Adversary Emulation Framework

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

一个攻防知识仓库 Red Teaming and Offensive Security

ipsets dynamically updated with firehol's update-ipsets.sh script

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

C2/post-exploitation framework

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

🕳 godoh - A DNS-over-HTTPS C2

link is a command and control framework written in rust

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.

Windows Remote Administration Tool that uses Discord, Telegram and GitHub as C2s

A Golang implant that uses Slack as a command and control server

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact).

Nimbo-C2 is yet another (simple and lightweight) C2 framework

Android remote administration tool

Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments

Python Kaldi speech recognition with grammars that can be set active/inactive dynamically at decode-time

grim reaper c2