Nishang is a PowerShell-based offensive security framework designed for red teaming and penetration testing on Windows targets. It functions as a post-exploitation toolkit and payload generator to automate attacks and manage remote targets. The project provides specialized capabilities for bypassing security controls, such as disabling the Antimalware Scan Interface and employing in-memory execution to avoid disk-based detection. It includes a variety of stealthy command and control mechanisms, utilizing non-standard channels like DNS TXT records, ICMP traffic, and webmail for communication a
Stitch is a command and control framework and post-exploitation toolkit designed for managing multiple remote systems from a central server. It functions as a remote administration tool and payload builder, enabling the execution of commands and the deployment of agents across different operating systems. The project features a cross-platform builder for generating custom executable agents with configurable network bindings and boot behaviors. It utilizes encrypted communication channels to secure traffic between the controller and remote clients, and it supports the execution of dynamic scri
SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
A post exploitation framework designed to operate covertly on heavily monitored environments
Proof of concept MacOS post exploitation tool written in Swift. Designed as a POC for blue teams to build macOS detections. Author: Cedric Owens
The main features of cedowens/macshellswift are: Command And Control Frameworks.
Open-source alternatives to cedowens/macshellswift include: samratashok/nishang — Nishang is a PowerShell-based offensive security framework designed for red teaming and penetration testing on Windows… nathanlopez/stitch — Stitch is a command and control framework and post-exploitation toolkit designed for managing multiple remote systems… antoniococo/sharpyshell — SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications. bc-security/empire — Empire is a post-exploitation command-and-control (C2) framework designed for red team operations. It deploys and… beefproject/beef — BeEF is a modular security testing environment designed for browser exploitation and web application auditing. It… bats3c/shad0w — A post exploitation framework designed to operate covertly on heavily monitored environments.