Havoc Logo

Havoc

0
Free
Updated 11 March 2025
Offensive Security
Post Exploitation
Command And Control
Framework
Cross Platform
Payload Generation
C2 Profiles
Visit Website

Havoc is a modern and malleable post-exploitation command and control framework that provides a client-server architecture with a cross-platform UI, teamserver, and demon agent, offering features such as payload generation, customizable C2 profiles, and extensibility through external C2 and custom agents. It supports multiple platforms including Debian, Ubuntu, and Kali Linux, and requires a modern version of Qt and Python 3.10.x. The framework is still in an early state of release and breaking changes may be made to APIs/core structures as it matures.

FEATURES

EXPLORE BY TAGS

Post Exploitation

Command And Control

Framework

Cross Platform

Payload Generation

C2 Profiles

SIMILAR TOOLS

dvcs-ripper Logo
dvcs-ripper

Rip web accessible (distributed) version control systems: SVN, GIT, Mercurial/hg, bzr, ...

Free
Offensive Security
Randomized Malleable C2 Profiles Made Easy Logo
Randomized Malleable C2 Profiles Made Easy

Tool for randomizing Cobalt Strike Malleable C2 profiles to evade static, signature-based detection controls.

Free
Offensive Security
Projectdiscovery.io | Chaos Logo
Projectdiscovery.io | Chaos

A powerful enumeration tool for discovering assets and subdomains.

Free
Offensive Security
GEF (pronounced ʤɛf - 'Jeff') Logo
GEF (pronounced ʤɛf - 'Jeff')

A set of commands for exploit developers and reverse-engineers to enhance GDB functionality.

Free
Offensive Security
A practical guide to RFID badge copying Logo
A practical guide to RFID badge copying

A guide to bypassing RFID card reader security mechanisms using specialized hardware

Free
Offensive Security
x8 Logo
x8

Hidden parameters discovery suite

Free
Offensive Security
XAHICO Platform Logo
XAHICO Platform

XAHICO Web Platform is a cloud-based solution for vulnerability detection, penetration testing, and adversary simulation, accessible through web browsers and suitable for various user levels.

Commercial
Offensive Security
Burp-LFI-tests Logo
Burp-LFI-tests

A collection of tests for Local File Inclusion (LFI) vulnerabilities using Burp Suite.

Free
Offensive Security
DNS Rebind Toolkit Logo
DNS Rebind Toolkit

A front-end JavaScript toolkit for creating DNS rebinding attacks

Free
Offensive Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy