Documentation
Listeners
Havoc supports the following Listener types:
- HTTP
- HTTPS
- SMB
- External C2
Which can be configurated using the Havoc Client user interface.
To start a listener go to View -> Listeners to show the listener table.
Now press the Add button to add a new listener
HTTP/HTTPS Listener
| Supports Demon Agents | true |
| Supports Service Agents | true |
The HTTP and HTTPS Demon agents (and registered service agents) retrieve the tasks and send the result over a POST request.
Parameters:
| Field | Type | Description | Required |
|---|---|---|---|
Hosts | string array | takes an array of hosts/ip strings. Those values can be formated as following: host:port (example: host.com:443) to set the host and port to connect to or simply host (example: host.com) to connect to. If only the host has been specified then the binded port is going to be used. If no hosts where specified then the binded host and port is going be used. | false |
Port | int | Where the listener should to bind on | true |
Host (Bind) | string | Where the listener should to bind on | true |
Host Rotation | string | Host rotation technique to use. | true |
User Agent | string | What user agent can/should be used | true |
Headers | string array | What headers can/should be used. if nothing is provided then the listener is going to use Content-type: */*. Or else the agent wont be able to callback. | false |
Uris | string array | What uri's to use. if nothing provided then the listener is going to use /. | false |
Enable Proxy connection | bool | Proxy configuration for HTTP/HTTPs requests | false |
SMB Listener
| Supports Demon Agents | false |
| Supports Service Agents | true |
The SMB Demon uses named pipes to communicate through a parent Demon. This peer-to-peer communication works with Demon on the same host and across the network.
Parameters:
| Field | Type | Description | Required |
|---|---|---|---|
Pipe Name | string | Named Pipe Name | true |
External C2 Listener
| Supports Demon Agents | true |
| Supports Service Agents | true |
External C2 is a specification to allow third-party programs to act as a communication layer for Havoc's Demon agent and registered service agents.
This listener is binds the Endpoint value to an endpoint from the teamserver main HTTP/s server (which handles Havoc's client requests).
It then should be reachable via this url: http://{teamserver}:{port}/{endpoint}
Read more about it under External C2
On this page
- Listeners
- HTTP/HTTPS Listener
- SMB Listener
- External C2 Listener