msfvenom
msfvenom msfvenom is the go-to payload forge from Metasploit, letting you craft custom shells, meters, and encoders for any platform with a single command-line incantation. It's perfect for post-enum tailoring—mix in bad chars, LHOST tweaks, and obfuscation to slip past AV, generating everything from EXEs to raw shellcode in seconds. Open-source and endlessly versatile, it's the artisan's toolkit for turning recon into reliable reverse connects.
Explore →Veil-Evasion
Veil-Evasion Veil-Evasion is the evasion artisan that wraps your payloads in custom Python wrappers and encoders to dodge signature-based defenses, ideal for post-access delivery without detection. Fire up its framework to generate metered EXEs or scripts tailored to your target's AV, with modular plugins for endless customization. Open-source and hands-on, it's the creative escape hatch for pentesters crafting bespoke backdoors.
Explore →Shellter
Shellter Shellter is the stealth injector that embeds your shellcode into legitimate EXEs, preserving their functionality while adding a hidden reverse shell for post-ex persistence. It's a Windows-focused powerhouse, using dynamic API resolution to evade static scans, and runs locally to test your custom payloads on the fly. Open-source and ingenious, it's like a Trojan horse builder for individual ops craving undetectable implants.
Explore →TheFatRat
TheFatRat TheFatRat is the multi-platform payload chef that cooks up backdoors for Android, Windows, and macOS, bundling them with social engineering lures like infected PDFs. Post-enum, select your target OS, tweak the listener, and let it generate obfuscated binaries ready for phishing drops. Open-source and user-friendly, it's the all-in-one generator for lone wolves mixing exploits with delivery tricks.
Explore →Unicorn
Unicorn Unicorn is the PowerShell downgrade attacker that converts shellcode into AMSI-bypassing scripts, letting you run raw payloads on modern Windows without raising alarms. It's a simple Python tool for post-recon customization—input your shellcode, output a one-liner for execution via Invoke. Open-source and elegant, it's the quiet converter for pentesters bridging assembly to scriptable escalation.
Explore →Empire Stagers
Empire Stagers Empire's stager generator crafts custom listeners and implants for cross-platform C2, from Python duckty tape to in-memory PowerShell for stealthy post-ex callbacks. Tailor your agent's profile with obfuscation and persistence hooks, then deploy via email or USB for reliable command-and-control. Open-source framework staple, it's the modular mint for agents that blend into the noise.
Explore →Covenant Grunt Generator
Covenant Grunt Generator Covenant's Grunt generator spins up .NET implants with custom tasks and evasion profiles, perfect for post-access C2 in AD environments without beaconing loudly. Build your grunt via the web UI or CLI, embedding tasks like keyloggers or screenshotters for tailored persistence. Open-source .NET framework, it's the refined choice for developers-turned-pentesters crafting surgical agents.
Explore →Sliver Implant Builder
Sliver Implant Builder Sliver's builder forges cross-platform implants with Go's speed, embedding C2 profiles and custom loaders to maintain stealthy beacons in post-ex ops. Customize with Malleable C2 or dynamic compilation for AV dodges, generating EXEs, DLLs, or even Android APKs on demand. Open-source C2 suite, it's the versatile forge for multi-OS campaigns run from a single machine.
Explore →Custom Shellcode Generator
Custom Shellcode Generator Custom Shellcode Generator scripts, like those from Cobalt Strike or msfvenom wrappers, let you hand-roll position-independent code for meterpreter or beacon payloads tailored to your target's arch. Post-enum, encode for bad chars and pipe into injectors for clean execution. Open-source snippets abound, making it the DIY lab for pentesters engineering bespoke reverse shells.
Explore →BeEF Hook Generator