Olivia
Online
C2Workbench
@C2Workbench
Open access intelligence database for open-source C2 frameworks. Search, compare & track tools with source code analysis. For red & blue teams.
Joined November 2025
13 Following
67 Followers
16 Posts
RedditC2 is a novel framework that uses Reddit posts/comments as C2. Commands are "in:" comments, results are "out:" replies. Bare-bones (just shell exec, no real post-ex), but traffic blends into 430M users' Reddit API calls. Creative PoC
Full analysis: https://t.co/nQGWHVbYrp
Orsted C2 is a modular Go framework featuring sandbox deception, AMSI/ETW evasion, and native Ligolo-ng pivoting for advanced red team simulations.
https://t.co/p5dXWu6hG9
XiebroC2 runs fully in-memory—config in globals, runtime data in RAM, ObfuscateStrings rewrites blacklisted strings in byte-slices to evade memory scanning. Plus plugins for custom post-ex modules.
Zero disk + in-memory obfuscation
Full analysis: https://t.co/nT1chgfMPJ
Although https://t.co/Y3zTPy2c9M only shows 98 frameworks at the moment, we have 239 catalogued in the back-end - which will eventually be made available in the front end. If I was to add an analytics page - what trends/analytics would you be interested in seeing?
AlanFramework ships agents as PE/DLL/PowerShell/shellcode - pick your delivery method. Fully in-memory execution + reflective DLL injection into remote processes + SOCKS5 pivoting.
Multi-format flexibility meets operational versatility.
Full analysis: https://t.co/pYvu8JKF26
Multiple users are reporting messages like this one.
Seems someone has hacked a malware C2
https://t.co/bklonSXyy0
@Realm_C2 Hey, appreciate the feedback. Thats a new feature is its way overcooked things - still working out the right level of detail. All development is done on prod because infrastructures expensive! I will give you a shout in the next iteration
@Realm_C2's Imix agents execute tasks as Eldritch scripts sent from the server (Tavern), no recompilation needed. Operators write Python-like code for post-ex and pivoting that runs in-memory on demand.
Script-first C2 = rapid iteration.
Full analysis: https://t.co/RKfkAwqKr4
BlackMamba packs a full evasion suite: API unhooking, ETW patching, AMSI bypass, VM detection via registry/files, XOR string obfuscation, Working hours + kill-switch monitoring. All the EDR bypass primitives you need in one framework.
Full Analysis: https://t.co/0zrObMmEEG
DeimosC2's DoH agent hides C2 traffic inside DNS queries sent as HTTPS to Google/Cloudflare resolvers. Data chunked to DNS size limits & reassembled server-side. Clever use of legit infrastructure. DoH + encryption + Legit Infa = Stealthy
Full analysis: https://t.co/PLEi3f8AUl
If you're a red teamer, C2 Workbench helps you understand your OPSEC gaps before deployment.
Check what blue teams can actually see: default profiles, file system artifacts, network IOCs; what's configurable and what's hard-coded.
https://t.co/dHJgXlEmzo
If you’re into C2 (for redteam) and you’re not using C2 Workbench yet, you’re missing out.
They catalogue top C2 frameworks like Havoc, Merlin… and even my humble phpsploit made the list 🙃
Check it out: https://t.co/sqm1c3P7sh
@nil0x42 This made my day!
PHPSploit deserves more visibility. Getting validation from creators means a lot on a project that's still finding its feet.
For anyone discovering this: C2 Workbench is a work in progress. Some analysis needs refinement, but I'm committed to making it useful.
To be clear, it's a work-in-progress, not a polished product. I've tried my best to fine tune various LLM's that do the source code analysis and included references to the code base but automated analysis isn't perfect. If you find issues, please tell me.
Before I go further: huge respect to @JorgeOrchilles and the @c2_matrix team.
They pioneered C2 cataloguing and their matrix is the go-to.
C2 Workbench takes a different angle with source code analysis. Complementary, not competitive. Both for the community
I've been building C2 Workbench - a free platform analyzing C2 frameworks with installation guides, capability mappings, protocol analysis, and detection artifacts.
It's not perfect and the data has gaps, but I think it's useful.
https://t.co/dHJgXlEUoW
Last Seen Users on Sotwe
çıplak kızlar
Seen from Germany
Choutakos XL
Seen from Greece
俊镜无予
Turk İfsalar
Seen from Germany
❤ ايمي ❤ EmEm422
Chennai sweet couple
Seen from India
DirtyMind
Seen from Thailand
Andre Pijote Hamse 🇸🇴🫵🇺🇸
Seen from United States
Hacı demir
Seen from Turkey
Samiya collection 🏳️🌈🏳️⚧️
Seen from Pakistan
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.2M followers
Taylor Swift
@taylorswift13
81M followers
Lady Gaga
@ladygaga
72.6M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.1M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.8M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.3M followers