Alternatives and similar repositories for Father:

Users that are interested in Father are comparing it to the libraries listed below

• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆126Updated 3 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆180Updated 2 years ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆229Updated 4 months ago
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆216Updated 3 years ago
• MythicAgents / merlin
  Cross-platform post-exploitation HTTP Command & Control agent written in golang
  ☆94Updated 3 weeks ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆221Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆328Updated 9 months ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆377Updated 9 months ago
• trustedsec / SliverKeylogger
  ☆161Updated last year
• ariary / fileless-xec
  Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…
  ☆198Updated 10 months ago
• MythicAgents / Athena
  ☆198Updated last week
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆352Updated 2 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 2 years ago
• last-byte / RIPPL
  RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows
  ☆7Updated 3 years ago
• byt3bl33d3r / pyMalleableC2
  Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
  ☆277Updated 6 months ago
• georgesotiriadis / MalwareDev
  ☆85Updated 2 years ago
• ly4k / PassTheChallenge
  Recovering NTLM hashes from Credential Guard
  ☆336Updated 2 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆139Updated last year
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆115Updated last year
• jconwell / secret_handshake
  A prototype malware C2 channel using x509 certificates over mTLS
  ☆153Updated last year
• nccgroup / DroppedConnection
  ☆125Updated 2 years ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆178Updated last month
• eladshamir / RPC-Backdoor
  A basic emulation of an "RPC Backdoor"
  ☆241Updated 2 years ago
• HavocFramework / Modules
  Modules used by the Havoc Framework
  ☆235Updated 10 months ago
• Allevon412 / TeamsImplant
  ☆208Updated 3 years ago
• Sq00ky / SMB-Session-Spoofing
  ☆122Updated last year
• rad9800 / misc
  miscellaneous scripts and programs
  ☆242Updated 3 months ago
• moloch-- / sliver-py
  A Python gRPC Client Library for Sliver
  ☆68Updated 3 weeks ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆307Updated 3 years ago
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago