command-and-control

There are 78 repositories under command-and-control topic.

• BishopFox / sliver

  Adversary Emulation Framework

  security-toolsimplantgolangdns-serverhttpc2command-and-controlred-teamred-teamingred-team-engagementadversarial-attacksadversary-simulationslivergplv3dns
  Language:Go 10196

• Ne0nd0g / merlin

  Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

  agentc2command-and-controlgolanghttp2post-exploitation
  Language:Go 5415

• Threekiii / Awesome-Redteam

  一个攻防知识库。A knowledge base for red teaming and offensive security.

  command-and-controlexecutionexploitinitial-accesslateral-movementprivilege-escalationreconnaissancered-teaming
  Language:Python 3988

• firehol / blocklist-ipsets

  ipsets dynamically updated with firehol's update-ipsets.sh script

  abusesattacksblocklistscommand-and-controlipsetipset-listsmalware
  Language:Shell 3618
• phpsploit

  nil0x42 / phpsploit

  Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

  post-exploitationhackingbackdoorstealthhacktoolblackhatprivilege-escalationphp-backdoorhacking-frameworkwebshelladvanced-persistent-threatredteamc2command-and-controlphp-webshellphp-webshell-backdoorpersistenceweb-hacking
  Language:Python 2396

• alphaSeclab / awesome-rat

  RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.

  ratremote-administration-toolremote-access-toolrat-analysisrat-malwaremalware-analysiscommand-and-controlc2command-control
  2128

• cyberark / kubesploit

  Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

  agentc2command-and-controlcontainersgolanghttp2kubernetespenetration-testing-frameworkpenetration-testing-toolspost-exploitationred-teamsredteam-toolssecuritysecurity-tools
  Language:Go 1206
• BlackMamba

  loseys / BlackMamba

  C2/post-exploitation framework

  pyqt5python3spywarepost-exploitationpentestpentest-tooloffensive-securityred-teamsecurity-toolscommand-and-controlqtframeworkpython
  Language:Python 1121
• ToRat

  lu4p / ToRat

  ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

  remote-admin-tooltorreverse-shellgolangpersistencekeyloggerreverse-shellstransportshell-reverseuac-bypassprivilege-escalationuacbypasspost-exploitationratwindowscommand-and-controlcross-platformpayloadlinuxrpc
  Language:Go 1009

• sensepost / godoh

  🕳 godoh - A DNS-over-HTTPS C2

  dohdns-over-httpscommand-and-controlc2golangdns
  Language:Go 793

• cxnturi0n / convoC2

  C2 infrastructure over Microsoft Teams.

  c2ms-teamsredteamingcommand-and-controlgolangmicrosoftcovert-channelteams
  Language:Go 727

• 3ct0s / dystopia-c2

  Windows Remote Administration Tool that uses Discord, Telegram and GitHub as C2s

  discorddiscord-botbackdoorratdisctopiac2command-and-control
  Language:Python 661

• Tomiwa-Ot / moukthar

  Android remote administration tool

  androidjavaremoteadministrationtoolratc2android-ratspywaredynamic-routingphpphp-frameworkweb-socket-serverweb-socketsc2-servercommand-and-controlcollaboratec2cratchet-php-serverremote-access-trojanremote-administrative-tooltrojan
  Language:PHP 638

• looCiprian / GC2-sheet

  GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.

  c2command-and-controlgolangmalwaregooglegoogle-drivegoogle-sheet
  Language:Go 632

• postrequest / link

  link is a command and control framework written in rust

  c2command-and-controlimplantpayloadpenetration-testingpentestingred-teamrust
  Language:Rust 579

• Coalfire-Research / Slackor

  A Golang implant that uses Slack as a command and control server

  pentestgolangpythonc2penetration-testingpenetration-testing-toolsremote-admin-toolcommand-and-controlred-team
  Language:Python 461

• itaymigdal / Nimbo-C2

  Nimbo-C2 is yet another (simple and lightweight) C2 framework

  c2c2-frameworkcommand-and-controlpayload-generatorpenetration-testing-toolspentesting-toolsratred-teamred-team-tools
  Language:Nim 434

• Leo4j / Amnesiac

  Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments

  c2command-and-controlcommandandcontrolpentestpentest-scriptspentest-toolpentest-toolspentestingpentesting-toolspentesting-windowspost-exploitationpostexplotationred-teamred-team-toolsred-teamingred-teaming-toolsredteamredteamingredteam-infrastructure
  Language:PowerShell 433

• SitinCloud / Owlyshield

  Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact).

  cybersecurityantivirusbehavior-analysisransomwareedrmachine-learningmalwaremalware-analysismalware-researchthreat-huntingcommand-and-controlexfiltrationimpact
  Language:Rust 416

• activecm / rita

  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

  beaconsblue-teamc2command-and-controlcyber-securitynetwork-traffic-analysisthreat-huntingzeeklog-analysisanomaly-detectionincident-responsenetwork-monitoringthreat-intelligenceintrusion-detectionsecurity-toolsc2-detection
  Language:Go 410

• daanzu / kaldi-active-grammar

  Python Kaldi speech recognition with grammars that can be set active/inactive dynamically at decode-time

  kaldi-asrspeech-recognitiongrammarspythonspeech-to-textkaldikaldi-grammardictationvoicecodingvoice-codingvoice-commandsvoice-controlcommand-and-control
  Language:Python 345

• andreiverse / grc2

  grim reaper c2

  command-and-controlinfosecredteamsecuritysecurity-tools
  Language:Nim 341

• pumpbin / pumpbin

  🎃 PumpBin is an Implant Generation Platform.

  applicationbypass-antivirusc2cybersecurityicedimplantlinuxmacosoffensive-securityrustsecurityshellcodeshellcode-injectionshellcode-injectorshellcode-loaderwindowsredteamadversarial-attackssecurity-toolscommand-and-control
  Language:Rust 341

• not-sekiun / PyIris

  PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

  python3c2c2-frameworkcommand-and-controlpenetration-testingpost-exploitationred-teamingremote-access-trojan
  Language:Python 330
• PhoenixC2

  PhoenixC2 / PhoenixC2

  Command & Control-Framework created for collaboration in python3

  c2command-and-controlflaskframeworkhack-toolhackingpentest-toolpentestingsqlalchemyteamgopythonpython3
  Language:Python 317
• paragon

  KCarretto / paragon

  Red Team engagement platform with the goal of unifying offensive tools behind a simple UI

  apibotnetcommand-and-controlcross-platformdslframeworkfrontendgolanggraphqlimplantsknowledge-graphmalwaremalware-developmentoffensiveredteamscripting-languagestarlarkthreat-emulationtoolkit
  Language:Go 301

• 0xflux / Wyrm

  The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.

  adversary-emulationadversary-simulationc2command-and-controlpentestpentestingred-teamred-teamingrustsecurity-toolswyrm
  Language:Rust 294

• Ziconius / FudgeC2

  FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

  powershellsecurity-toolssecuritycommand-and-controlc2python3redteamreadteamingpurpleteamimplantcybersecurityoffensive-securitypost-exploitation
  Language:Python 256

• WangYihang / Reverse-Shell-Manager

  :hammer: A multiple reverse shell session/client manager via terminal

  socketpythonctfattack-defensereverse-shellcommand-and-controlpentestingexploitptyweb-security
  Language:Python 242

• Gr1mmie / AtlasC2

  C# C2 Framework centered around Stage 1 operations

  command-and-controlstage-1post-exploitationred-teaming
  Language:C# 212

• Ixve / Red-Team-Tools

  Repo containing cracked red teaming tools.

  adversaryadversary-emulationadversary-simulationbackdoorbackdoorsc2command-and-controlpenetration-testingpenetration-testing-toolspentestpentest-toolpentest-toolspentestingratred-teamred-team-toolsred-teamingred-teaming-toolsremote-controltrojan
  Language:Batchfile 201

• alexfrancow / badusb_botnet

  :busts_in_silhouette::smiling_imp: Infect a pc with badusb and establish a connection through telegram.

  badusbpowershellbotnettelegramremote-controlinfosecarduinoatmega32u4hackingcommand-and-controlkeyloggertwitchstreamingwhatsapp-webtwitter
  Language:PowerShell 186
• OrionPanel

  Raffy27 / OrionPanel

  An open-source, centralized HTTPS botnet

  botnetbotsbuildercommand-and-controlcsharpdashboardhttps-clienttor
  Language:C# 175
• PythonRAT

  safesploit / PythonRAT

  Command and Control (C2) server with backdoor acting as Remote Administration Trojan (RAT) written in Python3

  python3pythonmalwaremalware-developmentmalware-researchcommand-and-controlkeyloggerreverse-shelllinux-malwarewindows-malwarec2post-exploitationremote-access-trojancross-platformbackdoormac-malwareratpayload
  Language:Python 170

• PushpenderIndia / nekros

  NekRos is an Open-Source Ransomeware, with advanced Features, Which Looks Like Wannacry and Has C&C Server which can be Used to Retrive KEY

  nekrosransomewareopen-sourcewannacryguicommand-and-controlserverdatabase-managerkali-linuxparratsecwindowsransomeware-generatoruncrackable-keyfastpythonpython3technowlogypushpender-singhpushpender
  Language:Python 122

• KCarretto / Arsenal

  Extensible Red Team Framework

  apibotnetcommand-and-controlframeworkmalwaremalware-developmentredteamthreat-emulation
  Language:Python 112