enigma522 / C2-framework
This is Command and Control (C2) Framework (cli / c2-server / implant)
☆17Updated 7 months ago
Alternatives and similar repositories for C2-framework:
Users that are interested in C2-framework are comparing it to the libraries listed below
- A utility that can be used to launch an executable with a DLL injected☆18Updated last year
- Dump Linux keyrings☆19Updated 9 months ago
- BYOVD Technique Example using viragt64 driver☆38Updated 9 months ago
- Proof of Concept example for abusing Process Hacker 2 (v2.39.124)☆21Updated 5 months ago
- An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.☆12Updated last year
- ☆11Updated 8 months ago
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆24Updated 8 months ago
- T-1 is a shellcode loader that leverages ML techniques to detect VM environments☆25Updated 5 months ago
- Payload Dropper with Persistance & Privesc & UAC bypass 🐱👤☆13Updated last year
- ☆53Updated 2 years ago
- Core Submodule of Exploration C2☆16Updated 3 weeks ago
- Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)☆41Updated last year
- Exploit for CVE-2024-3273, supports single and multiple hosts☆13Updated last year
- Parent Process ID Spoofing, coded in CGo.☆21Updated this week
- An example of Windows self-replicating malware.☆10Updated 2 years ago
- Bypassing Major EDR's with staged shellcode, custom getmodulehandleW and getprocaddress, veh syscalls & more.☆17Updated this week
- command control framework☆21Updated 2 weeks ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆36Updated last year
- WinREPL is a "read-eval-print loop" shell on Windows that is useful for testing/learning x86 and x64 assembly.☆14Updated 2 years ago
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆18Updated this week
- ☆39Updated 10 months ago
- Windows C++ Implant for Exploration C2☆29Updated last month
- Adobe Reader DC Information Leak Exploit☆21Updated 2 years ago
- ☆10Updated 4 years ago
- gRPC client for the Merlin Server☆21Updated last week
- Change hash for a signed pe☆16Updated last year
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆31Updated last year
- Reproducing the SkeletonKey malware.☆11Updated last year
- A fucking real shellcode loader with a GUI. Work-in-Progress.☆69Updated 3 months ago
- A framework for backdooring Microsoft Nuget packages.☆8Updated last year