositories, deployment guides, and a teamserver endpoint — hosted on legitimate sites (GitHub, Microsoft) but explicitly provide offensive C2 tooling, payload builders, and instructions that can be used to distribute/operate malware, so they are high-risk in this context.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This content is explicitly focused on building and operating a command-and-control (C2) framework (Havoc) with payload generation, post‑exploitation commands (mimikatz, token theft, lateral movement, process injection), OPSEC evasion (redirectors, domain-fronting hints, custom URIs/user‑agents, sleep/jitter, indirect syscalls/stack_duplication), and automation scripts to create listeners/generate payloads and manage agents — all of which are deliberate backdoor/remote‑control and credential‑theft behaviors consistent with intentional malicious abuse.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's setup explicitly runs "git clone https://github.com/HavocFramework/Havoc.git" and then builds the fetched repository (make ts-build / client-build), meaning remote code from that URL is fetched and executed as a required dependency at runtime, so the GitHub Havoc repo is a high-confidence runtime external code execution risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill includes sudo-based package installation and instructions to modify system-level files (e.g., /etc/nginx, Let's Encrypt keys) and bind privileged ports to deploy a C2 server—actions that change the host state and can compromise the machine.