Empire vs Sliver
GitHub Stats
About Empire
Empire is a post-exploitation and adversary emulation framework maintained by BC-Security. It provides PowerShell, Python, and C# agents (called stagers) with cryptologically-secure communications and a flexible architecture. Empire includes hundreds of post-exploitation modules for privilege escalation, credential harvesting, lateral movement, persistence, and situational awareness across Windows, Linux, and macOS. The framework features a RESTful API, collaborative multi-operator support via Starkiller GUI, and malleable C2 profiles for traffic blending. It maps operations to MITRE ATT&CK for adversary emulation reporting.
About Sliver
Sliver is an open-source cross-platform adversary emulation and red team framework developed by BishopFox. It supports C2 over mTLS, HTTP(S), DNS, and WireGuard, with implants that can be compiled for Windows, macOS, and Linux. Sliver supports multiple operators simultaneously, making it ideal for team engagements. It includes features like process injection, pivoting, staged/stageless payloads, and a robust extension system.
Platform Support
Tags
Shared
Empire only
Sliver only