C2
A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assignments.
Covenant is a collaborative .NET C2 framework for red teamers.
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
Cobalt Strike Malleable C2 Design and Reference Guide
Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog post as a tutorial sample
Web Based Command Control Framework (C2) #C2 #PostExploitation #CommandControl #RedTeam #C2Framework #PHPC2 #.NETMalware #Malware #PHPMalware #CnC #infosec #offensivesecurity #Trojan
Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps C…
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
Wiki to collect Red Team infrastructure hardening resources
Tools and Techniques for Red Team / Penetration Testing
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
A post exploitation framework designed to operate covertly on heavily monitored environments
A Powershell client for dnscat2, an encrypted DNS command and control tool.
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
Github as C2 Demonstration , free API = free C2 Infrastructure
Fully Undetectable telegram Rat dropper
A Fully Undetectable C2 Server That Communicates Via Google SMTP to evade Antivirus Protections and Network Traffic Restrictions
A light-weight first-stage C2 implant written in Nim (and Rust).
RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.