A command and control framework.
☆54Dec 26, 2024Updated last year
Alternatives and similar repositories for hermit
Users that are interested in hermit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Information gathering tool using OSINT and AI☆17Nov 21, 2024Updated last year
- A Simple PoC☆22May 24, 2024Updated last year
- Thats it! An Open-Source Windows UEFI Rootkit☆29Jul 19, 2025Updated 8 months ago
- Use pingser to create client and server based on ICMP Protocol to send and receive custom message content.☆18Dec 7, 2021Updated 4 years ago
- Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…☆19Apr 24, 2023Updated 2 years ago
- Generic PE loader for fast prototyping evasion techniques☆245Jul 2, 2024Updated last year
- web based c2 🏴☠️☆15Aug 10, 2024Updated last year
- wfp2socks☆11Sep 11, 2025Updated 6 months ago
- .NET assembly loader with patchless AMSI and ETW bypass☆374Apr 19, 2023Updated 2 years ago
- Rust 重构的 sRDI☆17Sep 9, 2024Updated last year
- RCE PoC for Empire C2 framework <5.9.3☆28Feb 24, 2024Updated 2 years ago
- Windows LPE Nday☆32Apr 26, 2024Updated last year
- Sliver agent rewritten in C++☆49Sep 4, 2024Updated last year
- ☆126Mar 23, 2025Updated last year
- A tracker DLL which enables 'NTAPI->Syscall' tracking whenever it is loaded. It calls 'NtSetInformationProcess' API call with a callback …☆14Oct 21, 2024Updated last year
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆199May 29, 2025Updated 9 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆195Nov 27, 2024Updated last year
- An interactive mock C2 server☆17Feb 25, 2023Updated 3 years ago
- GrizzlyTunnel is a automation script designed to create seamless Layer 3 VPN like tunnels over SSH.☆25Dec 18, 2024Updated last year
- A Mythic agent for Windows written in C☆162Mar 14, 2026Updated last week
- Static Encrypt is an crate that encrypts string literals at compile time and only decrypted at runtime when needed.☆58Jan 17, 2026Updated 2 months ago
- Reflective DLL Injection Made Bella☆251Jan 6, 2025Updated last year
- ☆33Jan 23, 2025Updated last year
- EWSTool是一个针对EXCHANGE邮件服务器的后渗透利用工具。使用ews接口,实现人员邮箱列表获取、搜索邮件、下载邮件等实用功能。☆65Mar 12, 2025Updated last year
- Sleep obfuscation☆271Dec 13, 2024Updated last year
- TeamServer and Client of Exploration Command and Control Framework☆177Jan 6, 2026Updated 2 months ago
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆201Dec 30, 2025Updated 2 months ago
- Leverage WindowsApp createdump tool to obtain an lsass dump☆153Sep 20, 2024Updated last year
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆272Jun 18, 2025Updated 9 months ago
- ☆11Feb 19, 2023Updated 3 years ago
- This is the AV ("protection solution") used for my windows 10 rootkit main project. this includes the installer stager program, a service…☆13May 2, 2024Updated last year
- Fork of LLVM for LTO pass plugins support.☆21Jun 28, 2025Updated 8 months ago
- Remote Shellcode Injector☆219Aug 27, 2023Updated 2 years ago
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆61Apr 13, 2025Updated 11 months ago
- A Golang shellcode loader that receives payloads via ICMP packets from a C2 server to bypass firewalls☆24Apr 12, 2023Updated 2 years ago
- C++ tool and library for converting .bin files to shellcode in multiple output formats.☆34Aug 18, 2025Updated 7 months ago
- Process injection alternative☆407Sep 6, 2024Updated last year
- PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph☆24Aug 2, 2025Updated 7 months ago
- An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…☆493Dec 7, 2025Updated 3 months ago