Skip to content

JoelGMSec/Kitsune

Repository files navigation

Kitsune

Kitsune

Kitsune is a Polymorphic Command & Control. This tool allows you to get a graphical version of your favourite hacking tools, such as NetExec, Villain or Evil-WinRM among others. In addition, brings many improvements such as automatic reconnection, reports, history and some extra functions in each of the implemented tools.

Its use is very similar to other C2 like Cobalt Strike or Havoc, making use of listeners, payload generator, delivery over HTTP/S and much more. Its simple, modern and responsive graphical interface has been created to be easy to use and speed up the work of hackers.

⚠️ This is an Early Adopter/Developer version. A lot of things work and others just simulate the way it works. Use it if you want to test it before the full version or if you want to help in its development with a pull request.

Requirements

  • Bash
  • Docker

Download

It is recommended to clone the complete repository or download the zip file. You can do this by running the following command:

git clone https://github.com/JoelGMSec/Kitsune

Usage

./start.sh

           _ _                                                                                  
      /\ /(_) |_ ___ _   _ _ __   ___                                                           
     / //_/ | __/ __| | | | '_ \ / _ \                                                          
    / __ \| | |_\__ \ |_| | | | |  __/                                                          
    \/  \/|_|\__|___/\__,_|_| |_|\___|                                                          
                                         
     -------- by @JoelGMSec --------

[*] User *root* has joined the party!

The detailed guide of use can be found at the following link:

  • To be disclosed

Screenshots

Kitsune_C2

Kitsune_Report

License

This project is licensed under the GNU 3.0 license - see the LICENSE file for more details.

Credits and Acknowledgments

This tool has been created and designed from scratch by Joel Gámez Molina (@JoelGMSec).

Contact

This software does not offer any kind of guarantee. Its use is exclusive for educational environments and / or security audits with the corresponding consent of the client. I am not responsible for its misuse or for any possible damage caused by it.

For more information, you can find me on Twitter as @JoelGMSec and on my blog darkbyte.net.

Support

You can support my work buying me a coffee:

buymeacoffe