The legitimate command-and-control (C2) framework known as Sliver is gaining more traction from threat actors as it emerges as an open-source alternative to Cobalt Strike and Metasploit.