Alternatives and similar repositories for C2-framework

Users that are interested in C2-framework are comparing it to the libraries listed below

• cocomelonc / hack-process-hacker2
  Proof of Concept example for abusing Process Hacker 2 (v2.39.124)
  ☆22Updated 8 months ago
• XaFF-XaFF / WinREPL
  WinREPL is a "read-eval-print loop" shell on Windows that is useful for testing/learning x86 and x64 assembly.
  ☆17Updated 2 years ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆20Updated last year
• zer1t0 / keydump
  Dump Linux keyrings
  ☆20Updated last year
• atabetnouhaila / API-hashing
  ☆18Updated 9 months ago
• splexas / TrampHooker
  A mechanism that trampoline hooks functions in x86/x64 systems.
  ☆22Updated 9 months ago
• Quack2332 / Simple-C-Implant
  ☆12Updated 11 months ago
• Kharos102 / ReadWriteDriverSample
  ☆22Updated last year
• leftp / FirewallMoniker
  A C# implementation that disables Windows Firewall bypassing UAC
  ☆15Updated 9 months ago
• sinsinology / CVE-2024-29855
  PoC for the Veeam Recovery Orchestrator Authentication CVE-2024-29855
  ☆18Updated last year
• chebuya / CVE-2024-30850-chaos-rat-rce-poc
  CHAOS RAT web panel path RCE PoC
  ☆29Updated last year
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆31Updated 2 years ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆33Updated last year
• MzHmO / PPLDescribe
  Tool for obtaining information about PPL processes
  ☆17Updated last year
• g3tsyst3m / CodefromBlog
  The code I write in my blog
  ☆15Updated this week
• jcrvnx / XenoRAT
  This is the latest version of XenoRAT, updated with configurations and capable of bypassing all system securities. It will be maintained …
  ☆15Updated 3 months ago
• BlackINT3 / RedKits
  Cyber Security Reseraching and RedTeam Kits Code
  ☆38Updated 2 years ago
• OtterHacker / CoffLoader
  ☆54Updated 2 years ago
• CyberSecurityUP / ProcessKiller-BYOVD
  BYOVD Technique Example using viragt64 driver
  ☆43Updated 11 months ago
• rbmm / DirectSysCall
  ☆12Updated 2 years ago
• 0xZDH / imgect
  Inject shellcode into a valid BMP/GIF image.
  ☆30Updated 4 years ago
• Mazzy-Stars / lain_c2
  command control framework
  ☆21Updated last month
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆37Updated 2 months ago
• tykawaii98 / CVE-2024-21338_PoC
  ☆39Updated last year
• wolfcod / beacondbg
  Beacon Debugger
  ☆40Updated 8 months ago
• smokeme / ProxyNotShell
  ☆19Updated 2 years ago
• aahmad097 / Test004
  Persistence via Shell Extensions
  ☆62Updated last year
• cocomelonc / 2022-04-02-malware-injection-18
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Updated 3 years ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆41Updated last year
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆22Updated 3 months ago