Projects in Awesome Lists tagged with c2
A curated list of projects in awesome lists tagged with c2 .
https://github.com/bishopfox/sliver
Adversary Emulation Framework
adversarial-attacks adversary-simulation c2 command-and-control dns dns-server golang gplv3 http implant red-team red-team-engagement red-teaming security-tools sliver
Last synced: 23 Feb 2026
https://github.com/BishopFox/sliver
Adversary Emulation Framework
adversarial-attacks adversary-simulation c2 command-and-control dns dns-server golang gplv3 http implant red-team red-team-engagement red-teaming security-tools sliver
Last synced: 15 Mar 2025
https://github.com/ne0nd0g/merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
agent c2 command-and-control golang http2 post-exploitation
Last synced: 13 May 2025
https://github.com/Ne0nd0g/merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
agent c2 command-and-control golang http2 post-exploitation
Last synced: 13 Mar 2025
https://github.com/BC-SECURITY/Empire
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
c2 empire hacktoberfest redteam-infrastructure
Last synced: 24 Mar 2025
https://github.com/cobbr/covenant
Covenant is a collaborative .NET C2 framework for red teamers.
c2 covenant dotnet dotnet-core red-team
Last synced: 14 May 2025
https://github.com/bc-security/empire
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
c2 empire hacktoberfest redteam-infrastructure
Last synced: 15 Dec 2025
https://github.com/cobbr/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
c2 covenant dotnet dotnet-core red-team
Last synced: 24 Mar 2025
https://github.com/skerkour/black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
audit beacon bug-bounty bug-hunting c2 hacking infosec offensive-security pentest pentesting phishing red-team rust scanner security security-tools shellcodes trojan virus wasm
Last synced: 14 May 2025
https://github.com/t3l3machus/villain
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
c2 cybersecurity hacking hacking-tool offensive-security open-source penetration-testing penetration-testing-tools pentest pentesting readteaming redteam redteam-tools
Last synced: 13 May 2025
https://github.com/t3l3machus/Villain
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
c2 cybersecurity hacking hacking-tool offensive-security open-source penetration-testing penetration-testing-tools pentest pentesting readteaming redteam redteam-tools
Last synced: 30 Mar 2025
https://github.com/nil0x42/phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
advanced-persistent-threat backdoor blackhat c2 command-and-control hacking hacking-framework hacktool persistence php-backdoor php-webshell php-webshell-backdoor post-exploitation privilege-escalation redteam stealth web-hacking webshell
Last synced: 15 May 2025
https://github.com/nettitude/poshc2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
c2 csharp nettitude payloads poshc2 poshc2-installation powershell proxy-aware python3 redteam
Last synced: 14 May 2025
https://github.com/nettitude/PoshC2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
c2 csharp nettitude payloads poshc2 poshc2-installation powershell proxy-aware python3 redteam
Last synced: 24 Mar 2025
https://github.com/jm33-m0/emp3r0r
Self‑healing Gossip Mesh C2 with Assisted Peer Discovery, Modular Post‑Exploitation, and OPSEC‑Focused Transport
c2 emp3r0r hacking-tool linux local-privilege-escalation malware penetration-testing-framework post-exploitation rat redteam redteaming rootkit stealth trojan-malware
Last synced: 28 Apr 2026
https://github.com/bc-security/starkiller
Starkiller is a Frontend for PowerShell Empire.
c2 empire hacktoberfest redteam-infrastructure
Last synced: 28 May 2026
https://github.com/BC-SECURITY/Starkiller
Starkiller is a Frontend for PowerShell Empire.
c2 empire hacktoberfest redteam-infrastructure
Last synced: 12 Jul 2025
https://github.com/DeimosC2/DeimosC2
DeimosC2 is a Golang command and control framework for post-exploitation.
c2 doh golang hacktoberfest https infosec quic red-team security-tools
Last synced: 05 Apr 2025
https://github.com/INotGreen/XiebroC2
渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理
Last synced: 04 Apr 2025
https://github.com/cyberark/kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
agent c2 command-and-control containers golang http2 kubernetes penetration-testing-framework penetration-testing-tools post-exploitation red-teams redteam-tools security security-tools
Last synced: 28 Sep 2025
https://github.com/s1ckb0y1337/cobalt-strike-cheatsheet
Some notes and examples for cobalt strike's functionality
c2 cheatsheet cobalt cobalt-strike redteam redteaming
Last synced: 08 Feb 2026
https://github.com/S1ckB0y1337/Cobalt-Strike-CheatSheet
Some notes and examples for cobalt strike's functionality
c2 cheatsheet cobalt cobalt-strike redteam redteaming
Last synced: 05 Apr 2025
https://github.com/c2lang/c2compiler
the c2 programming language
c c2 compiler programming-language
Last synced: 11 Mar 2026
https://github.com/spensercai/drat
去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化
bot c2 decentralized ens ethereum go golang hacking hacking-tool rat remote-control security-tools telegram
Last synced: 04 Apr 2025
https://github.com/sensepost/godoh
🕳 godoh - A DNS-over-HTTPS C2
c2 command-and-control dns dns-over-https doh golang
Last synced: 13 Apr 2025
https://github.com/mhaskar/Octopus
Open source pre-operation C2 server based on python and powershell
c2 pentesting powershell python redteam security
Last synced: 24 Mar 2025
https://github.com/sensepost/goDoH
🕳 godoh - A DNS-over-HTTPS C2
c2 command-and-control dns dns-over-https doh golang
Last synced: 24 Mar 2025
https://github.com/mhaskar/octopus
Open source pre-operation C2 server based on python and powershell
c2 pentesting powershell python redteam security
Last synced: 18 Jan 2026
https://github.com/d00movenok/bounceback
↕️🤫 Stealth redirector for your red team operation security
c2 cobalt-strike cybersecurity infrastructure opsec pentest pentesting phishing proxy redirector redteam security
Last synced: 02 Mar 2026
https://github.com/bert-janp/open-source-threat-intel-feeds
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
c2 ioc iocfeed malware misp phishing threat-hunting threat-intelligence
Last synced: 15 May 2025
https://github.com/Bert-JanP/Open-Source-Threat-Intel-Feeds
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
c2 ioc iocfeed malware misp phishing threat-hunting threat-intelligence
Last synced: 10 Apr 2025
https://github.com/b23r0/Heroinn
A cross platform C2/post-exploitation framework.
c2 pentest-tool post-exploitation rat remote-control trojan-rat
Last synced: 05 Apr 2025
https://github.com/postrequest/link
link is a command and control framework written in rust
c2 command-and-control implant payload penetration-testing pentesting red-team rust
Last synced: 05 Apr 2025
https://github.com/looCiprian/GC2-sheet
GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.
c2 command-and-control golang google google-drive google-sheet malware
Last synced: 11 Jul 2025
https://github.com/joelgmsec/psransom
PowerShell Ransomware Simulator with C2 Server
c2 powershell psransom ransomware simulator
Last synced: 04 Apr 2025
https://github.com/enkomio/alanframework
A C2 post-exploitation framework
c2 hacking hacking-tool post-exploitation red-team red-teaming security security-tool
Last synced: 05 Apr 2025
https://github.com/coalfire-research/slackor
A Golang implant that uses Slack as a command and control server
c2 command-and-control golang penetration-testing penetration-testing-tools pentest python red-team remote-admin-tool
Last synced: 05 Apr 2025
https://github.com/enkomio/AlanFramework
A C2 post-exploitation framework
c2 hacking hacking-tool post-exploitation red-team red-teaming security security-tool
Last synced: 11 Jul 2025
https://github.com/Coalfire-Research/Slackor
A Golang implant that uses Slack as a command and control server
c2 command-and-control golang penetration-testing penetration-testing-tools pentest python red-team remote-admin-tool
Last synced: 20 Mar 2025
https://github.com/tomiwa-ot/moukthar
Android remote administration tool
android android-rat c2 c2-server c2c collaborate command-and-control dynamic-routing java php php-framework rat ratchet-php-server remote-access-trojan remote-administrative-tool remoteadministrationtool spyware trojan web-socket-server web-sockets
Last synced: 08 Apr 2025
https://github.com/wsummerhill/C2_RedTeam_CheatSheets
Useful C2 techniques and cheatsheets learned from engagements
Last synced: 11 Jul 2025
https://github.com/gl4ssesbo1/Nebula
Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components.
aws c2 cloud enumeration nebula pentesting reconnaissance
Last synced: 30 Apr 2025
https://github.com/hackercalico/magic_c2
Red Team C2 Framework with AV/EDR bypass capabilities.
antivirus-bypass antivirus-evasion bypass-antivirus bypass-av bypass-edr c2 c2-framework rat red-team
Last synced: 16 May 2025
https://github.com/itaymigdal/Nimbo-C2
Nimbo-C2 is yet another (simple and lightweight) C2 framework
c2 c2-framework command-and-control payload-generator penetration-testing-tools pentesting-tools rat red-team red-team-tools
Last synced: 05 Apr 2025
https://github.com/spellshift/realm
Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.
agent bot c2 cyber cybersecurity golang graphql implant react redteam redteam-tools redteaming rust teamserver typescript webui
Last synced: 04 Apr 2026
https://github.com/pumpbin/pumpbin
🎃 PumpBin is an Implant Generation Platform.
adversarial-attacks application bypass-antivirus c2 command-and-control cybersecurity iced implant linux macos offensive-security redteam rust security security-tools shellcode shellcode-injection shellcode-injector shellcode-loader windows
Last synced: 06 Apr 2025
https://github.com/activecm/rita
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
anomaly-detection beacons blue-team c2 c2-detection command-and-control cyber-security incident-response intrusion-detection log-analysis network-monitoring network-traffic-analysis security-tools threat-hunting threat-intelligence zeek
Last synced: 16 May 2025
https://github.com/tokyoneon/credphish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
amsi antivirus-evasion backdoor bypass-antivirus c2 dns dns-server exfiltration information-security kali kali-linux kali-scripts offensive-security penetration-testing reverse-shell shell social-engineering
Last synced: 09 Apr 2025
https://github.com/tokyoneon/CredPhish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
amsi antivirus-evasion backdoor bypass-antivirus c2 dns dns-server exfiltration information-security kali kali-linux kali-scripts offensive-security penetration-testing reverse-shell shell social-engineering
Last synced: 13 Mar 2025
https://github.com/kleiton0x00/redditc2
Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit.
c2 cybersecurity hacking pentest pentesting reddit redteam
Last synced: 09 Apr 2025
https://github.com/reveng007/sharpgmailc2
Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol
c2 gmail hacking-tool imap-client implant powershell redteam redteam-tools redteaming smtp-client
Last synced: 09 Apr 2025
https://github.com/Ziconius/FudgeC2
FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
c2 command-and-control cybersecurity implant offensive-security post-exploitation powershell purpleteam python3 readteaming redteam security security-tools
Last synced: 24 Mar 2025
https://github.com/eljaviluki/cobaltstrike_openbeacon
Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for security professionals and enthusiasts.
beacon c c2 cobalt-strike cobaltstrike cybersecurity payload
Last synced: 09 Apr 2025
https://github.com/shadow-workers/shadow-workers
Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
c2 penetration-testing-tools proxy service-worker xss-exploitation
Last synced: 02 Apr 2025
https://github.com/dobin/antnium
A C2 framework for initial access in Go
c2 edr-bypass initial-access rat remote-access
Last synced: 21 Aug 2025
https://github.com/chainreactors/malice-network
Next Generation C2 Framework
Last synced: 10 Apr 2026
https://github.com/chainreactors/malefic
IoM implant, C2 Framework and Infrastructure
Last synced: 05 Apr 2025
https://github.com/emmaunel/discordgo
Discord C2 for Redteam....Need a better name
bot c2 covert-channel covert-channels discord discord-bot discordgo redteam
Last synced: 15 Apr 2025
https://github.com/maxdcb/c2teamserver
TeamServer and Client of Exploration Command and Control Framework
c2 commandandcontrol cybersecurity readteam
Last synced: 05 Apr 2025
https://github.com/phrozenio/sharpftpc2
A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.
adversary-simulation c2 csharp ftp ftp-client infosec microsoft redteam windows
Last synced: 16 May 2025
https://github.com/audibleblink/gorsh
A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface
c2 golang infosec redteam reverse-shell reverseshell security security-tools
Last synced: 05 Apr 2025
https://github.com/xRET2pwn/PickleC2
PickleC2 is a post-exploitation and lateral movements framework
c2 command-and-control picklec2
Last synced: 12 Jul 2025
https://github.com/zarkones/onionc2
C2 writen in Rust & Go powered by Tor network.
adversary-simulation botnet c2 hacking onion pentesting red-team remote-access remote-control tor xena
Last synced: 08 Mar 2026
https://github.com/joelgmsec/kitsune
Polymorphic Command & Control
c2 commandandcontrol gui kitsune linux polymorphic python3 windows
Last synced: 09 Apr 2025
https://github.com/Coff0xc/AutoRedTeam-Orchestrator
AI-Driven Automated Red Team Orchestration Framework | AI驱动的自动化红队编排框架 | 101 MCP Tools | 2000+ Payloads | Full ATT&CK Coverage | MCTS Attack Planner | Knowledge Graph | Cross-platform
active-directory ai-powered att-ck automation c2 credential-dumping evasion kerberos lateral-movement mcp penetration-testing penetration-testing-tools persistence python red-team red-team-tools security security-tools vulnerability-scanners
Last synced: 22 Feb 2026
https://github.com/jxroot/rehttp
Simple Powershell Http shell With WEB UI
backdoor c2 exploitation-framework hack javascript kali-linux penetration-testing pentest pentesting php post-exploitation powershell rat red-team termux
Last synced: 07 May 2025
https://github.com/d00movenok/gomalleable
🔎🪲 Malleable C2 profiles parser and assembler written in golang
c2 cobalt-strike cybersecurity go golang malleable-c2 parser pentest pentesting redteam security
Last synced: 20 Jun 2025
https://github.com/whomrx666/anonymous-c2
This is a DDOS tool {denial-of-service} by sending commands to botnet members. Botnet members can be called zombies and the botnet itself can be called a zombie army
anonymous-c2 c2 ddos ddos-attacks ddos-c2 denial-of-service kali-linux linux linux-mint termux
Last synced: 17 Mar 2025
https://github.com/reveng007/c2_server
C2 server to connect to a victim machine via reverse shell
c2 post-exploitation python3 reverse-shell
Last synced: 02 May 2025
https://github.com/jm33-m0/go-cdn2proxy
proxy your C2 traffic through CDN using websocket
c2 cdn proxy redteam-tools websocket
Last synced: 08 Apr 2025
https://github.com/pygrum/monarch
Monarch - The Adversary Emulation Toolkit
adversary-emulation c2 command-and-control golang implant red-team red-team-engagement red-teaming security-tools
Last synced: 14 Jan 2026
https://github.com/degenerat3/meteor
A cross-platform C2/teamserver supporting multiple transport protocols, written in Go.
c2 command-and-control docker docker-compose entgo entity-framework golang land-before-time offensive-security postgresql redteam
Last synced: 12 Feb 2026
https://github.com/cbrnrd/maliketh
🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
c2 cybersecurity framework malware penetration-testing pentest-tool redteam-tools redteaming windows
Last synced: 31 Jul 2025
https://github.com/seqre/rast
A cross platform C2 server written in Rust!
c2 command-and-control rat remote-access-trojan
Last synced: 23 Jul 2025
https://github.com/nickvourd/cs-aggressor-kit
Homemade Aggressor scripts kit for Cobalt Strike
aggressor-scripts c2 c2-framework cna cobalt-strike command-and-control configuration configuration-files java kit redteam redteam-tools redteaming weaponized
Last synced: 02 Mar 2025
https://github.com/michael2to3/c2-search-netlas
Search for c2 servers based on netlas
bindshell c2 detect malware reverse-shell search security security-tool shodan vulnaribility
Last synced: 10 May 2025
https://github.com/sneakerhax/c2pe
Red Team C2 and Post Exploitation code
c2 golang offensive-security post-exploitation python3 redteam
Last synced: 15 Jan 2026
https://github.com/teler-sh/sebel
Checks SSL/TLS certificates for potential malicious connections by detecting and blocking certificates used by botnet command and control (C&C) servers.
abuse blacklist c2 command-and-control go go-lib go-library golang sebel ssl sslbl tls
Last synced: 01 Aug 2025
https://github.com/whitecat18/mavoc
Mavoc is an Automated c2 Windows and Linux Pentesting Tool used to generate reverse shell and deploy attacking scripts to host machines and can maintain multiple reverse connections .
c2 cybersec hacking-tool open-source penetration-testing pentesting pentesting-tools powershell-hacking powershell-scripts redteam redteam-tools redteaming
Last synced: 24 Apr 2025
https://github.com/sneakerhax/C2PE
C2 and Post Exploitation Code
c2 golang offensivesecurity pentesting post-exploitation python3 redteam security
Last synced: 11 Jul 2025
https://github.com/idigitalflame/thunderstorm
Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)
c2 ctf go golang golang-application hacking offensive-security python python3 redteam
Last synced: 17 Aug 2025
https://github.com/censys-workshop/threatfox-censys
Threatfox Censys is a tool to query Censys Search for IP addresses and domains and then parses the JSON and submits the results to Threatfox.
c2 censys censys-search iocs threatfox
Last synced: 10 May 2025
https://github.com/0xvpr/malicious-software-research
A repository dedicated to researching, documenting, developing, and ultimately, defending against various strains of malicious software.
c2 evasion injection keylogger living-off-the-land obfuscation ransomware research server shellcode socket
Last synced: 29 Apr 2025
https://github.com/maxdcb/c2implant
Windows C++ Implant for Exploration C2
c2 commandandcontrol cybersecurity redteam
Last synced: 12 Jun 2025
https://github.com/leonjza/tc2
treafik fronted c2 examples
c2 cobaltstrike covenant redteam security traefik
Last synced: 01 Nov 2025
https://github.com/tomiwa-ot/telegram-c2
Control a system remotely via telegram
c2 c2-server c2c command-and-control python rat remote-access-tool remote-access-trojan remote-access-trojan-tool remote-control telegram telegram-bot
Last synced: 10 Apr 2025
https://github.com/processust/havochub
PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are relayed through Issues and Comments for maximum stealth.
c2 github havoc havoc-framework python redteam
Last synced: 30 Apr 2026