Alternatives and similar repositories for Father:

Users that are interested in Father are comparing it to the libraries listed below

• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆123Updated 3 years ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆227Updated 4 months ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆137Updated last year
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆375Updated 8 months ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆176Updated 2 weeks ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆219Updated last year
• MythicAgents / merlin
  Cross-platform post-exploitation HTTP Command & Control agent written in golang
  ☆93Updated 2 weeks ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 2 years ago
• trustedsec / SliverKeylogger
  ☆158Updated last year
• eladshamir / RPC-Backdoor
  A basic emulation of an "RPC Backdoor"
  ☆239Updated 2 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆179Updated 2 years ago
• nettitude / ShellcodeMutator
  ☆247Updated 2 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆255Updated 2 years ago
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆211Updated 3 years ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆300Updated last year
• boku7 / Ninja_UUID_Runner
  Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!
  ☆441Updated 2 years ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆306Updated 3 years ago
• NUL0x4C / APCLdr
  Payload Loader With Evasion Features
  ☆315Updated 2 years ago
• IkerSaint / KingHamlet
  Process Ghosting Tool
  ☆172Updated 3 years ago
• MythicAgents / Athena
  ☆198Updated 2 months ago
• last-byte / RIPPL
  RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows
  ☆7Updated 3 years ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆257Updated 2 years ago
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆194Updated 2 years ago
• ly4k / PassTheChallenge
  Recovering NTLM hashes from Credential Guard
  ☆334Updated 2 years ago
• SolomonSklash / SleepyCrypt
  A shellcode function to encrypt a running process image when sleeping.
  ☆338Updated 3 years ago
• codewhitesec / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆217Updated 2 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated last year
• trickster0 / EDR_Detector
  EDR Detector that can find what kind of endpoint solution is being used according to drivers in the system.
  ☆93Updated 3 years ago
• Cracked5pider / CoffeeLdr
  Beacon Object File Loader
  ☆286Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆324Updated 8 months ago