Trending repositories for topic c2
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among conn...
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among conn...
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among conn...
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs written in Rust. 🦀
KIZAGAN is a RAT,c2 command&control tool.It allows you to build executables and control infected machines.
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs written in Rust. 🦀
KIZAGAN is a RAT,c2 command&control tool.It allows you to build executables and control infected machines.
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among conn...
A Golang implant that uses Slack as a command and control server
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among conn...
The C2 Cloud is a robust web-based C2 framework, designed to simplify the life of penetration testers. It allows easy access to compromised backdoors, just like accessing an EC2 instance in the AWS cl...
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
The C2 Cloud is a robust web-based C2 framework, designed to simplify the life of penetration testers. It allows easy access to compromised backdoors, just like accessing an EC2 instance in the AWS cl...
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
Krypton C2 is a simple botnet source. Credits Source Code: NixWasHere
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments
Developing a more covert Remote Access Trojan (RAT) tool by leveraging Electron's features for command injection and combining it with remote control methods.
REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs written in Rust. 🦀
Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution
A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.
The C2 Cloud is a robust web-based C2 framework, designed to simplify the life of penetration testers. It allows easy access to compromised backdoors, just like accessing an EC2 instance in the AWS cl...
ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
Checks SSL/TLS certificates for potential malicious connections by detecting and blocking certificates used by botnet command and control (C&C) servers.
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among conn...
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.
RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments
Useful C2 techniques and cheatsheets learned from engagements
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
Developing a more covert Remote Access Trojan (RAT) tool by leveraging Electron's features for command injection and combining it with remote control methods.
Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.
一款支持多人协作的渗透测试图形化框架、支持lua插件扩展、域前置/CDN上线、自定义多个模块、自定义shellcode、文件管理、进程管理、内存加载、反向代理等功能
ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
Developing a more covert Remote Access Trojan (RAT) tool by leveraging Electron's features for command injection and combining it with remote control methods.
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
A curated list of tools useful within the field of cyber security, for both blue and red team operations.
Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
Checks SSL/TLS certificates for potential malicious connections by detecting and blocking certificates used by botnet command and control (C&C) servers.
A GUI wrapper inside of Havoc to interact with bloodhound CE
Kylebot | This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !
Method Archive (Layer3 / Layer4 / Layer7 / Bypass + Various Other scripts)
🔎🪲 Malleable C2 profiles parser and assembler written in golang
Useful C2 techniques and cheatsheets learned from engagements