Cross-platform post-exploitation HTTP Command & Control agent written in golang
☆113Apr 16, 2025Updated 10 months ago
Alternatives and similar repositories for merlin
Users that are interested in merlin are comparing it to the libraries listed below
Sorting:
- Poseidon is a Golang agent targeting Linux and macOS☆205Feb 27, 2026Updated last week
- ☆22Jun 9, 2025Updated 8 months ago
- ☆218Feb 20, 2026Updated 2 weeks ago
- Simple HTTP async comms using standard GET/POST requests☆47Feb 5, 2026Updated last month
- ☆13Dec 27, 2023Updated 2 years ago
- Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic☆201Aug 1, 2025Updated 7 months ago
- Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.☆63Oct 29, 2024Updated last year
- A .NET Framework 4.0 Windows Agent☆532Feb 20, 2026Updated 2 weeks ago
- Running .NET from VBA☆148Feb 11, 2023Updated 3 years ago
- C# havoc implant☆101Feb 12, 2023Updated 3 years ago
- Bloodhound agent for Mythic☆23Apr 19, 2025Updated 10 months ago
- Mythic C2 agent targeting Linux and Windows hosts written in Rust☆404Nov 26, 2025Updated 3 months ago
- Mythic C2 wrapper for NimSyscallPacker☆25Mar 12, 2025Updated 11 months ago
- Configurable, Community driven, HTTP C2 Profile☆27Feb 16, 2026Updated 2 weeks ago
- Run Cobalt Strike BOFs in Brute Ratel C4!☆86Apr 15, 2025Updated 10 months ago
- A cross-platform implant written in Nim☆175Mar 6, 2024Updated 2 years ago
- Mythic Developer Series: Workshop Golang Agent☆25Jun 27, 2023Updated 2 years ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆675Aug 15, 2025Updated 6 months ago
- various methods of making API calls☆19Feb 1, 2025Updated last year
- Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles☆201Jun 25, 2024Updated last year
- Modules used by the Havoc Framework☆262Jun 17, 2024Updated last year
- C++ self-Injecting dropper based on various EDR evasion techniques.☆427Feb 11, 2024Updated 2 years ago
- Nim-based assembly packer and shellcode loader for opsec & profit☆488Feb 24, 2023Updated 3 years ago
- Generate AES128 and AES256 Kerberos keys from a given username, password, and realm☆18Sep 18, 2024Updated last year
- Ansible role to deploy RedELK server☆19Sep 11, 2023Updated 2 years ago
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆211Nov 12, 2025Updated 3 months ago
- A Visual Studio Code Extension agent for Mythic C2☆72Nov 5, 2024Updated last year
- Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts wa…☆1,056Oct 14, 2025Updated 4 months ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆568Jun 5, 2023Updated 2 years ago
- Dump Teams conversations☆18Jun 9, 2021Updated 4 years ago
- ☆22Dec 30, 2025Updated 2 months ago
- Pipeleek scans CI/CD logs and artifacts to detect leaked secrets and pivot from them☆19Feb 26, 2026Updated last week
- Resolve syscall numbers at runtime for all Windows versions.☆59Nov 21, 2024Updated last year
- JavaScript for Automation (JXA) macOS agent☆95Feb 19, 2026Updated 2 weeks ago
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆345Sep 1, 2021Updated 4 years ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆779Jan 26, 2026Updated last month
- A collaborative, multi-platform, red teaming framework☆4,333Feb 19, 2026Updated 2 weeks ago
- Cobalt strike CNA script to notify you via Discord whenever there is a new beacon.☆33Aug 24, 2022Updated 3 years ago
- A tool for converting SysWhispers3 syscalls for use with Nim projects☆147Jun 2, 2022Updated 3 years ago