Alternatives and similar repositories for Father

Users that are interested in Father are comparing it to the libraries listed below

• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆229Updated 6 months ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆181Updated 2 months ago
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆127Updated 3 years ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆185Updated 9 months ago
• byt3bl33d3r / pyMalleableC2
  Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
  ☆279Updated 7 months ago
• 0xRick / c2
  A basic c2 / agent.
  ☆119Updated 5 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• MythicAgents / merlin
  Cross-platform post-exploitation HTTP Command & Control agent written in golang
  ☆97Updated 2 months ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆331Updated 11 months ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆116Updated last year
• OccamsXor / Dragnmove
  Infect Shared Files In Memory for Lateral Movement
  ☆195Updated 2 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆139Updated last year
• dobin / antnium
  A C2 framework for initial access in Go
  ☆185Updated 2 years ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆256Updated 2 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆267Updated last year
• IkerSaint / KingHamlet
  Process Ghosting Tool
  ☆174Updated 4 years ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆279Updated 2 years ago
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆353Updated 2 years ago
• last-byte / RIPPL
  RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows
  ☆7Updated 3 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆256Updated 2 years ago
• georgesotiriadis / MalwareDev
  ☆85Updated 2 years ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆305Updated last year
• trustedsec / SliverKeylogger
  ☆161Updated last year
• moloch-- / sliver-py
  A Python gRPC Client Library for Sliver
  ☆69Updated 2 months ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆379Updated 10 months ago
• Allevon412 / TeamsImplant
  ☆208Updated 3 years ago
• MythicAgents / Athena
  ☆201Updated last month
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆358Updated 2 years ago
• h0mbre / Dali
  ☆67Updated 2 years ago
• waldo-irc / MalMemDetect
  Detect strange memory regions and DLLs
  ☆184Updated 3 years ago