Conquest is a feature-rich, extensible and malleable command & control/post-exploitation framework developed for penetration testing and adversary simulation. Conquest's team server, operator client and agent have all been developed from scratch using the Nim programming language and are designed with modularity and flexibility in mind. It features custom C2 communication via binary packets over HTTP, a client GUI developed using Dear ImGui and the Monarch agent, a modular C2 implant aimed at Windows targets.

The Conquest team server and operator client are currently meant to be compiled and used on a Ubuntu/Debian-based operating system. For getting the framework up and running, follow the installation instructions.

For more information about architecture, usage and features, check out the documentation!

• Flexible operator GUI client developed using Dear ImGui
• HTTP listeners with support for callback hosts (Redirectors)
• Support for malleable C2 profiles (TOML)
• Customizable payload generation
• Encrypted C2 communication leveraging AES256-GCM and X25519 key exchange
• Sleep obfuscation via Ekko, Zilean or Foliage with support for call stack spoofing
• In-memory execution of COFF/BOF files
• In-memory execution of .NET assemblies
• Token impersonation
• AMSI/ETW patching using hardware breakpoints
• Compile-time string obfuscation
• Wide selection of built-in post-exploitation modules
• Looting and loot management (downloads & screenshots)
• Logging of all operator activity
• Self-destruct functionality
• Agent kill date & working hours
• Fully written in Nim

The following projects and people have significantly inspired and/or helped with the development of this framework.

• Inspiration:
  • Havoc by C5pider
  • Cobalt Strike
  • AdaptixC2
• Development:
  • imguin by dinau (ImGui Wrapper for Nim)
  • MalDev Academy
  • Creds by S3cur3Th1sSh1t
  • malware by m4ul3r
  • winim
  • OffensinveNim
• Existing C2's written (partially) in Nim
  • NimPlant
  • Nimhawk
  • grc2
  • Nimbo-C2