# Beacon {% hint style="danger" %} This version of the Beacon agent is not designed for AV or EDR evasion and is therefore not OPSEC compliant. Beacon is primarily intended to test and demonstrate the capabilities of AdaptixC2. However, the Beacon agent can be easily extended and modified, making it compatible with various AV evasion methods. {% endhint %} ## Configuration HTTP Beacon can connect through a Proxy server.

DNS Beacon can connect only via DNS or DoH, and can also switch from DoH to DNS and from DNS to DoH if the first option does not work.

### Main configuration {% tabs %} {% tab title="EXE" %}

{% endtab %} {% tab title="SHELLCODE" %}

{% endtab %} {% tab title="DLL" %}

{% endtab %} {% tab title="SERVICE" %}

{% endtab %} {% endtabs %} Beacon currently **only supports Windows OS**. The Beacon can be generated **for x64 and x86** architectures in the following formats: EXE, DLL, Service Executable, Shellcode. The **KillDate** parameter sets the date and time of the beacon's death (GMT+0 format). The **WorkingTime** parameter sets the time interval during which the beacon will be active (local time on the target host). * The **Service Name** is set for the Service Executable. * The **Legit-DLL** is set for the DLL. This option will generate a DLL for Sideloading that will contain all exports from the specified DLL. ## Commands Beacon currently supports the following commands.

Commands marked with `*` have subcommands.

### Filesystem Commands

Command	Description
cat	Read first 2048 bytes of the specified file
cd	Change current working directory
cp	Copy file
disks	Lists mounted drives on current system
ls	Lists files in a folder
mv	Move file
mkdir	Make a directory
pwd	Print current working directory
rm	Remove a file or folder

### Exfiltration commands

Command	Description
download	Download a file
upload	Upload a file
profile download.chunksize	Change the exfiltrate data size for download request (default 128000)
exfil cancel	Cancels a download
exfil start	Resumes a download that's has been stoped
exfil stop	Stops a download that's in-progress

### Tunnel commands

Command	Description
socks start	Start a SOCKS4/5 proxy server (with/out auth) and listen on a specified port
socks stop	Stop a SOCKS proxy server
lportfwd start	Start local port forwarding from server via agent
lportfwd stop	Stop local port forwarding
rportfwd start	Start remote port forwarding from agent via server
rportfwd stop	Stop remote port forwarding

{% hint style="info" %} Since Bacon is an asynchronous agent, proxy scanning should be performed with no more than four threads. Tested on NetExec SMB...\ \ Agent does not switch sleep time automatically. Use `sleep 0` {% endhint %}

### Process commands

Command	Description
ps list	Show process list
ps kill	Kill a process with a given PID
ps run	Run a program

### Link commands

Command	Description
link smb	Connect to an SMB agent and re-establish control of it
link tcp	Connect to an TCP agent and re-establish control of it
unlink	Disconnect from an pivot agent

### Post-exploitation commands

Command	Description
jobs list	List of jobs
jobs kill	Kill a specified job
execute bof	Execute Beacon Object File
getuid	Prints the User ID associated with the current token
rev2self	Revert to your original access token

### Agent command

Command	Description
sleep	Sets sleep time
terminate thread	Terminate the main beacon thread (without terminating the process)
terminate process	Terminate the beacon process
profile workingtime	Set the start and end time of the beacon activity. Time interval in the format 'HH:mm(start)-HH:mm(end)'. Set 0 to disable the option.
profile killdate	Set the date and time for the beacon to stop working. Datetime 'DD.MM.YYYY hh:mm:ss' in GMT format. Set 0 to disable the option

--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://adaptix-framework.gitbook.io/adaptix-framework/extenders/agents/beacon.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.