Havoc | Awesome Repository

Havoc is a post-exploitation framework used for red team operations. It provides a centralized command and control system for managing remote agents through persistent network connections and customizable communication profiles.

The framework focuses on security evasion and stealth, utilizing indirect syscall execution, return address spoofing, and hardware-breakpoint patching to bypass endpoint detection and response tools. It includes a payload generation workflow to create executable shellcode or DLLs for initial remote access.

The system covers a broad range of operational capabilities, including infrastructure deployment, a post-exploitation command suite for data collection and privilege escalation, and a modular plugin system for integrating custom agents and external controllers.

Features

Post-Exploitation Frameworks - Acts as a comprehensive framework for managing access and gathering data on compromised systems after initial breach.
Red Team Operations - Provides professional command and control tooling for simulating advanced cyber attacks in red team exercises.
C2 Server Hosting - Provides central listeners that manage encrypted connections and command sessions from remote agents.
Evasive Payload Generators - Includes a workflow for generating customized shellcode and DLL payloads designed to bypass endpoint protection.

Features

Post-Exploitation Frameworks - Acts as a comprehensive framework for managing access and gathering data on compromised systems after initial breach.
Red Team Operations - Provides professional command and control tooling for simulating advanced cyber attacks in red team exercises.
C2 Server Hosting - Provides central listeners that manage encrypted connections and command sessions from remote agents.
Evasive Payload Generators - Includes a workflow for generating customized shellcode and DLL payloads designed to bypass endpoint protection.