iDigitalFlame / XMTLinks
eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features
β100Updated 9 months ago
Alternatives and similar repositories for XMT
Users that are interested in XMT are comparing it to the libraries listed below
Sorting:
- Golang binary for data exfiltration with ICMP protocol (+ ICMP bindshell, http over ICMP tunneling, ...)β147Updated 3 years ago
- ππͺ² Malleable C2 profiles parser and assembler written in golangβ66Updated last year
- Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)β35Updated 7 months ago
- Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.β¦β202Updated 11 months ago
- Process injection techniques written in Go.β62Updated last year
- A PoC package for hosting the CLR and executing .NET from Goβ74Updated 11 months ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.β223Updated 3 months ago
- Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRsβ83Updated 2 years ago
- Process Injection Techniques with Golangβ79Updated 5 years ago
- WIP shellcode loader in nim with EDR evasion techniquesβ217Updated 3 years ago
- Generic impersonation and privilege escalation with Golang. Like GenericPotato both named pipes and HTTP are supported.β112Updated 4 years ago
- KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this pβ¦β221Updated 2 years ago
- indirect syscalls for AV/EDR evasion in Go assemblyβ330Updated 2 years ago
- (Demo) 3rd party agent for Havocβ139Updated last year
- β248Updated 2 years ago
- This project is 'bridge' between the sleep and python language. It allows the control of a Cobalt Strike teamserver through python withouβ¦β184Updated 2 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog β¦β81Updated last year
- This project will guide yout to awareness of injection in almost every window API and process.β25Updated 3 years ago
- Post-exploitation agent for Merlinβ196Updated 2 months ago
- A C2 framework for initial access in Goβ185Updated 2 years ago
- Beacon Object File PoC implementation of KillDefenderβ227Updated 3 years ago
- The Official Sliver Armoryβ109Updated 2 months ago
- Golang reverse proxy with CobaltStrike malleable profile validation.β110Updated 2 years ago
- Golang PE injection on windowsβ166Updated 3 years ago
- Go implementation of the Heaven's Gate techniqueβ98Updated 4 years ago
- POC tool to convert CobaltStrike BOF files to raw shellcodeβ202Updated 3 years ago
- Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.β149Updated 2 years ago
- A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educatβ¦β90Updated last year
- Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent processβ232Updated 4 years ago
- Extendable payload obfuscation and delivery frameworkβ144Updated 2 years ago