Alternatives and similar repositories for Ninja

Users that are interested in Ninja are comparing it to the libraries listed below

• mhaskar / Octopus

  View on GitHub
  Open source pre-operation C2 server based on python and powershell
  ☆761Jul 6, 2021Updated 4 years ago
• nettitude / PoshC2

  View on GitHub
  A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
  ☆2,090Nov 20, 2025Updated 2 months ago
• r3nhat / GRAT2

  View on GitHub
  We developed GRAT2 Command & Control (C2) project for learning purpose.
  ☆413Dec 19, 2020Updated 5 years ago
• ReversecLabs / C3

  View on GitHub
  Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…
  ☆1,722Jan 16, 2026Updated 3 weeks ago
• optiv / ScareCrow

  View on GitHub
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,867Aug 18, 2023Updated 2 years ago
• bats3c / shad0w

  View on GitHub
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,169Sep 29, 2021Updated 4 years ago
• DeimosC2 / DeimosC2

  View on GitHub
  DeimosC2 is a Golang command and control framework for post-exploitation.
  ☆1,151Apr 17, 2025Updated 9 months ago
• cobbr / Covenant

  View on GitHub
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆4,606Jul 18, 2024Updated last year
• RedSiege / C2concealer

  View on GitHub
  C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
  ☆1,097Jun 25, 2024Updated last year
• CCob / SharpBlock

  View on GitHub
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,164Mar 31, 2021Updated 4 years ago
• optiv / Ivy

  View on GitHub
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆747Aug 18, 2023Updated 2 years ago
• its-a-feature / Mythic

  View on GitHub
  A collaborative, multi-platform, red teaming framework
  ☆4,296Updated this week
• p3nt4 / Nuages

  View on GitHub
  A modular C2 framework
  ☆506Updated this week
• byt3bl33d3r / SILENTTRINITY

  View on GitHub
  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
  ☆2,318Dec 6, 2023Updated 2 years ago
• enkomio / AlanFramework

  View on GitHub
  A C2 post-exploitation framework
  ☆483Jan 24, 2024Updated 2 years ago
• Mr-Un1k0d3r / SCShell

  View on GitHub
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,594Jul 10, 2023Updated 2 years ago
• xuanxuan0 / DripLoader

  View on GitHub
  Evasive shellcode loader for bypassing event-based injection detection (PoC)
  ☆822Aug 23, 2021Updated 4 years ago
• mgeeky / RedWarden

  View on GitHub
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆992Oct 7, 2022Updated 3 years ago
• cobbr / SharpSploit

  View on GitHub
  SharpSploit is a .NET post-exploitation library written in C#
  ☆1,859Aug 12, 2021Updated 4 years ago
• mgeeky / cobalt-arsenal

  View on GitHub
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,098Apr 19, 2023Updated 2 years ago
• 0xsp-SRD / mortar

  View on GitHub
  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
  ☆1,495Dec 21, 2023Updated 2 years ago
• r00t-3xp10it / meterpeter

  View on GitHub
  C2 Powershell Command & Control Framework with BuiltIn Commands
  ☆503Mar 11, 2024Updated last year
• BC-SECURITY / Starkiller

  View on GitHub
  Starkiller is a Frontend for PowerShell Empire.
  ☆1,617Dec 12, 2025Updated 2 months ago
• sh4hin / GoPurple

  View on GitHub
  Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
  ☆494Apr 1, 2021Updated 4 years ago
• Ziconius / FudgeC2

  View on GitHub
  FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
  ☆254May 1, 2023Updated 2 years ago
• mhaskar / DNSStager

  View on GitHub
  Hide your payload in DNS
  ☆617May 3, 2023Updated 2 years ago
• S3cur3Th1sSh1t / WinPwn

  View on GitHub
  Automation for internal Windows Penetrationtest / AD-Security
  ☆3,639Aug 28, 2025Updated 5 months ago
• outflanknl / C2-Tool-Collection

  View on GitHub
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,364Oct 27, 2023Updated 2 years ago
• mdsecactivebreach / SharpShooter

  View on GitHub
  Payload Generation Framework
  ☆1,956Aug 21, 2024Updated last year
• andreiverse / grc2

  View on GitHub
  grim reaper c2
  ☆347Nov 19, 2022Updated 3 years ago
• phra / PEzor

  View on GitHub
  Open-Source Shellcode & PE Packer
  ☆2,066Feb 3, 2024Updated 2 years ago
• 3xpl01tc0d3r / Callidus

  View on GitHub
  ☆169Dec 8, 2022Updated 3 years ago
• qsecure-labs / overlord

  View on GitHub
  Overlord - Red Teaming Infrastructure Automation
  ☆628May 28, 2024Updated last year
• S3cur3Th1sSh1t / SharpImpersonation

  View on GitHub
  A User Impersonation tool - via Token or Shellcode injection
  ☆422May 21, 2022Updated 3 years ago
• S3cur3Th1sSh1t / Invoke-SharpLoader

  View on GitHub
  ☆360Apr 24, 2021Updated 4 years ago
• klezVirus / CheeseTools

  View on GitHub
  Self-developed tools for Lateral Movement/Code Execution
  ☆718Aug 17, 2021Updated 4 years ago
• Cr4sh / MicroBackdoor

  View on GitHub
  Small and convenient C2 tool for Windows targets
  ☆612Mar 8, 2022Updated 3 years ago
• S3cur3Th1sSh1t / PowerSharpPack

  View on GitHub
  ☆1,665Apr 14, 2025Updated 10 months ago
• BishopFox / sliver

  View on GitHub
  Adversary Emulation Framework
  ☆10,673Feb 8, 2026Updated last week