Nightmangle is post-exploitation Telegram Command and Control (C2/C&C) Agent,
It was developed as Proof of Concept (POC), that Telegram API can be used by threat actors for post-exploitation and to control their agents..
Nightmangle uses Telegram as a C2 server to communicate between the attacker and the client. However, it can only set one Telegram bot API per payload. This means that if you want to infect another machine, you need to build a new payload with a new Telegram bot API.
What do you think?
It is nice to know your opinion. Leave a comment.