ENNAENNA

Villain

๐Ÿ”ฅ Offensive Ops ยท Python

Villain is a backdoor generator and handler tool for both Windows and Linux environments. It features auto-obfuscation, multi-session management, and reverse shell capabilities, enabling attackers to maintain persistent access to compromised systems. Villain simplifies the process of establishing and managing covert communication channels, making it a valuable asset for red team operators and penetration testers conducting post-exploitation activities.

4.4kstars
692forks
26issues
Updated 11mo ago
+I use this
View on GitHub

Use Cases

  • Generating obfuscated reverse shell payloads
  • Managing multiple reverse shell sessions
  • Windows and Linux backdoor deployment
  • Quick C2 setup for CTFs and labs

Tags

backdoorreverse-shellobfuscationmulti-sessionhandlerc2cybersecurityhackinghacking-tooloffensive-securityopen-sourcepenetration-testingpenetration-testing-toolspentestpentestingreadteamingredteamredteam-tools

Details

Category
๐Ÿ”ฅ Offensive Ops
Language
Python
Platforms
๐Ÿงlinux

Links

GitHub Repository

github.com/t3l3machus/Villain

Releases

github.com/t3l3machus/Villain/releases

Issues

github.com/t3l3machus/Villain/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

Alternatives & Comparisons

Penelope

Python

Advanced reverse shell handler. Auto-upgrades shells to PTY, handles multiple sessions, with built-in file transfer and logging.

Compare Villain vs Penelope

PHPSploit

Python

Stealth post-exploitation C2 framework tunneled through PHP web servers.

Compare Villain vs PHPSploit

More in Offensive Ops

Mythic

Go

Collaborative, multi-platform C2 framework. Docker-based with web UI, multiple agent types, and plugin architecture.

c2red-teammulti-operator

Havoc

C/C++

Modern C2 framework. Qt-based GUI, BOF support, custom agents, and a Cobalt Strike-inspired workflow.

c2red-teamgui

Rubeus

C#

C# toolset for raw Kerberos interaction and abuse. AS-REP roasting, Kerberoasting, ticket manipulation, delegation attacks.

kerberosactive-directoryroasting

Certipy

Python

Active Directory Certificate Services (AD CS) abuse tool. Find and exploit certificate template misconfigurations.

active-directorycertificatesadcs

Coercer

Python

Automatically find and exploit Windows authentication coercion vulnerabilities. PetitPotam, PrinterBug, and more.

authentication-coercionntlm-relaypetitpotam

SharpHound

C#

Official BloodHound data collector. Enumerates Active Directory objects, sessions, ACLs, and trusts for graph analysis.

active-directoryenumerationbloodhound