ENNAENNA

Empire vs Havoc

Empire

๐Ÿ”ฅ Offensive Ops ยท Python

Havoc

๐Ÿ”ฅ Offensive Ops ยท C/C++

GitHub Stats

5.1k
Stars
8.3k
678
Forks
1.2k
40
Issues
134
8d ago
Updated
4mo ago
BSD-3-Clause
License
GPL-3.0
Python
Language
C/C++

About Empire

Empire is a post-exploitation and adversary emulation framework maintained by BC-Security. It provides PowerShell, Python, and C# agents (called stagers) with cryptologically-secure communications and a flexible architecture. Empire includes hundreds of post-exploitation modules for privilege escalation, credential harvesting, lateral movement, persistence, and situational awareness across Windows, Linux, and macOS. The framework features a RESTful API, collaborative multi-operator support via Starkiller GUI, and malleable C2 profiles for traffic blending. It maps operations to MITRE ATT&CK for adversary emulation reporting.

About Havoc

Havoc is a modern, malleable post-exploitation command and control framework. It features a cross-platform Qt-based GUI, support for Beacon Object Files (BOFs), custom agent development through its Agent SDK, and encrypted C2 communication. Havoc was designed as an open-source alternative to Cobalt Strike with a similar operator experience. It supports multiple listeners, team servers, and has a growing library of post-exploitation modules.

Platform Support

๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows
๐Ÿงlinux๐ŸชŸwindows

Tags

Shared

c2

Empire only

post-exploitationadversary-emulationpowershelllateral-movementmitre-attack

Havoc only

red-teamguibofcobalt-strike-alternative
View Empire DetailsView Havoc Details