Skip to main content
Securitydvcrn

pentest-c2-operator

Set up authorized C2 simulation workflows and measure defensive detection outcomes.

Stars
15
Source
dvcrn/openclaw-skills-marketplace
Updated
2026-05-29
Slug
dvcrn--openclaw-skills-marketplace--pentest-c2-operator
View on GitHubRaw SKILL.md

// install — copy + paste into any project

mkdir -p .claude/skills && curl -fsSL https://raw.githubusercontent.com/dvcrn/openclaw-skills-marketplace/HEAD/plugins/0x-professor--pentest-c2-operator/skills/pentest-c2-operator/SKILL.md -o .claude/skills/pentest-c2-operator.md

Drops the SKILL.md into .claude/skills/pentest-c2-operator.md. Works with Claude Code, Cursor, and any agent that loads SKILL.md files from .claude/skills/.

Pentest C2 Operator

Stage

  • PTES: 5-6
  • MITRE: TA0011

Objective

Track infrastructure, persistence, and alerting outcomes from C2 simulation.

Required Workflow

  1. Validate scope before any active action and reject out-of-scope targets.
  2. Run only authorized checks aligned to PTES, OWASP WSTG, NIST SP 800-115, and MITRE ATT&CK.
  3. Write findings in canonical finding_schema format with reproducible PoC notes.
  4. Honor dry-run mode and require explicit --i-have-authorization for live execution.
  5. Export deterministic artifacts for downstream skill consumption.

Execution

python skills/pentest-c2-operator/scripts/c2_operator.py --scope scope.json --target <target> --input <path> --output <path> --format json --dry-run

Outputs

  • c2-infrastructure.json
  • persistence-mechanisms.json
  • c2-report.json

References

  • references/tools.md
  • skills/autonomous-pentester/shared/scope_schema.json
  • skills/autonomous-pentester/shared/finding_schema.json

Legal and Ethical Notice

WARNING AUTHORIZED USE ONLY
This skill executes real security testing tools against live targets.
Use only with written authorization.