{"id":13454388,"url":"https://github.com/EnginDemirbilek/NorthStarC2","last_synced_at":"2025-03-24T05:33:45.247Z","repository":{"id":45830563,"uuid":"264147508","full_name":"EnginDemirbilek/NorthStarC2","owner":"EnginDemirbilek","description":"Web Based Command Control Framework (C2) #C2 #PostExploitation #CommandControl #RedTeam #C2Framework #PHPC2 #.NETMalware #Malware #PHPMalware #CnC #infosec #offensivesecurity #Trojan","archived":false,"fork":false,"pushed_at":"2024-03-11T23:11:51.000Z","size":4460,"stargazers_count":258,"open_issues_count":3,"forks_count":60,"subscribers_count":14,"default_branch":"master","last_synced_at":"2025-03-06T19:34:33.548Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/EnginDemirbilek.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-05-15T09:06:19.000Z","updated_at":"2025-02-10T03:41:42.000Z","dependencies_parsed_at":"2024-10-28T21:46:09.281Z","dependency_job_id":null,"html_url":"https://github.com/EnginDemirbilek/NorthStarC2","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EnginDemirbilek%2FNorthStarC2","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EnginDemirbilek%2FNorthStarC2/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EnginDemirbilek%2FNorthStarC2/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EnginDemirbilek%2FNorthStarC2/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/EnginDemirbilek","download_url":"https://codeload.github.com/EnginDemirbilek/NorthStarC2/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245217427,"owners_count":20579291,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-07-31T08:00:53.645Z","updated_at":"2025-03-24T05:33:45.236Z","avatar_url":"https://github.com/EnginDemirbilek.png","language":"PHP","funding_links":[],"categories":["PHP","PHP (184)","Tools"],"sub_categories":["Open Source"],"readme":"# ![](banner.png)\r\n![GPL 3.0](https://img.shields.io/badge/license-GPLv3-red.svg)\r\n\u003cbr\u003e\r\nNorthStarC2 is an open-source command and control framework developed for penetration testing and red teaming purposes by [Engin Demirbilek](https://twitter.com/Nginthenoob).\r\n\u003cbr\u003e\r\n\u003cbr\u003e\r\nNorthStar C2 Framework consists of two applications, a server-side GUI web application for managing sessions and a client-side stager to communicate with C2 server.\r\n\r\n# Quick Installation\r\n\r\n `git clone https://github.com/EnginDemirbilek/NorthStarC2.git`\r\n\u003cbr\u003e\r\n `cd NorthStarC2/`\r\n\u003cbr\u003e\r\n`chmod +x install.sh`\r\n\u003cbr\u003e\r\n `sudo ./install.sh`\r\n\r\nIn order to install the NorthStar C2 properly and get the best experience possible, please refer to [Wiki page](https://github.com/EnginDemirbilek/NorthStarC2/wiki)\r\n\r\n# NorthStarC2 Features\r\n\r\n\r\nThis project is being maintained and updated constantly so make sure to check back for new features and modules! See\r\n[Roadmap](https://github.com/EnginDemirbilek/NorthStarC2/wiki/Roadmap).\r\n\r\nLanguages ​​and technologies used in the NorthStar C2:\r\n\u003cbr\u003e\r\nClient-Side: C # .NET\r\n\u003cbr\u003e\r\nServer-Side: PHP, JS, HTML, CSS\r\n\r\nCurrently, the client-side application (NorthStar Stager) has the following functions:\r\n\r\n- Connecting to the C2 Server via HTTP or HTTPS,\r\n- Receiving commands from the server-side application and responding to the command via HTTP methods,\r\n- Encrypting the communication traffic with XOR and obfuscating it with Base64,\r\n- Copying itself to a different directory,\r\n- Persistance through start-up folders and schtasks,\r\n- Host Reconnaissance : Hostname, Username, Current Privileges, Exec Dir and Process ID,\r\n- Privilege Escalation : UAC bypass through eventvwr.exe,\r\n- Taking screenshots and saving them into a directory,\r\n- Uploading any file to the victim machine,\r\n- Downloading any file from the victim machine,\r\n- SAM dump via reg save command,\r\n- Changing the working directory,\r\n- View the files and folders in the directory,\r\n- Viewing the contents of the files,\r\n- Deleting files,\r\n- Send commands directly on cmd.exe.\r\n\r\nCurrently, server-side application has the following functions:\r\n\r\n- User-Friendly GUI with everything needed to manage sessions opened by the stager.\r\n\r\n## Contributors\r\nDuring the development process these guys spent hours on this project:\r\n\u003cbr\u003e\r\n[Selçuk Demir](https://twitter.com/s3ljuk) and [Hasan Ekin Dumanoğulları](https://www.linkedin.com/in/hekindmn/).\r\n\r\n# GUI Preview\r\n\r\n![alt text](https://github.com/EnginDemirbilek/NorthStarC2/blob/master/ss/ss1.PNG)\r\n\u003cbr\u003e\r\n\u003cbr\u003e\r\n\u003cbr\u003e\r\n![alt text](https://github.com/EnginDemirbilek/NorthStarC2/blob/master/ss/ss2.PNG)\r\n\u003cbr\u003e\r\n\u003cbr\u003e\r\n\u003cbr\u003e\r\n![alt text](https://github.com/EnginDemirbilek/NorthStarC2/blob/master/ss/ss6.PNG)\r\n\r\n\r\n# Acknowledgements\r\n\r\n\r\nFor theme : [RuangAdmin](https://github.com/indrijunanda/RuangAdmin)\r\n\r\n\r\nFor inspiration: \r\n[Utku Şen](https://twitter.com/utkusen) \r\n\r\n\r\n[Muhammet Ates](https://twitter.com/nas_sec)\r\n\r\n\r\n[Mr-Un1k0d3r](https://github.com/Mr-Un1k0d3r)\r\n\r\n\r\n[Boğaziçi University Management Information Systems Cyber Security Center](https://siber.boun.edu.tr/en)\r\n\r\n\r\n\r\n \r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FEnginDemirbilek%2FNorthStarC2","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FEnginDemirbilek%2FNorthStarC2","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FEnginDemirbilek%2FNorthStarC2/lists"}