Adversary Emulation Framework

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

ipsets dynamically updated with firehol's update-ipsets.sh script

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

C2/post-exploitation framework

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

🕳 godoh - A DNS-over-HTTPS C2

C2 infrastructure over Microsoft Teams.

link is a command and control framework written in rust

A Golang implant that uses Slack as a command and control server

Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments

Nimbo-C2 is yet another (simple and lightweight) C2 framework

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Python Kaldi speech recognition with grammars that can be set active/inactive dynamically at decode-time

🎃 PumpBin is an Implant Generation Platform.

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Red Team engagement platform with the goal of unifying offensive tools behind a simple UI

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.