secret_handshake
A prototype malware C2 channel using x509 certificates over mTLS (by jconwell)
PhoenixC2
Command & Control-Framework created for collaboration in python3 (by PhoenixC2)
| secret_handshake | PhoenixC2 | |
|---|---|---|
| 1 | 2 | |
| 139 | 290 | |
| - | 1.4% | |
| 2.9 | 7.2 | |
| 2 months ago | 10 months ago | |
| Python | Python | |
| MIT License | BSD 3-clause "New" or "Revised" License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
secret_handshake
Posts with mentions or reviews of secret_handshake.
We have used some of these posts to build our list of alternatives
and similar projects.
PhoenixC2
Posts with mentions or reviews of PhoenixC2.
We have used some of these posts to build our list of alternatives
and similar projects.
-
First release of the phoenixc2 framework
Thanks :) You can look into the bypasses directory of my repo. Currently there are also only 3 encoders, but i plan on adding more, with support for compiled payloads. I bypassed the windows defender without using any bypasses. I just executed my go payload on the windows vm. Go payloads are not easy to detect by default and the vm is not connected to the internet so it doesn't upload the executable data to the Microsoft servers. As soon as Microsoft adds detection for the payload, the bypasses will be the important modifier. I also added bypass chains which are multiple bypasses combined, and executed after each other, to harden detection.
-
First Release of Phoenix Command & Control Framework
I would be happy if you would visit my blog post on the first release of PhoenixC2 (https://screamz2k.github.io/posts/phoenixc2-first-release/) and take a look at the Github repository (https://github.com/screamz2k/PhoenixC2) to learn more about the features of this project.
What are some alternatives?
When comparing secret_handshake and PhoenixC2 you can also consider the following projects:
Pieta - A Remote Administration Tool (RAT)
gh0stbust3rz - Build a C2 system while becoming a techie Gh0stbust3r! Learn real-world RedTeam skills and even earn a basic c2 by completing the game
covert-tube - Youtube as covert-channel - Control systems remotely and execute commands by uploading videos to Youtube
Villain - Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
KITT-Lite - Python-Based Pentesting CLI Tool