command-and-control

Adversary Emulation Framework

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

ipsets dynamically updated with firehol's update-ipsets.sh script

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

C2/post-exploitation framework

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

🕳 godoh - A DNS-over-HTTPS C2

link is a command and control framework written in rust

A Golang implant that uses Slack as a command and control server

grim reaper c2

Python Kaldi speech recognition with grammars that can be set active/inactive dynamically at decode-time

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact).

Red Team engagement platform with the goal of unifying offensive tools behind a simple UI

Windows Remote Administration Tool that uses Discord as C2

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

🔨 A multiple reverse shell session/client manager via terminal

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet and exfiltrate data using Google Drive.

C# C2 Framework centered around Stage 1 operations