Glossary

COMMAND AND CONTROL / C2
defined.

The infrastructure and channels an attacker uses to communicate with compromised hosts — issuing commands and receiving results.

A–Z

What is Command and Control (C2)?

Modern C2 frameworks (Cobalt Strike, Sliver, Mythic, Havoc) use HTTPS, DNS, or third-party services to blend in with legitimate traffic. Detection requires behavioural analysis (beaconing patterns, JA3 fingerprints, certificate transparency) rather than IP/domain blocklists.

Related terms.

Persistence (security)
MITRE ATT&CK
Lateral Movement
Living Off the Land (LOLBins / LOLBAS)

Where this shows up.

See our web application penetration testing, API security testing, network penetration testing, and cloud security audit services for how we test for and defend against this class of issue.

Test for this in your stack

BOOK A FREE
scoping call.

30-minute call with an OSCP-certified engineer. Tailored proposal in 24 hours.

Book Free Scoping Call →All Services

COMMAND AND CONTROL / C2defined.

What is Command and Control (C2)?

Related terms.

Where this shows up.

BOOK A FREEscoping call.

COMMAND AND CONTROL / C2
defined.

BOOK A FREE
scoping call.