Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)
☆41Dec 17, 2025Updated 2 months ago
Alternatives and similar repositories for ThunderStorm
Users that are interested in ThunderStorm are comparing it to the libraries listed below
Sorting:
- eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features☆105Dec 17, 2025Updated 2 months ago
- Monarch - The Adversary Emulation Toolkit☆64Jan 7, 2025Updated last year
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆28Aug 19, 2024Updated last year
- Modular C2 server to tame your pack of wolves☆22Feb 26, 2026Updated last week
- ☆160May 5, 2025Updated 10 months ago
- KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…☆229Jun 6, 2023Updated 2 years ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆18Jun 26, 2025Updated 8 months ago
- This repository is to provide a write-up and PoC for CVE-2023-41717.☆12Aug 31, 2023Updated 2 years ago
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated last month
- Shellcode loader with evasion capabilities written in Nim☆15Jan 25, 2025Updated last year
- Windows C++ Implant for Exploration C2☆44Jan 26, 2026Updated last month
- Attempting to Hook LSASS APIs to Retrieve Plaintext Credentials☆61May 12, 2025Updated 9 months ago
- Erebus is a payload generator written in Nim.☆16Jun 13, 2023Updated 2 years ago
- Docker container escape enumeration tool.☆12Jan 23, 2021Updated 5 years ago
- A not so awesome list of adversary emulation gems for aspiring red/blue/purple teamers☆16Jul 19, 2022Updated 3 years ago
- havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…☆12May 8, 2023Updated 2 years ago
- A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …☆91Oct 10, 2022Updated 3 years ago
- A light-weight first-stage C2 implant written in Nim (and Rust).☆930Mar 2, 2026Updated last week
- Nim process hollowing loader☆62Jul 22, 2025Updated 7 months ago
- A simple BOF that disables some logging with NtSetInformationProcess☆13Oct 13, 2023Updated 2 years ago
- ☆15Nov 24, 2022Updated 3 years ago
- process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread☆31Jan 9, 2022Updated 4 years ago
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆24Oct 23, 2021Updated 4 years ago
- bring your own clean ntdll (or other MS dlls)☆29Jul 14, 2025Updated 7 months ago
- sudo-parser is a tool to audit complex sudoers files☆18Nov 2, 2022Updated 3 years ago
- Nim Shellcode Injector☆15Jan 24, 2021Updated 5 years ago
- TeamServer and Client of Exploration Command and Control Framework☆177Jan 6, 2026Updated 2 months ago
- Self-updatable RAT + C2 server + client.☆16Jun 24, 2024Updated last year
- Cobalt Strike Wrapper☆20Aug 13, 2025Updated 6 months ago
- Library for shellcode injection☆16Mar 21, 2025Updated 11 months ago
- Hack tools coded in golang☆23Dec 19, 2023Updated 2 years ago
- This is the latest version of XenoRAT, updated with configurations and capable of bypassing all system securities. It will be maintained …☆23Apr 16, 2025Updated 10 months ago
- PS-MOTW: PowerShell scripts to set / show / remove MOTW (Mark of the Web)☆57Nov 16, 2023Updated 2 years ago
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆270Jun 18, 2025Updated 8 months ago
- A proof-of-concept C2 channel through DuckDuckGo's image proxy service☆77Nov 12, 2023Updated 2 years ago
- ☆70Oct 30, 2023Updated 2 years ago
- Robust Cobalt Strike shellcode loader with multiple advanced evasion features☆200Apr 21, 2025Updated 10 months ago
- Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common …☆20Mar 24, 2025Updated 11 months ago
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 7 months ago