Watch Part 2 of our interactive Sliver workshop series, led by Bishop Fox Senior Security Consultant Tim Ghatas, as we continue exploring advanced offensive security techniques using the open-source Sliver C2 framework.

In this hands-on session, we’ll go beyond the basics to examine the new implant staging process introduced in recent Sliver updates. We’ll then dive into command-line interface (CLI) automation, demonstrating the basic CLI automation features. The workshop will also provide a comprehensive walkthrough of Sliver’s supported pivot types for lateral movement, with a focus on TCP-based pivots. To wrap up, we’ll introduce the SliverPy project, showcasing how it can be used to extend Sliver’s capabilities through automation and custom tooling. 

💡 Pre-requisite: This workshop builds on content from “Sliver Workshop - Getting Started & 1.6 Features.” Attendees are encouraged to review Part 1 or have basic familiarity with Sliver.

Speaker: Tim Makram Ghatas, Senior Security Consultant II, Bishop Fox

Summary

An advanced, hands-on workshop diving into the latest features and capabilities of the Sliver C2 framework. Led by Bishop Fox Senior Security Consultant Tim Ghatas, this technical session explores advanced implant staging, automation techniques, and custom toolkit development using SliverPy. Building on fundamental concepts, this workshop provides practical insights into enhancing offensive security operations through sophisticated C2 implementations.

Highlights from the Workshop

• New implant staging processes in recent Sliver updates
• CLI automation capabilities and implementation
• Lateral movement techniques using TCP-based pivots
• SliverPy integration and custom tooling development
• Interactive Q&A and practical demonstrations
• Real-world application scenarios
• Advanced C2 infrastructure management
• Custom automation script development

Key Takeaways

This workshop equips participants with advanced Sliver C2 capabilities, focusing on the latest implant staging processes and automation techniques. Attendees will learn how to leverage CLI automation for enhanced efficiency and implement various pivot types for effective lateral movement. The introduction to SliverPy opens new possibilities for framework extension and custom tool development, enabling more sophisticated and automated red team operations. Participants will gain practical experience in optimizing C2 infrastructure and creating automated workflows that can significantly improve the effectiveness of offensive security testing.

Who Should Attend

• Red Team Operators
• Penetration Testers
• Security Engineers
• C2 Framework Developers
• Automation Specialists
• Security Researchers
• Offensive Security Professionals