Affected by GO-2023-1866 and 6 other vulnerabilities

GO-2023-1866: Silver vulnerable to MitM attack against implants due to a cryptography vulnerability in github.com/bishopfox/sliver

GO-2025-3472: SSRF in sliver teamserver in github.com/bishopfox/sliver

GO-2025-4079: Silver has unrestricted traffic between Wireguard clients in github.com/bishopfox/sliver

GO-2026-4280: Sliver Vulnerable to Pre-Auth Memory Exhaustion via NoEncoder Bypass in github.com/bishopfox/sliver

GO-2026-4445: Sliver Vulnerable to Website Path Traversal / Arbitrary File Read (Authenticated) in github.com/bishopfox/sliver

GO-2026-4466: Sliver has DNS C2 OTP Bypass that Allows Unauthenticated Session Flooding and Denial of Service in github.com/bishopfox/sliver

GO-2026-4548: Sliver has Potential Zip Bomb Denial of Service in GzipEncoder in github.com/bishopfox/sliver

website

package

v1.5.35 Latest Latest Go to latest Published: Mar 5, 2023 License: GPL-3.0 Imports: 11 Imported by: 10

Details

This package manages static content that can be hosted on HTTP(S) C2 domains to make them look more legit.

This section is empty.

This section is empty.

func AddContent(websiteName string, path string, contentType string, content []byte) error

AddContent - Add website content for a path

func AddWebsite(websiteName string) (*models.Website, error)

AddWebsite - Add website with no content

func GetContent(websiteName string, path string) (string, []byte, error)

GetContent - Get static content for a given path

func MapContent(websiteName string, eagerLoadContents bool) (*clientpb.Website, error)

MapContent - List the content of a specific site, returns map of path->json(content-type/size)

func Names() ([]string, error)

Names - List all websites

func RemoveContent(websiteName string, path string) error

RemoveContent - Remove website content for a path

This section is empty.