DeimosC2 is a post-exploitation Command & Control (C2) tool that leverages multiple communication methods in order to control machines that have been compromised. It is entirely written in Golang with a front end written in Vue.js.

Current DeimosC2 supports the following Communication methods:

• TCP
• HTTPS
• DoH (DNS over HTTPS)
• QUIC

We are supporting the compilation on the fly of multiple Operating Systems as well as architectures and processor types. This is a built in feature of Golang and one of the reasons we went this way. Current compile options are:

• Linux
• Android
• Windows
• Darwin

DeimosC2 was developed to be very flexible for others to contribute and throughout this guide we will show you how to contribute. Some key benefits and features of Deimos are:

• Customized version of GoObfuscate that works for Windows, Darwin, and Linux
• Modules that communicate over RPC meaning modules can be written in any language as long as they talk over RPC to the C2 server
• Archiving capabilities of logs and database for historical evidence or backup capabilities
• Fully functional UI that allows for easy use of the tool
• WebShells that can be leveraged to control webservers through the C2 without ever dropping an agent (limited on modules)
• And much much more.