scottctaylor12/C4

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/scottctaylor12/C4)

scottctaylor12 / C4

Cross Compatible Command and Control

☆47

Alternatives and similar repositories for C4

Users that are interested in C4 are comparing it to the libraries listed below

Sorting:

nbaertsch / PoolProxy
View on GitHub
Proxy function calls through the thread pool with ease
☆31Feb 27, 2025Updated last year
BlackSnufkin / HolyGrail
View on GitHub
BYOVD hunter to help prioritize windows drivers worth manual analysis
☆121Aug 19, 2025Updated 6 months ago
zero2504 / FrostLock-Injection
View on GitHub
FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
☆43Apr 6, 2025Updated 10 months ago
goichot / OverLAPS
View on GitHub
Supporting PoCs and scripts for my talk "OverLAPS: Overriding LAPS Logic"
☆22Oct 12, 2025Updated 4 months ago
MaorSabag / Adaptix-StealthPalace
View on GitHub
Crystal Palace RDLL loader for Adaptix C2 with Ekko sleep obfuscation, IAT hooking via PICO, and per-section permission restoration
☆65Feb 24, 2026Updated last week
0x3rhy / BOF-DCOMPotato-PrintNotify
View on GitHub
Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
☆13Feb 4, 2024Updated 2 years ago
KickedDroid / loadstar
View on GitHub
A different approach to writing BOFs in rust.
☆19Aug 20, 2025Updated 6 months ago
Ridter / netsync
View on GitHub
Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.
☆62Feb 25, 2025Updated last year
EspressoCake / Process_Protection_Level_BOF
View on GitHub
☆61Aug 30, 2021Updated 4 years ago
Macmod / flashingestor
View on GitHub
A TUI for Active Directory collection.
☆94Feb 17, 2026Updated 2 weeks ago
uier / OSINT-Key-Generator
View on GitHub
ais3 2020 web5 project
☆11Aug 1, 2020Updated 5 years ago
m8sec / Dispatch
View on GitHub
Evasive Payload Delivery Server & C2 Redirector
☆112Nov 3, 2025Updated 4 months ago
kleiton0x00 / RtlHijack
View on GitHub
Alternative Read and Write primitives using Rtl* functions the unintended way.
☆79Aug 25, 2025Updated 6 months ago
EvilBytecode / Amsi-Patch-Updated-2025
View on GitHub
How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.
☆25Apr 21, 2025Updated 10 months ago
garrettfoster13 / ldap_bofs
View on GitHub
Random BOFs for LDAP tradecraft
☆74Sep 9, 2025Updated 5 months ago
winsecurity / AMSI-Bypass-HWBP
View on GitHub
☆26Aug 11, 2025Updated 6 months ago
Neo-Maoku / MultiTshProxy
View on GitHub
tsh多终端代理通信
☆19Feb 26, 2025Updated last year
dr4ndrei / OHFFLdr
View on GitHub
One-header configurable C++20 COFF loader
☆21Jul 21, 2025Updated 7 months ago
su18 / JSP-Webshells
View on GitHub
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
☆15Sep 22, 2021Updated 4 years ago
Hexastrike / LockBit-Database-Leak-2025
View on GitHub
Structured CSVs and table schemas extracted from the 29-April-2025 LockBit affiliate-panel database leak.
☆28May 8, 2025Updated 9 months ago
Teach2Breach / snapinject_rs
View on GitHub
A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
☆50Jan 25, 2025Updated last year
Java-Chains / papers
View on GitHub
Topic: The Swiss Army Knife of Java Exploitation
☆21Feb 25, 2025Updated last year
RWXstoned / LdrShuffle
View on GitHub
Code execution/injection technique using DLL PEB module structure manipulation
☆221Jun 4, 2025Updated 8 months ago
0xsch1zo / NullGate
View on GitHub
Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
☆166Jul 30, 2025Updated 7 months ago
JayGLXR / NomadLoader
View on GitHub
An advanced utility for converting Windows Portable Executable (PE) files to position-independent code (PIC) shellcode. It enables execut…
☆65Mar 1, 2025Updated last year
sysirq / fortios-auth-bypass-poc-CVE-2024-55591
View on GitHub
☆25Jan 23, 2025Updated last year
synacktiv / sccmsqlclient
View on GitHub
☆26Aug 5, 2025Updated 6 months ago
dobin / ace-firefist
View on GitHub
Attack chain emulator. Write recipes for initial access easily
☆23Feb 26, 2025Updated last year
EvilBytecode / Evilbytecode-Shellcode-Go-Tactics
View on GitHub
A mutliple tactics to execute shellcode in go :}
☆23Apr 21, 2025Updated 10 months ago
redr0nin / CVE-2024-38143
View on GitHub
Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
☆24Feb 5, 2025Updated last year
MZgoudan / hae-yakit
View on GitHub
蜜汁狗蛋yyds
☆28Feb 18, 2025Updated last year
praetorian-inc / glato
View on GitHub
GitLab Attack TOolkit
☆34Oct 8, 2025Updated 4 months ago
wotwot563 / aad_prt_bof
View on GitHub
☆159Apr 17, 2024Updated last year
xforcered / ForsHops
View on GitHub
ForsHops
☆152Mar 25, 2025Updated 11 months ago
Teach2Breach / stargate
View on GitHub
Locate dlls and function addresses without PEB Walk and EAT parsing
☆104Nov 7, 2025Updated 3 months ago
ErenCanOzmn / CredentialGuardBypass
View on GitHub
By manipulating LSASS memory flags like UseLogonCredential and IsCredGuardEnabled, this repo demonstrates how Credential Guard can be byp…
☆14May 25, 2025Updated 9 months ago
HaydoW / NerfDefender
View on GitHub
BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.
☆24Jul 5, 2023Updated 2 years ago
JayGLXR / Rusty-Stardust
View on GitHub
A modern Rust implementation of the original Stardust project, providing a sophisticated 32/64-bit shellcode template that features posit…
☆59Mar 17, 2025Updated 11 months ago
ghost-ng / slinger
View on GitHub
An impacket-lite cli tool that combines many useful impacket functions using a single session.
☆57Jan 14, 2026Updated last month