#C2

Showing 60 of 78 repositories tagged #c2, ranked by stars

BishopFox
BishopFox
sliver

Adversary Emulation Framework

Score
100
โ˜… 11.5k โ‘‚ 1.5k +43/day
Go
Ne0nd0g
Ne0nd0g
merlin

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Score
70
โ˜… 5.6k โ‘‚ 838 โ€”
Go
t3l3machus
t3l3machus
Villain

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).

Score
96
โ˜… 4.4k โ‘‚ 691 โ€”
Python
skerkour
skerkour
black-hat-rust

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Score
100
โ˜… 4.4k โ‘‚ 434 โ€”
Rust
nil0x42
nil0x42
phpsploit

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Score
92
โ˜… 2.5k โ‘‚ 470 +2/day
Python
alphaSeclab
alphaSeclab
awesome-rat

RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.

Score
90
โ˜… 2.2k โ‘‚ 472 +3/day
bats3c
bats3c
shad0w

A post exploitation framework designed to operate covertly on heavily monitored environments

Score
0
โ˜… 2.2k โ‘‚ 331 โ€”
C
nettitude
nettitude
PoshC2

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

Score
100
โ˜… 2.1k โ‘‚ 356 โ€”
PowerShell
D00Movenok
D00Movenok
BounceBack

โ†•๏ธ๐Ÿคซ Stealth redirector for your red team operation security

Score
100
โ˜… 1.1k โ‘‚ 106 โ€”
Go
sensepost
sensepost
godoh

๐Ÿ•ณ godoh - A DNS-over-HTTPS C2

Score
50
โ˜… 809 โ‘‚ 128 โ€”
Go
SpenserCai
SpenserCai
DRat

ๅŽปไธญๅฟƒๅŒ–่ฟœ็จ‹ๆŽงๅˆถๅทฅๅ…ท๏ผˆDecentralized Remote Administration Tool๏ผ‰๏ผŒ้€š่ฟ‡ENSๅฎž็Žฐไบ†้…็ฝฎๆ–‡ไปถๅˆ†ๅ‘็š„ๅŽปไธญๅฟƒๅŒ–๏ผŒ้€š่ฟ‡Telegramๅฎž็Žฐไบ†ๆœๅŠก็ซฏ็š„ๅŽปไธญๅฟƒๅŒ–

Score
30
โ˜… 793 โ‘‚ 53 โ€”
Go
mhaskar
mhaskar
Octopus

Open source pre-operation C2 server based on python and powershell

Score
50
โ˜… 764 โ‘‚ 157 โ€”
Python
cxnturi0n
cxnturi0n
convoC2

C2 infrastructure over Microsoft Teams.

Score
40
โ˜… 756 โ‘‚ 121 +3/day
Go
b23r0
b23r0
Heroinn

A cross platform C2/post-exploitation framework.

Score
33
โ˜… 711 โ‘‚ 222 โ€”
Rust
Ptkatz
Ptkatz
OrcaC2

OrcaC2ๆ˜ฏไธ€ๆฌพๅŸบไบŽWebsocketๅŠ ๅฏ†้€šไฟก็š„ๅคšๅŠŸ่ƒฝC&Cๆก†ๆžถ๏ผŒไฝฟ็”จGolangๅฎž็Žฐใ€‚

Score
20
โ˜… 675 โ‘‚ 83 โ€”
Go
Tomiwa-Ot
Tomiwa-Ot
moukthar

Android remote administration tool

Score
0
โ˜… 670 โ‘‚ 160 โ€”
PHP
looCiprian
looCiprian
GC2-sheet

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.

Score
90
โ˜… 645 โ‘‚ 121 +3/day
Go
spellshift
spellshift
realm

Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.

Score
80
โ˜… 629 โ‘‚ 63 +1/day
Rust
postrequest
postrequest
link

link is a command and control framework written in rust

Score
0
โ˜… 579 โ‘‚ 88 โ€”
Rust
0xflux
0xflux
Wyrm

The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.

Score
67
โ˜… 503 โ‘‚ 49 +3/day
Rust
enkomio
enkomio
AlanFramework

A C2 post-exploitation framework

Score
77
โ˜… 488 โ‘‚ 73 +1/day
Assembly
chainreactors
chainreactors
malice-network

Next Generation C2 Framework, IoM-server/client

Score
98
โ˜… 467 โ‘‚ 68 +4/day
Go
Coalfire-Research
Coalfire-Research
Slackor

A Golang implant that uses Slack as a command and control server

Score
79
โ˜… 463 โ‘‚ 106 โ€”
Python
pumpbin
pumpbin
pumpbin

๐ŸŽƒ PumpBin is an Implant Generation Platform.

Score
65
โ˜… 371 โ‘‚ 38 โ€”
Rust
not-sekiun
not-sekiun
PyIris

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Score
33
โ˜… 326 โ‘‚ 65 โ€”
Python
PhoenixC2
PhoenixC2
PhoenixC2

Command & Control-Framework created for collaboration in python3

Score
83
โ˜… 325 โ‘‚ 47 โ€”
Python
The-Z-Labs
The-Z-Labs
bof-launcher

[ BOF-LAUNCHER ] -> an API for loading, executing and in-memory masking BOFs on Windows and Linux for use in C/Zig/Go/Rust agents/implants. [ Z-BEAC0N ] -> a custom-written stage-1 (aka pre-C2) solution engineered with a small footprint, stealth and modularity in mind. [ DEVELOPED BOFS ] -> cross-platform (12), Linux-only (10), Win-only (2)

Score
94
โ˜… 324 โ‘‚ 28 +1/day
Zig
tokyoneon
tokyoneon
CredPhish

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

Score
63
โ˜… 294 โ‘‚ 44 โ€”
PowerShell
kleiton0x00
kleiton0x00
RedditC2

Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit.

Score
58
โ˜… 274 โ‘‚ 47 โ€”
Python
ElJaviLuki
ElJaviLuki
CobaltStrike_OpenBeacon

Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for security professionals and enthusiasts.

Score
62
โ˜… 269 โ‘‚ 54 +1/day
C
Ziconius
Ziconius
FudgeC2

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

Score
17
โ˜… 254 โ‘‚ 51 โ€”
Python
Coff0xc
Coff0xc
AutoRedTeam-Orchestrator

Enterprise AI Red Team Platform | ไผไธš็บงAI็บข้˜Ÿๅนณๅฐ | 132 MCP Tools | Pure Python Engines | SDK+CLI+MCP | Auto-Download sqlmap/nuclei/ffuf | Production C2 | LLM Enhanced | Docker Sandbox | SARIF CI/CD | 1980 Tests

Score
88
โ˜… 254 โ‘‚ 52 โ€”
Python
Ixve
Ixve
Red-Team-Tools

Repo containing cracked red teaming tools.

Score
81
โ˜… 243 โ‘‚ 51 +1/day
Batchfile
sharsil
sharsil
favicorn

All-sources tool to search websites by favicons

Score
85
โ˜… 197 โ‘‚ 16 โ€”
Python
0x4meliorate
0x4meliorate
toxnet

Decentralised P2P botnet using toxcore.

Score
83
โ˜… 187 โ‘‚ 28 โ€”
C
maxDcb
maxDcb
C2TeamServer

TeamServer and Client of Exploration Command and Control Framework

Score
87
โ˜… 186 โ‘‚ 35 โ€”
Python
hrtywhy
hrtywhy
BOF-CobaltStrike

Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.

Score
44
โ˜… 159 โ‘‚ 15 โ€”
zarkones
zarkones
OnionC2

C2 writen in Rust & Go powered by Tor network.

Score
71
โ˜… 155 โ‘‚ 17 โ€”
Vue
govindasamyarun
govindasamyarun
c2-cloud

The C2 Cloud is a robust web-based C2 framework, designed to simplify the life of penetration testers. It allows easy access to compromised backdoors, just like accessing an EC2 instance in the AWS cloud. It can manage several simultaneous backdoor sessions with a user-friendly interface.

Score
37
โ˜… 128 โ‘‚ 20 โ€”
Python
x86byte
x86byte
LummaC2-Stealer

LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis

Score
38
โ˜… 122 โ‘‚ 25 โ€”
C
st4inl3s5
st4inl3s5
kizagan

KIZAGAN is a RAT,c2 command&control tool.It allows you to build executables and control infected machines.

Score
42
โ˜… 122 โ‘‚ 27 โ€”
Python
rodanmaharjan
rodanmaharjan
ThreatIntelligence

This repository contains Malicious Indicator of Compromise (IOC) blocklist for MISP, firewall which is vital for cybersecurity professionals to enhance threat detection and improve incident response capabilities.

Score
52
โ˜… 122 โ‘‚ 23 +1/day
Python
CirqueiraDev
CirqueiraDev
KryptonC2

Krypton C2 is a simple botnet source. Credits Source Code: NixWasHere

Score
67
โ˜… 120 โ‘‚ 32 โ€”
Python
landoncrabtree
landoncrabtree
awesome-cyber

A curated list of tools useful within the field of cyber security, for both blue and red team operations.

Score
29
โ˜… 106 โ‘‚ 9 โ€”
Project-Prismatica
Project-Prismatica
Prismatica

Responsive Command and Control System

Score
33
โ˜… 102 โ‘‚ 21 โ€”
HTML
nickvourd
nickvourd
SkyFall-Pack

Your Skyfall Infrastructure Pack

Score
60
โ˜… 99 โ‘‚ 24 โ€”
Go
SaturnsVoid
SaturnsVoid
Project-Whis

UNFINISHED Botnet using a Go and Bootstrap Based C2, Support for Windows, Linux and Android Clients.

Score
10
โ˜… 94 โ‘‚ 42 โ€”
JavaScript
audibleblink
audibleblink
gorsh

A toy CTF Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

Score
0
โ˜… 87 โ‘‚ 21 โ€”
Shell
jxroot
jxroot
ReHTTP

Simple Powershell Http shell With WEB UI

Score
23
โ˜… 76 โ‘‚ 8 โ€”
PHP
Hex1629
Hex1629
BotnetC2

THANKS YOU FOR CODE | credit NixWasHere/NixC2

Score
0
โ˜… 75 โ‘‚ 19 โ€”
Python
MythicAgents
MythicAgents
venus

A Visual Studio Code Extension agent for Mythic C2

Score
0
โ˜… 74 โ‘‚ 11 โ€”
Python
tanc7
tanc7
dark-lord-obama

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

Score
27
โ˜… 73 โ‘‚ 14 โ€”
Python
malwarekid
malwarekid
OnlyShell

A powerful Go-based multi-shell handler for managing multiple reverse shell connections simultaneously with features like shell type detection, background management, command broadcasting, and real-time interaction.

Score
67
โ˜… 67 โ‘‚ 12 โ€”
Go
t1b4n3
t1b4n3
TibaneC2

A lightweight Command and Control (C2) framework built for offensive security research and red teaming (Post Exploitation).

Score
60
โ˜… 67 โ‘‚ 9 โ€”
C
D00Movenok
D00Movenok
goMalleable

๐Ÿ”Ž๐Ÿชฒ Malleable C2 profiles parser and assembler written in golang

Score
21
โ˜… 66 โ‘‚ 4 โ€”
Go
voukatas
voukatas
Commander

A command and control (C2) server

Score
25
โ˜… 63 โ‘‚ 18 โ€”
Python
BlackSnufkin
BlackSnufkin
Cheshire

Adaptix C2 service plugin that drives LitterBox payload analysis from the operator UI.

Score
69
โ˜… 61 โ‘‚ 5 โ€”
NetLinx
spydisec
spydisec
spydithreatintel

Spydi ThreatIntel Feed is built on open-source threat intelligence, community-maintained blocklists, and public security research.

Score
75
โ˜… 55 โ‘‚ 4 +1/day
maxDcb
maxDcb
C2Implant

Windows C++ Implant for Exploration C2

Score
73
โ˜… 49 โ‘‚ 11 โ€”
CMake
cbrnrd
cbrnrd
maliketh

๐Ÿ—ก๏ธ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python

Score
56
โ˜… 45 โ‘‚ 7 โ€”
C++
Related Topics
#command-and-control#cybersecurity#redteam#red-team#pentesting#golang#hacking#penetration-testing#post-exploitation#pentest#security-tools#security

ยฉ 2026 GitRepoTrend ยท GitHub repositories by topic ยท Updated weekly