Havoc vs Pupy
GitHub Stats
About Havoc
Havoc is a modern, malleable post-exploitation command and control framework. It features a cross-platform Qt-based GUI, support for Beacon Object Files (BOFs), custom agent development through its Agent SDK, and encrypted C2 communication. Havoc was designed as an open-source alternative to Cobalt Strike with a similar operator experience. It supports multiple listeners, team servers, and has a growing library of post-exploitation modules.
About Pupy
Pupy is an open-source, cross-platform command and control (C2) framework and remote administration tool written in Python and C, supporting Windows, Linux, macOS, and Android targets. It operates entirely in-memory using reflective injection techniques, leaving minimal forensic footprint on compromised systems while providing a comprehensive post-exploitation toolkit. Red team operators and penetration testers use Pupy for persistent access, lateral movement, credential harvesting, and data exfiltration during authorized engagements. Its modular architecture supports custom transport protocols, encrypted communications, and a wide range of post-exploitation modules including keylogging, screenshot capture, webcam access, and privilege escalation.
Platform Support
Tags
Shared
Havoc only
Pupy only