ENNAENNA

emp3r0r

MIT

๐Ÿ”ฅ Offensive Ops ยท Go

emp3r0r is a Linux-focused Command and Control framework featuring a mesh network architecture where agents can relay through each other. It supports multiple transport protocols including HTTP/2, TLS, and steganography-based communications hidden in images. The framework provides automated post-exploitation including privilege escalation, credential harvesting, keylogging, and file exfiltration. Agents feature self-healing capabilities, process injection, anti-debugging, and containerized execution to avoid detection. The operator interface provides module management, agent tasking, and real-time status monitoring. Designed specifically for Linux environments where other C2 frameworks have limited support.

1.7kstars
275forks
1issues
Updated today
+I use this
View on GitHubOfficial Website

Installation

$ git clone https://github.com/jm33-m0/emp3r0r.git

Use Cases

  • Linux-focused post-exploitation and C2
  • Covert communications via steganography
  • Mesh networking for resilient agent connectivity
  • Automated Linux privilege escalation and persistence

Tags

c2linuxmesh-networksteganographypost-exploitationself-healingemp3r0rhacking-toollocal-privilege-escalationmalwarepenetration-testing-frameworkratredteamredteamingrootkitstealthtrojan-malware

Details

Category
๐Ÿ”ฅ Offensive Ops
Language
Go
Repository
jm33-m0/emp3r0r
License
MIT
Platforms
๐Ÿงlinux

Links

GitHub Repository

github.com/jm33-m0/emp3r0r

Official Website

infosec.exchange/@jm33

Releases

github.com/jm33-m0/emp3r0r/releases

Issues

github.com/jm33-m0/emp3r0r/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

Alternatives & Comparisons

Sliver

Go

Open-source C2 framework by BishopFox. mTLS, HTTP(S), DNS, WireGuard implants with multi-operator support.

Compare emp3r0r vs Sliver

Mythic

Go

Collaborative, multi-platform C2 framework. Docker-based with web UI, multiple agent types, and plugin architecture.

Compare emp3r0r vs Mythic

Havoc

C/C++

Modern C2 framework. Qt-based GUI, BOF support, custom agents, and a Cobalt Strike-inspired workflow.

Compare emp3r0r vs Havoc

Merlin

Go

Cross-platform HTTP/2 command and control server and agent written in Go. Supports QUIC, HTTP/3, and encrypted communications.

Compare emp3r0r vs Merlin

More in Offensive Ops

Mythic

Go

Collaborative, multi-platform C2 framework. Docker-based with web UI, multiple agent types, and plugin architecture.

c2red-teammulti-operator

Havoc

C/C++

Modern C2 framework. Qt-based GUI, BOF support, custom agents, and a Cobalt Strike-inspired workflow.

c2red-teamgui

Rubeus

C#

C# toolset for raw Kerberos interaction and abuse. AS-REP roasting, Kerberoasting, ticket manipulation, delegation attacks.

kerberosactive-directoryroasting

Certipy

Python

Active Directory Certificate Services (AD CS) abuse tool. Find and exploit certificate template misconfigurations.

active-directorycertificatesadcs

Coercer

Python

Automatically find and exploit Windows authentication coercion vulnerabilities. PetitPotam, PrinterBug, and more.

authentication-coercionntlm-relaypetitpotam

SharpHound

C#

Official BloodHound data collector. Enumerates Active Directory objects, sessions, ACLs, and trusts for graph analysis.

active-directoryenumerationbloodhound