Hawks is a simple C2 framework based on python which can handle multiple powershell agents through TCP and executed additional features. It support obfuscated payload generation capable of bypassing Windows Defender and almost every AV.
Hawks is designed to be simple and easy to use, providing a solid and customizable usage configuration.
Warning
This tool is created for educational purposes only. Using it for attacking targets without prior explicit consent is illegal. The author is not responsible for any misuse or damage caused by this tool.
Hawks framework main features include:
- Download and upload files (via HTTP)
- Support SSL encryption
- Accept external TCP connections (via ngrok)
- Auto-completion of commands
- Multiple agents control
- Command history
- Payload generation (only PowerShell for now)
- Modules customization
- Various and customizable payload obfuscation techniques (AMSI bypass)
Hawks framework has been tested on the following operating systems:
- Kali Linux (2024.1)
- Parrot Security (6.0)
Clone the repository:
git clone https://github.com/0xNickk/Hawks.git
Install python dependencies:
cd ./Hawks
pip install -r requirements.txt
- Add new listeners
- Add new payloads
- Persistent agent
- Add more Windows evasion techniques
Important
This project is still under development and I am a beginner. So feel free to give me any type of feedback and advice.