m4pol / hellcat
A windows backdoor that's use Telegram as a C2 server.
☆14Updated 8 months ago
Alternatives and similar repositories for hellcat:
Users that are interested in hellcat are comparing it to the libraries listed below
- Go ransomware utilising ChaCha20 and ECIES encryption.☆58Updated 2 months ago
- A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…☆86Updated last year
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.☆52Updated 5 months ago
- Offensive Powershell obfuscator☆23Updated 3 months ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆62Updated 2 years ago
- Automated .NET AppDomain hijack payload generation�☆119Updated this week
- .bin file to shellcode convertor☆30Updated 5 months ago
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆85Updated last year
- Small project to facilitate creation of .lnk payloads☆61Updated 2 years ago
- ☆26Updated last year
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆77Updated 11 months ago
- REC2 (Rusty External Command and Control) is client and server tool allowing auditor to execute command from VirusTotal and Mastodon APIs…☆132Updated 9 months ago
- A C2 framework built for my bachelors thesis☆54Updated last month
- Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)☆33Updated last month
- Ethical Remote Acces Tool Client and Server for W10 and Linux Persist functionality☆51Updated last year
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆80Updated last year
- Antivirus Evasion Tool for .NET/Native (x64) Executables☆17Updated 2 years ago
- Classic Process Injection with Memory Evasion Techniques implemantation☆64Updated last year
- Rat Inject is C++ Executable to gain Undetectable Persistence in Windows via 4 Registry Keys☆25Updated 2 years ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- Bypass the Event Trace Windows(ETW) and unhook ntdll.☆96Updated last year
- Duplicate not owned Token from Running Process☆72Updated last year
- PoC-Malware-TTPs☆49Updated last year
- Evade EDR's the simple way, by not touching any of the API's they hook.☆56Updated 4 months ago
- Golang reverse proxy with CobaltStrike malleable profile validation.☆110Updated last year
- Bypass Malware Sandbox Evasion Ram check☆135Updated last year
- (Demo) 3rd party agent for Havoc☆130Updated last year