PhoenixC2
Villain
PhoenixC2 | Villain | |
---|---|---|
2 | 2 | |
289 | 3,579 | |
1.0% | - | |
7.2 | 7.7 | |
9 months ago | 2 months ago | |
Python | Python | |
BSD 3-clause "New" or "Revised" License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
PhoenixC2
-
First release of the phoenixc2 framework
Thanks :) You can look into the bypasses directory of my repo. Currently there are also only 3 encoders, but i plan on adding more, with support for compiled payloads. I bypassed the windows defender without using any bypasses. I just executed my go payload on the windows vm. Go payloads are not easy to detect by default and the vm is not connected to the internet so it doesn't upload the executable data to the Microsoft servers. As soon as Microsoft adds detection for the payload, the bypasses will be the important modifier. I also added bypass chains which are multiple bypasses combined, and executed after each other, to harden detection.
-
First Release of Phoenix Command & Control Framework
I would be happy if you would visit my blog post on the first release of PhoenixC2 (https://screamz2k.github.io/posts/phoenixc2-first-release/) and take a look at the Github repository (https://github.com/screamz2k/PhoenixC2) to learn more about the features of this project.
Villain
-
Is MSF Venom - Metasploit a good investment for the long run in terms of RATs?
Villain (recommend) https://github.com/t3l3machus/Villain
- Villain - a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.
What are some alternatives?
gh0stbust3rz - Build a C2 system while becoming a techie Gh0stbust3r! Learn real-world RedTeam skills and even earn a basic c2 by completing the game
hoaxshell - A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
covert-tube - Youtube as covert-channel - Control systems remotely and execute commands by uploading videos to Youtube
HavocNotion - A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally safe or stable, built as a PoC to showcase Havoc C2's modular C2 channel interface.
KITT-Lite - Python-Based Pentesting CLI Tool
Pentest-Notes - Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)
aizawa - Simple command-line webshell that executes commands via the HTTP request in order to avoid any WAF or IDS while bypassing disable_function.
PowerShell-Obfuscation-Bible - A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.
uuid-loader - UUID based Shellcode loader for your favorite C2
recon - Enumerate a target Based off of Nmap Results
emploleaks - An OSINT tool that helps detect members of a company with leaked credentials
Nebula - Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components.