Meduza

Meduza is a modular, collaborative C2 framework written in Go and Docker. The Meduza Framework also features a client written in React and an agent written in C#.

Features

W.I.P

Quick Start

A detailed guide on installation, configuration and usage as well as the project's architecture and development information can be found in the official Meduza Documentation

Development

1. Configuration

See .env.example for an example configuration.

2. Running Services

To run the services, we use Docker compose:

docker compose --env-file .env.dev up --force-recreate --build

This will build the application server, create an instance of a PostgresSQL and Redis databases and launch Postgres Admin web app.

Run Mode

The TEAMSERVER_MODE environmental variable can be used to control whether to run the server with a Delve debugger or without.

In case you're using the TEAMSERVER_MODE=debug, configure DLV_PORT env var and set up the Delve debugger client. Available Delve clients.

3. Cleaning Up

To delete volumes in case the database needs to be recreated:

docker compose --env-file .env.development down --volumes

In some cases, you will also need to delete the database from the filesystem using:

docker volumes rm $VOLUME_NAME

4. JWT Secret

In case you want generate a JWT secret, run the following command:

openssl rand -base64 64

If openssl is not install on your device, install it first based on operating system first. After generating JWT secret, add it your .env file as follows:

JWT_SECRET=your_generated_secret

5. Listener creation

WIP: Before creating a listener, an array of ports that will be opened in the docker container of the teamserver should be specified. That can be done in the .env file using the LISTENER_PORT_RANGE_START and LISTENER_PORT_RANGE_END variables.

• To start a listener, a POST request should be sent to http://<server_ip>:<server_port>/api/v1/listeners with the following body:

{
        "type":"",
        "name": "",
        "status": ,
        "description": "",
        "config": {}
}

which should be modified based on the listener type. Fair notice: the status is an int.

• After the listener is created, it's UUID can be extracted using a GET request to http://<server_ip>:<server_port>/api/v1/listeners/all
• The listener can be started using a POST request the following endpoint - http://<server_ip>:<server_port>/api/v1/listeners/<listener_uuid>/start
• The listener can be stopped using a POST request the following endpoint - http://<server_ip>:<server_port>/api/v1/listeners/<listener_uuid>/stop
• The listener can be deleted using a DELETE request the following endpoint - http://<server_ip>:<server_port>/api/v1/listeners/<listener_uuid>
• The listener can be updated using a PUT request the following endpoint - http://<server_ip>:<server_port>/api/v1/listeners/<listener_uuid>
• The listener can be queried individually using a GET request the following endpoint - http://<server_ip>:<server_port>/api/v1/listeners/<listener_uuid>

6. Starting the Client

Navigate to Meduza/client and run the development server:

npm run dev
# or
yarn dev
# or
pnpm dev
# or
bun dev

Open http://localhost:3000 with your browser to see the client.