An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with c2

A curated list of projects in awesome lists tagged with c2 .

https://github.com/ne0nd0g/merlin

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

agent c2 command-and-control golang http2 post-exploitation

Last synced: 13 May 2025

https://github.com/Ne0nd0g/merlin

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

agent c2 command-and-control golang http2 post-exploitation

Last synced: 13 Mar 2025

https://github.com/BC-SECURITY/Empire

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

c2 empire hacktoberfest redteam-infrastructure

Last synced: 24 Mar 2025

https://github.com/cobbr/covenant

Covenant is a collaborative .NET C2 framework for red teamers.

c2 covenant dotnet dotnet-core red-team

Last synced: 14 May 2025

https://github.com/bc-security/empire

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

c2 empire hacktoberfest redteam-infrastructure

Last synced: 15 Dec 2025

https://github.com/cobbr/Covenant

Covenant is a collaborative .NET C2 framework for red teamers.

c2 covenant dotnet dotnet-core red-team

Last synced: 24 Mar 2025

https://github.com/t3l3machus/villain

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).

c2 cybersecurity hacking hacking-tool offensive-security open-source penetration-testing penetration-testing-tools pentest pentesting readteaming redteam redteam-tools

Last synced: 13 May 2025

https://github.com/t3l3machus/Villain

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).

c2 cybersecurity hacking hacking-tool offensive-security open-source penetration-testing penetration-testing-tools pentest pentesting readteaming redteam redteam-tools

Last synced: 30 Mar 2025

https://github.com/bats3c/shad0w

A post exploitation framework designed to operate covertly on heavily monitored environments

c c2 docker dotnet red-team shad0w shellcode

Last synced: 15 May 2025

https://github.com/nettitude/poshc2

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

c2 csharp nettitude payloads poshc2 poshc2-installation powershell proxy-aware python3 redteam

Last synced: 14 May 2025

https://github.com/nettitude/PoshC2

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

c2 csharp nettitude payloads poshc2 poshc2-installation powershell proxy-aware python3 redteam

Last synced: 24 Mar 2025

https://github.com/jm33-m0/emp3r0r

Self‑healing Gossip Mesh C2 with Assisted Peer Discovery, Modular Post‑Exploitation, and OPSEC‑Focused Transport

c2 emp3r0r hacking-tool linux local-privilege-escalation malware penetration-testing-framework post-exploitation rat redteam redteaming rootkit stealth trojan-malware

Last synced: 28 Apr 2026

https://github.com/bc-security/starkiller

Starkiller is a Frontend for PowerShell Empire.

c2 empire hacktoberfest redteam-infrastructure

Last synced: 28 May 2026

https://github.com/BC-SECURITY/Starkiller

Starkiller is a Frontend for PowerShell Empire.

c2 empire hacktoberfest redteam-infrastructure

Last synced: 12 Jul 2025

https://github.com/DeimosC2/DeimosC2

DeimosC2 is a Golang command and control framework for post-exploitation.

c2 doh golang hacktoberfest https infosec quic red-team security-tools

Last synced: 05 Apr 2025

https://github.com/INotGreen/XiebroC2

渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理

c2 pentest-tool

Last synced: 04 Apr 2025

https://github.com/cyberark/kubesploit

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

agent c2 command-and-control containers golang http2 kubernetes penetration-testing-framework penetration-testing-tools post-exploitation red-teams redteam-tools security security-tools

Last synced: 28 Sep 2025

https://github.com/s1ckb0y1337/cobalt-strike-cheatsheet

Some notes and examples for cobalt strike's functionality

c2 cheatsheet cobalt cobalt-strike redteam redteaming

Last synced: 08 Feb 2026

https://github.com/S1ckB0y1337/Cobalt-Strike-CheatSheet

Some notes and examples for cobalt strike's functionality

c2 cheatsheet cobalt cobalt-strike redteam redteaming

Last synced: 05 Apr 2025

https://github.com/c2lang/c2compiler

the c2 programming language

c c2 compiler programming-language

Last synced: 11 Mar 2026

https://github.com/spensercai/drat

去中心化远程控制工具(Decentralized Remote Administration Tool),通过ENS实现了配置文件分发的去中心化,通过Telegram实现了服务端的去中心化

bot c2 decentralized ens ethereum go golang hacking hacking-tool rat remote-control security-tools telegram

Last synced: 04 Apr 2025

https://github.com/YDHCUI/manjusaka

牛屎花 一款基于WEB界面的远程主机管理工具

c2 cobaltstrike

Last synced: 05 Apr 2025

https://github.com/sensepost/godoh

🕳 godoh - A DNS-over-HTTPS C2

c2 command-and-control dns dns-over-https doh golang

Last synced: 13 Apr 2025

https://github.com/mhaskar/Octopus

Open source pre-operation C2 server based on python and powershell

c2 pentesting powershell python redteam security

Last synced: 24 Mar 2025

https://github.com/sensepost/goDoH

🕳 godoh - A DNS-over-HTTPS C2

c2 command-and-control dns dns-over-https doh golang

Last synced: 24 Mar 2025

https://github.com/mhaskar/octopus

Open source pre-operation C2 server based on python and powershell

c2 pentesting powershell python redteam security

Last synced: 18 Jan 2026

https://github.com/d00movenok/bounceback

↕️🤫 Stealth redirector for your red team operation security

c2 cobalt-strike cybersecurity infrastructure opsec pentest pentesting phishing proxy redirector redteam security

Last synced: 02 Mar 2026

https://github.com/bert-janp/open-source-threat-intel-feeds

This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.

c2 ioc iocfeed malware misp phishing threat-hunting threat-intelligence

Last synced: 15 May 2025

https://github.com/Bert-JanP/Open-Source-Threat-Intel-Feeds

This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.

c2 ioc iocfeed malware misp phishing threat-hunting threat-intelligence

Last synced: 10 Apr 2025

https://github.com/b23r0/Heroinn

A cross platform C2/post-exploitation framework.

c2 pentest-tool post-exploitation rat remote-control trojan-rat

Last synced: 05 Apr 2025

https://github.com/Ptkatz/OrcaC2

OrcaC2是一款基于Websocket加密通信的多功能C&C框架,使用Golang实现。

c2 golang orca-c2 rat redteam

Last synced: 11 Jul 2025

https://github.com/cr4sh/microbackdoor

Small and convenient C2 tool for Windows targets. [ Русский -- значит нахуй! ]

backdoor c2 malware python shellcode windows

Last synced: 11 Oct 2025

https://github.com/Cr4sh/MicroBackdoor

Small and convenient C2 tool for Windows targets. [ Русский -- значит нахуй! ]

backdoor c2 malware python shellcode windows

Last synced: 11 Jul 2025

https://github.com/postrequest/link

link is a command and control framework written in rust

c2 command-and-control implant payload penetration-testing pentesting red-team rust

Last synced: 05 Apr 2025

https://github.com/looCiprian/GC2-sheet

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.

c2 command-and-control golang google google-drive google-sheet malware

Last synced: 11 Jul 2025

https://github.com/joelgmsec/psransom

PowerShell Ransomware Simulator with C2 Server

c2 powershell psransom ransomware simulator

Last synced: 04 Apr 2025

https://github.com/wsummerhill/C2_RedTeam_CheatSheets

Useful C2 techniques and cheatsheets learned from engagements

c2 cobaltstrike sliver

Last synced: 11 Jul 2025

https://github.com/gl4ssesbo1/Nebula

Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components.

aws c2 cloud enumeration nebula pentesting reconnaissance

Last synced: 30 Apr 2025

https://github.com/hackercalico/magic_c2

Red Team C2 Framework with AV/EDR bypass capabilities.

antivirus-bypass antivirus-evasion bypass-antivirus bypass-av bypass-edr c2 c2-framework rat red-team

Last synced: 16 May 2025

https://github.com/spellshift/realm

Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.

agent bot c2 cyber cybersecurity golang graphql implant react redteam redteam-tools redteaming rust teamserver typescript webui

Last synced: 04 Apr 2026

https://github.com/activecm/rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

anomaly-detection beacons blue-team c2 c2-detection command-and-control cyber-security incident-response intrusion-detection log-analysis network-monitoring network-traffic-analysis security-tools threat-hunting threat-intelligence zeek

Last synced: 16 May 2025

https://github.com/tokyoneon/credphish

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

amsi antivirus-evasion backdoor bypass-antivirus c2 dns dns-server exfiltration information-security kali kali-linux kali-scripts offensive-security penetration-testing reverse-shell shell social-engineering

Last synced: 09 Apr 2025

https://github.com/tokyoneon/CredPhish

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

amsi antivirus-evasion backdoor bypass-antivirus c2 dns dns-server exfiltration information-security kali kali-linux kali-scripts offensive-security penetration-testing reverse-shell shell social-engineering

Last synced: 13 Mar 2025

https://github.com/kleiton0x00/redditc2

Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit.

c2 cybersecurity hacking pentest pentesting reddit redteam

Last synced: 09 Apr 2025

https://github.com/reveng007/sharpgmailc2

Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol

c2 gmail hacking-tool imap-client implant powershell redteam redteam-tools redteaming smtp-client

Last synced: 09 Apr 2025

https://github.com/Ziconius/FudgeC2

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

c2 command-and-control cybersecurity implant offensive-security post-exploitation powershell purpleteam python3 readteaming redteam security security-tools

Last synced: 24 Mar 2025

https://github.com/eljaviluki/cobaltstrike_openbeacon

Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for security professionals and enthusiasts.

beacon c c2 cobalt-strike cobaltstrike cybersecurity payload

Last synced: 09 Apr 2025

https://github.com/shadow-workers/shadow-workers

Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

c2 penetration-testing-tools proxy service-worker xss-exploitation

Last synced: 02 Apr 2025

https://github.com/dobin/antnium

A C2 framework for initial access in Go

c2 edr-bypass initial-access rat remote-access

Last synced: 21 Aug 2025

https://github.com/chainreactors/malice-network

Next Generation C2 Framework

c2 security

Last synced: 10 Apr 2026

https://github.com/processust/venoma

Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution

antivirus bypass c2 cobalt dropper edr indirect malware payload pentest red strike syscalls team

Last synced: 12 Apr 2025

https://github.com/chainreactors/malefic

IoM implant, C2 Framework and Infrastructure

c2 security

Last synced: 05 Apr 2025

https://github.com/emmaunel/discordgo

Discord C2 for Redteam....Need a better name

bot c2 covert-channel covert-channels discord discord-bot discordgo redteam

Last synced: 15 Apr 2025

https://github.com/maxdcb/c2teamserver

TeamServer and Client of Exploration Command and Control Framework

c2 commandandcontrol cybersecurity readteam

Last synced: 05 Apr 2025

https://github.com/saturnsvoid/project-whis

UNFINISHED Botnet using a Go and Bootstrap Based C2, Support for Windows, Linux and Android Clients.

android botnet c2 clipper ddos go linux malware rat stealer virus windows

Last synced: 20 Jun 2025

https://github.com/phrozenio/sharpftpc2

A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.

adversary-simulation c2 csharp ftp ftp-client infosec microsoft redteam windows

Last synced: 16 May 2025

https://github.com/audibleblink/gorsh

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

c2 golang infosec redteam reverse-shell reverseshell security security-tools

Last synced: 05 Apr 2025

https://github.com/xRET2pwn/PickleC2

PickleC2 is a post-exploitation and lateral movements framework

c2 command-and-control picklec2

Last synced: 12 Jul 2025

https://github.com/joelgmsec/kitsune

Polymorphic Command & Control

c2 commandandcontrol gui kitsune linux polymorphic python3 windows

Last synced: 09 Apr 2025

https://github.com/Coff0xc/AutoRedTeam-Orchestrator

AI-Driven Automated Red Team Orchestration Framework | AI驱动的自动化红队编排框架 | 101 MCP Tools | 2000+ Payloads | Full ATT&CK Coverage | MCTS Attack Planner | Knowledge Graph | Cross-platform

active-directory ai-powered att-ck automation c2 credential-dumping evasion kerberos lateral-movement mcp penetration-testing penetration-testing-tools persistence python red-team red-team-tools security security-tools vulnerability-scanners

Last synced: 22 Feb 2026

https://github.com/d00movenok/gomalleable

🔎🪲 Malleable C2 profiles parser and assembler written in golang

c2 cobalt-strike cybersecurity go golang malleable-c2 parser pentest pentesting redteam security

Last synced: 20 Jun 2025

https://github.com/whomrx666/anonymous-c2

This is a DDOS tool {denial-of-service} by sending commands to botnet members. Botnet members can be called zombies and the botnet itself can be called a zombie army

anonymous-c2 c2 ddos ddos-attacks ddos-c2 denial-of-service kali-linux linux linux-mint termux

Last synced: 17 Mar 2025

https://github.com/reveng007/c2_server

C2 server to connect to a victim machine via reverse shell

c2 post-exploitation python3 reverse-shell

Last synced: 02 May 2025

https://github.com/jm33-m0/go-cdn2proxy

proxy your C2 traffic through CDN using websocket

c2 cdn proxy redteam-tools websocket

Last synced: 08 Apr 2025

https://github.com/degenerat3/meteor

A cross-platform C2/teamserver supporting multiple transport protocols, written in Go.

c2 command-and-control docker docker-compose entgo entity-framework golang land-before-time offensive-security postgresql redteam

Last synced: 12 Feb 2026

https://github.com/cbrnrd/maliketh

🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python

c2 cybersecurity framework malware penetration-testing pentest-tool redteam-tools redteaming windows

Last synced: 31 Jul 2025

https://github.com/seqre/rast

A cross platform C2 server written in Rust!

c2 command-and-control rat remote-access-trojan

Last synced: 23 Jul 2025

https://github.com/password-reset/TrelloC2

Simple C2 over the Trello API

c2 pentesting redteam

Last synced: 07 Sep 2025

https://github.com/sneakerhax/c2pe

Red Team C2 and Post Exploitation code

c2 golang offensive-security post-exploitation python3 redteam

Last synced: 15 Jan 2026

https://github.com/teler-sh/sebel

Checks SSL/TLS certificates for potential malicious connections by detecting and blocking certificates used by botnet command and control (C&C) servers.

abuse blacklist c2 command-and-control go go-lib go-library golang sebel ssl sslbl tls

Last synced: 01 Aug 2025

https://github.com/whitecat18/mavoc

Mavoc is an Automated c2 Windows and Linux Pentesting Tool used to generate reverse shell and deploy attacking scripts to host machines and can maintain multiple reverse connections .

c2 cybersec hacking-tool open-source penetration-testing pentesting pentesting-tools powershell-hacking powershell-scripts redteam redteam-tools redteaming

Last synced: 24 Apr 2025

https://github.com/idigitalflame/thunderstorm

Golang C2 Server and Agents using XMT (https://github.com/iDigitalFlame/xmt)

c2 ctf go golang golang-application hacking offensive-security python python3 redteam

Last synced: 17 Aug 2025

https://github.com/censys-workshop/threatfox-censys

Threatfox Censys is a tool to query Censys Search for IP addresses and domains and then parses the JSON and submits the results to Threatfox.

c2 censys censys-search iocs threatfox

Last synced: 10 May 2025

https://github.com/0xvpr/malicious-software-research

A repository dedicated to researching, documenting, developing, and ultimately, defending against various strains of malicious software.

c2 evasion injection keylogger living-off-the-land obfuscation ransomware research server shellcode socket

Last synced: 29 Apr 2025

https://github.com/maxdcb/c2implant

Windows C++ Implant for Exploration C2

c2 commandandcontrol cybersecurity redteam

Last synced: 12 Jun 2025

https://github.com/j3ssie/c2s

Command and Control server on Slack

botnets c2 slack

Last synced: 02 Aug 2025

https://github.com/elliotwutingfeng/threatfox-ioc-ips

Machine-readable .txt IP blocklist from ThreatFox by Abuse.ch, updated every hour.

abuse aiohttp blocklist c2 feed firewalla ioc malware osint pfblockerng python spamhaus threatfox

Last synced: 29 Apr 2025

https://github.com/leonjza/tc2

treafik fronted c2 examples

c2 cobaltstrike covenant redteam security traefik

Last synced: 01 Nov 2025

https://github.com/processust/havochub

PoC for a Havoc agent/handler setup with all C2 traffic routed through GitHub. No direct connections: all commands and responses are relayed through Issues and Comments for maximum stealth.

c2 github havoc havoc-framework python redteam

Last synced: 30 Apr 2026