Tool: Mythic

Description

[Mythic](https://attack.mitre.org/software/S0699) is an open source, cross-platform post-exploitation/command and control platform. [Mythic](https://attack.mitre.org/software/S0699) is designed to "plug-n-play" with various agents and communication channels.(Citation: Mythic Github)(Citation: Mythic SpecterOps)(Citation: Mythc Documentation) Deployed [Mythic](https://attack.mitre.org/software/S0699) C2 servers have been observed as part of potentially malicious infrastructure.(Citation: RecordedFuture 2021 Ad Infra)

External References

• mitre-attack
• RecordedFuture 2021 Ad Infra
• Mythic Github
• Mythic SpecterOps
• Mythc Documentation

Techniques Used by This Tool

• T1008 — Fallback Channels
• T1030 — Data Transfer Size Limits
• T1071.001 — Web Protocols
• T1071.002 — File Transfer Protocols
• T1071.004 — DNS
• T1090.001 — Internal Proxy
• T1090.002 — External Proxy
• T1090.004 — Domain Fronting
• T1095 — Non-Application Layer Protocol
• T1119 — Automated Collection
• T1132 — Data Encoding
• T1572 — Protocol Tunneling
• T1573.002 — Asymmetric Cryptography