Alternatives and similar repositories for C2-framework

Users that are interested in C2-framework are comparing it to the libraries listed below

• zer1t0 / keydump
  Dump Linux keyrings
  ☆20Updated 11 months ago
• cocomelonc / hack-process-hacker2
  Proof of Concept example for abusing Process Hacker 2 (v2.39.124)
  ☆22Updated 7 months ago
• Mazzy-Stars / lain_c2
  command control framework
  ☆21Updated last week
• ELMERIKH / Beryl
  Payload Dropper with Persistance & Privesc & UAC bypass 🐱‍👤
  ☆13Updated last year
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆20Updated last year
• zimnyaa / fiber-stager
  A simple Nim stager (w/ fiber execution)
  ☆18Updated 3 years ago
• zimnyaa / beepsyscall
  An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.
  ☆12Updated last year
• smokeme / ProxyNotShell
  ☆19Updated 2 years ago
• OtterHacker / CoffLoader
  ☆54Updated 2 years ago
• rbmm / PPL
  run process as PPL Antimalware
  ☆10Updated last year
• Quack2332 / Simple-C-Implant
  ☆12Updated 10 months ago
• CyberSecurityUP / ProcessKiller-BYOVD
  BYOVD Technique Example using viragt64 driver
  ☆40Updated 11 months ago
• 0xTriboulet / T-1
  T-1 is a shellcode loader that leverages ML techniques to detect VM environments
  ☆25Updated 7 months ago
• souzomain / Packer
  Packer is a compact, fast and crosss-platform serialization library for store data in a buffer
  ☆22Updated last year
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆32Updated last year
• vilewired / XenoStealerLib
  This is a library for stealing browser passwords, crypto stuff, password manager extension stuff, and just general applications too
  ☆10Updated last year
• eversinc33 / NimNightmare
  CVE-2021-1675 LPE PoC in Nim (PrintNightmare Local Privilege Escalation)
  ☆19Updated 3 years ago
• adhikara13 / CVE-2024-3273
  Exploit for CVE-2024-3273, supports single and multiple hosts
  ☆13Updated last year
• EvilBytecode / Amsi-Patch-Updated-2025
  How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.
  ☆19Updated 2 months ago
• tykawaii98 / CVE-2024-21338_PoC
  ☆39Updated last year
• hacksysteam / CVE-2021-45067
  Adobe Reader DC Information Leak Exploit
  ☆21Updated 2 years ago
• MiBaLToALeX / ShellOrd
  ShellOrd is a C2 (Command & Control) framework cross-platform and agent written in Rust & Java
  ☆14Updated 9 months ago
• qwqdanchun / RainbowSheep
  Change hash for a signed pe
  ☆16Updated last year
• leftp / FirewallMoniker
  A C# implementation that disables Windows Firewall bypassing UAC
  ☆15Updated 8 months ago
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆34Updated last month
• qwqdanchun / Revenge_RAT-v0.3
  ☆11Updated 4 years ago
• EvilBytecode / SsnRetrieval
  Loads NTDLL, parses the PE file, extracts "Zw" functions, retrieves their System Service Numbers (SSNs), and prints each function’s name,…
  ☆12Updated 2 months ago
• sinsinology / CVE-2024-29855
  PoC for the Veeam Recovery Orchestrator Authentication CVE-2024-29855
  ☆18Updated last year
• affix / rusty-hollow
  Unix Process hollowing in rust
  ☆22Updated 6 months ago
• iDigitalFlame / XrMT
  e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!
  ☆24Updated 10 months ago