Havoc Professional Finally Released! πΈοΈπ·οΈ
I'm excited to finally share the work my team and I have put in over the past year. This is just the beginning of what we have planned.
www.infinitycurve.org/blog/release
Haha used to be true in my OSS version. The Pro tho has been rewritten from scratch (client, agent and server) and now utilizes Chacha20-poly1305 + X25519 for secure communication.
I wanna emphasis that Havoc Professional has been completely rewritten from scratch (2023 - 2025), addressing and fixing architectural/design issues and implemented strong security for the agent, team server and client for safe operational use.
Thanks to people helping me out via giving me feedback
Not anymore, the open source version used to be like this but now I utlize Chacha20-poly1305 + X25519 for secure key exchange. (more can be read on the website under Kaine-kit FAQ)
I have learned a lot throughout my years of C2/Malware development π
Thank you so much Raphael! π
This means so much coming this from you Raphael! You have been a huge inspiration and ur work has been insanely inspiring to me for years and I always believed your methodology and philosophy to be the key and proper way of doing and designing malware and C2s π
I never expected to see my Stardust being mentioned here! This made me beyond happy and especially considering Raphael has been my biggest inspiration in this community since I started out at Infosec.
Thanks a lot for these kind comments and mention. It truly made my day
So, here's a little thread on my new open source project:
The Tradecraft Garden.
tradecraftgarden.org
It's Crystal Palace, an open-source linker and linker script specialized to writing PIC DLL loaders.
And, a corpora of DLL loaders demonstrating design patterns building tradecraft with it.
