Sliver

According to VK9 Seecurity, Sliver is a Command and Control (C2) system made for penetration testers, red teams, and advanced persistent threats. It generates implants (slivers) that can run on virtually every architecture out there, and securely manage these connections through a central server. Sliver supports multiple callback protocols including DNS, TCP, and HTTP(S) to make egress simple, even when those pesky blue teams block your domains. You can even have multiple operators (players) simultaneously commanding your sliver army.

Last 7 days

Mar 13, 2026

C2 Hosts: 2

Mar 12, 2026

C2 Hosts: 3

Mar 11, 2026

C2 Hosts: 4

Daily C2 host counts for the last 7 days
Date	C2 Hosts
Mar 13, 2026	2
Mar 12, 2026	3
Mar 11, 2026	4

Further Reading

Operation Oxidový: Sophisticated Malware Campaign Targets Czech Officials Using NATO-Themed Decoys | Seqrite

Seqrite Labs APT-Team has recently found a campaign targeting the Czech Republic. The campaign targets government and military officials with multiple lures aimed at the relationship between NATO a...

Botnet C&C | Botnet Threat Update January to June 2025 | Report

Botnet C&C | Botnet Threat Update July to December 2025 | Report

Assessing Offensive Security Tools: A Team Cymru Case Study

Explore our in-depth case study on assessing common offensive security tools, perfect for technology companies seeking to bolster their defense strategies.

DriftingCloud: Zero-Day Sophos Firewall Exploitation and an Insidious Breach

Volexity frequently works with individuals and organizations heavily targeted by sophisticated, motivated, and well-equipped threat actors from around the world. Some of these individuals or organi...