Need help with awesome-rat?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

alphaSeclab
655 Stars 184 Forks 3 Commits 0 Opened issues

Description

RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.

Services available

!
?

Need anything else?

Contributors list

No Data

所有收集类项目

RAT

  • 250+ 开源远控/C&C工具,1200+ RAT分析报告\C&C相关文章等。
  • English Version

目录

开源工具


pupy

工具

  • [5265星][1m] [Py] n1nj4sec/pupy Python编写的远控、后渗透工具,跨平台(Windows, Linux, OSX, Android)

文章


Covenant

工具

  • [1147星][6d] [C#] cobbr/covenant Covenant is a collaborative .NET C2 framework for red teamers.
  • [95星][9d] [C#] cobbr/elite Elite is the client-side component of the Covenant project. Covenant is a .NET command and control framework that aims to highlight the attack surface of .NET, make the use of offensive .NET tradecraft easier, and serve as a collaborative command and control platform for red teamers.
  • [31星][4m] [C#] cobbr/c2bridge C2Bridges allow developers to create new custom communication protocols and quickly utilize them within Covenant.

文章


Slackor

工具

文章


QuasarRAT

工具

文章


EvilOSX

工具

  • [1376星][2y] [Py] marten4n6/evilosx An evil RAT (Remote Administration Tool) for macOS / OS X.

文章


Merlin

工具

  • [2568星][6m] [Go] ne0nd0g/merlin Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

文章

商业软件


Team Viewer

工具

文章

恶意软件(部分)


Gh0st

工具

  • [301星][7d] [C++] yuanyuanxiang/simpleremoter 基于gh0st的远程控制器:实现了终端管理、进程管理、窗口管理、远程桌面、文件管理、语音管理、视频管理、服务管理、注册表管理等功能
  • [273星][7y] [C++] sin5678/gh0st a open source remote administrator tool
  • [91星][6y] [C++] igh0st/gh0st3.6_src
  • [90星][1m] [C++] zibility/remote 参考Gh0st源码,实现的一款PC远程协助软件,拥有远程Shell、文件管理、桌面管理、消息发送等功能。
  • [21星][5m] [C++] holmesian/gh0st-light 精简之后的老东西

文章


NanoCore

工具

文章


NjRat

工具

文章


Revenge RAT

工具

文章


PlugX

工具

文章


RemcosRAT


L0rdixRAT


LodaRAT


GulfRAT


NetWireRAT


JhoneRAT


Dacls


BlackRemote


Orcus


NukeSped


DarkComet


WarZone RAT


BlackShades


DenesRAT


WSH RAT


Qrypter RAT


Adwind


CannibalRAT


jRAT


jsRAT


CrossRat


ArmaRat


RokRAT


CatKARAT


TheFatRat


OmniRAT


LuminosityLink


其他

利用公开服务


Telegram

工具

文章


Twitter

工具

  • [658星][4y] [Py] paulsec/twittor A fully featured backdoor that uses Twitter as a C&C server
  • [186星][3y] [Go] petercunha/goat a trojan created in Go, using Twitter as a the C&C server

文章


GMail

工具

文章


Github

工具

文章


DropBox

工具

  • [134星][1y] [Py] 0x09al/dropboxc2c DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.

文章


区块链

工具

  • [46星][1y] [Go] xpn/blockchainc2 A POC C2 server and agent to explore just if/how the Ethereum blockchain can be used for C2
  • [35星][3m] [Py] geek-repo/c2-blockchain This is a concept poc of command and control server implemented over blockchain

文章


其他

工具

  • [513星][1y] [Go] mthbernardes/gtrs 使用Google翻译器作为代理将任意命令发送到受感染的计算机
  • [102星][4m] [Py] nccgroup/gitpwnd 网络渗透测试工具,可使攻击者向被攻击机器发送命令,并使用 git repo 作为 C&C 传输层接收结果
  • [97星][2y] [Py] arno0x/webdavc2 A WebDAV PROPFIND C2 tool
  • [93星][2y] [PS] bkup/slackshell PowerShell to Slack C2
  • [84星][2y] [Go] 0x09al/browser-c2 Post Exploitation agent which uses a browser to do C2 operations.
  • [69星][13d] [Py] itskindred/redviper redViper is a proof of concept Command & Control framework that utilizes Reddit for communications.
  • [66星][2y] [Py] lukebaggett/google_socks A proof of concept demonstrating the use of Google Drive for command and control.
  • [29星][2y] [Py] ajinabraham/xenotix-xbot Xenotix xBOT is a Cross Platform PoC Bot that abuse certain Google Services to implement it's C&C
  • [26星][3y] [Py] dsnezhkov/octohook Git Web Hook Tunnel for C2
  • [23星][10d] [PS] netspi/sqlc2 SQLC2 is a PowerShell script for deploying and managing a command and control system that uses SQL Server as both the control server and the agent.
  • [22星][2y] [Py] woj-ciech/social-media-c2 Script is a proof of concept how to control your machine by using social media sites.
  • [16星][10d] [Py] securemode/trelloc2 Simple C2 over the Trello API
  • [14星][1y] [Py] j3ssie/c2s Command and Control server on Slack
  • [8星][2y] [Py] maldevel/dicerosbicornis A fully featured Windows backdoor that uses email as a C&C server
  • [7星][3y] [Py] killswitch-gui/flaskappengineredirector Google App Engine Flask C2 redirector

文章

通信协议


DNS协议

Domain Generation Algorithm(DGA)

工具

文章

工具

  • [1855星][8m] [C++] iagox86/dnscat2 在 DNS 协议上创建加密的 C&C channel
  • [832星][6d] [Go] bishopfox/sliver 一个通用的跨平台植入程序框架,该框架C3支持Mutual-TLS,HTTP(S)和DNS
  • [386星][4y] [Py] ahhh/reversednsshell 使用DNS作为c2通道的python反向shell
  • [277星][1y] [Py] trycatchhcf/packetwhisper Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.
  • [276星][4m] [Go] sensepost/godoh A DNS-over-HTTPS Command & Control Proof of Concept
  • [225星][2y] [PS] lukebaggett/dnscat2-powershell A Powershell client for dnscat2, an encrypted DNS command and control tool.
  • [176星][2y] [C++] 0x09al/dns-persist DNS-Persist is a post-exploitation agent which uses DNS for command and control.
  • [41星][2m] [Erlang] homas/ioc2rpz ioc2rpz is a place where threat intelligence meets DNS.
  • [38星][2m] [JS] inquest/threatkb Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)

文章


ICMP

文章


WebSocket

工具

  • [245星][2y] [Py] arno0x/wsc2 A WebSocket C2 Tool
  • [131星][9d] [C++] xorrior/raven CobaltStrike External C2 for Websockets

文章

C&C


Cobalt Strike

工具

文章


工具

新添加


文章

新添加

远控


工具

新添加

Windows

  • [610星][1y] [PS] fortynorthsecurity/wmimplant This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported is translated into a WMI-equivalent for use on a network/remote machine. WMImplant is WMI based.
  • [518星][8m] [Visual Basic .NET] nyan-x-cat/lime-rat LimeRAT | Simple, yet powerful remote administration tool for Windows (RAT)
  • [493星][6m] [Py] viralmaniar/powershell-rat Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.
  • [360星][8d] [C#] nyan-x-cat/asyncrat-c-sharp Open-Source Remote Administration Tool For Windows C# (RAT)
  • [340星][3y] [Pascal] malwares/remote-access-trojan Windows Remote-Access-Trojan
  • [229星][4y] [Py] hood3drob1n/jsrat-py This is my implementation of JSRat.ps1 in Python so you can now run the attack server from any OS instead of being limited to a Windows OS with Powershell enabled.
  • [149星][4m] [Py] safebreach-labs/sireprat Remote Command Execution as SYSTEM on Windows IoT Core
  • [119星][11d] [C#] dannythesloth/vanillarat VanillaRat is an advanced remote administration tool completely coded in C# for Windows.
  • [117星][8d] [Py] thelinuxchoice/pyrat Windows远控
  • [106星][9m] [C#] r-smith/splice-admin A remote Windows administration tool. You know you want it.
  • [104星][2y] [Py] syss-research/outis a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).
  • [70星][3m] [PS] dsccommunity/certificatedsc DSC resources to simplify administration of certificates on a Windows Server.
  • [67星][4y] [C#] stphivos/rat-shell Windows Remote Access Trojan (RAT)
  • [39星][2m] [Py] swordf1sh/moderat Experimental Windows Remote Administration and Spy Tool in Python + GUI
  • [20星][1y] [Visual Basic] nyan-x-cat/asyncrat Remote Administration Tool For Windows
  • [17星][6m] [Py] operatorequals/smbrat A Windows Remote Administration Tool in Visual Basic with UNC paths
  • [16星][6m] [PS] yschgroup/skyrat SkyRAT - Powershell Remote Administration Tool

Linux

  • [131星][8m] [C] abhishekkr/n00brat 用于POSiX(Linux / Unix)系统的远程管理工具包(或Trojan),以Web服务方式运行
  • [68星][10m] [JS] webxscan/linux_rat LINUX集群控制(LINUX反弹式远控)
  • [51星][15d] [C] thibault-69/rat-hodin-v2.9 Remote Administration Tool for Linux
  • [20星][2m] [C] lillypad/swamp-rat A Linux RAT in C
  • [7星][5m] [C] ctsecurity/stealth-kid-rat Stealth Kid RAT (SKR) is an open source Linux remote administration tool written in C. Licensed under MIT. The SKR project is fully developed and tested on Debian GNU-Linux (Deb 9.3 "Stretch") platform. The RAT will soon be available on Windows platform by mid 2018.

Apple

  • [430星][9d] [ObjC] sap/macos-enterprise-privileges For Mac users in an Enterprise environment this app ensures secure environment and yet gives the User control over administration of their machine by elevating their level of access to Administrator privilege on macOS X. Users can set the time frame using Preferences to perform specific tasks such as install or remove an application.
  • [75星][4y] [Pascal] xlinshan/coldroot Mac OS Trojan (RAT) made with love <3
  • [74星][1y] [Py] kdaoudieh/bella Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS.
  • [21星][2m] [Py] cys3c/evilosx A pure python, post-exploitation, remote administration tool (RAT) for macOS / OS X.

Android


文章

贡献

内容为系统自动导出, 有任何问题请提issue

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.