README.md

![Banner](assets/banner.png) 

**Conquest** is a feature-rich, extensible and malleable command & control/post-exploitation framework developed for penetration testing and adversary simulation. Conquest's team server, operator client and agent have all been developed from scratch using the Nim programming language and are designed with modularity and flexibility in mind. It features custom C2 communication via binary packets over HTTP, a client GUI developed using Dear ImGui and the `Monarch` agent, a modular C2 implant aimed at Windows targets.

![Conquest Client](assets/conquest.png)

> [!CAUTION]
> Conquest is designed to be only used for educational purposes, research and authorized security testing of systems that you own or have an explicit permission to attack. The author provides no warranty and accepts no liability for misuse.

## Getting Started

The Conquest team server and operator client are currently meant to be compiled and used on a Ubuntu/Debian-based operating system. For getting the framework up and running, follow the [installation instructions](./docs/1-INSTALLATION.md). 

For more information about architecture, usage and features, check out the [documentation](./docs/README.md)!

## Features

- Flexible operator GUI client written with Dear ImGui in Nim
- HTTP listeners with support for callback hosts (Redirectors)
- Support for malleable C2 profiles (TOML)
- Customizable payload generation  
- Encrypted C2 communication leveraging AES256-GCM and X25519 key exchange
- Sleep obfuscation via Ekko, Zilean or Foliage with support for call stack spoofing
- Inline-execution of COFF/BOF files
- Inline-execution of .NET assemblies
- Token impersonation 
- AMSI/ETW patch using hardware breakpoints
- Compile-time string obfuscation 
- Wide selection of built-in post-exploitation modules
- Looting and loot management
- Logging of all operator activity
- Self-destruct functionality
- Agent kill date & working hours

## Screenshots

![Payload generation](assets/payload_generation.png)

![Screenshot Preview](assets/screenshot.png)


## Acknowledgements

The following projects and people have significantly inspired and/or helped with the development of this framework.

- Inspiration:
  - [Havoc](https://github.com/havocFramework/havoc) by [C5pider](https://github.com/Cracked5pider)
  - [Cobalt Strike](https://www.cobaltstrike.com)
  - [AdaptixC2](https://github.com/Adaptix-Framework/AdaptixC2/)
- Development:
  - [imguin](https://github.com/dinau/imguin) by [dinau](github.com/dinau/) (ImGui Wrapper for Nim)
  - [MalDev Academy](https://maldevacademy.com/)
  - [Creds](https://github.com/S3cur3Th1sSh1t/Creds) by [S3cur3Th1sSh1t](https://github.com/S3cur3Th1sSh1t/)
  - [malware](https://github.com/m4ul3r/malware/) by [m4ul3r](https://github.com/m4ul3r/)
  - [winim](https://github.com/khchen/winim) 
  - [OffensinveNim](https://github.com/byt3bl33d3r/OffensiveNim)
- Existing C2's written (partially) in Nim
  - [NimPlant](https://github.com/chvancooten/NimPlant)
  - [Nimhawk](https://github.com/hdbreaker/Nimhawk)
  - [grc2](https://github.com/andreiverse/grc2)
Added documentation. 2025-10-30 15:35:13 +01:00			`![Banner](assets/banner.png)`
Implemented agent registration, restructured Conquest type to utilize tables to store agents and listeners 2025-05-13 23:42:04 +02:00
Updated documentation. 2025-10-30 17:08:50 +01:00			Conquest is a feature-rich, extensible and malleable command & control/post-exploitation framework developed for penetration testing and adversary simulation. Conquest's team server, operator client and agent have all been developed from scratch using the Nim programming language and are designed with modularity and flexibility in mind. It features custom C2 communication via binary packets over HTTP, a client GUI developed using Dear ImGui and the `Monarch` agent, a modular C2 implant aimed at Windows targets.
Implemented agent registration, restructured Conquest type to utilize tables to store agents and listeners 2025-05-13 23:42:04 +02:00
Added documentation. 2025-10-30 15:35:13 +01:00			`![Conquest Client](assets/conquest.png)`
Update README.md 2025-10-27 20:44:12 +01:00
Update README.md 2025-10-27 22:26:59 +01:00			`> [!CAUTION]`
Update README.md 2025-10-27 20:44:12 +01:00			`> Conquest is designed to be only used for educational purposes, research and authorized security testing of systems that you own or have an explicit permission to attack. The author provides no warranty and accepts no liability for misuse.`

Update README.md 2025-10-27 22:26:59 +01:00			`## Getting Started`

Native file dialogs now work in WSL. 2025-10-31 11:09:37 +01:00			`The Conquest team server and operator client are currently meant to be compiled and used on a Ubuntu/Debian-based operating system. For getting the framework up and running, follow the [installation instructions](./docs/1-INSTALLATION.md).`
Added documentation. 2025-10-30 15:35:13 +01:00
Native file dialogs now work in WSL. 2025-10-31 11:09:37 +01:00			`For more information about architecture, usage and features, check out the [documentation](./docs/README.md)!`
Update README.md 2025-10-27 20:44:12 +01:00
			`## Features`

			`- Flexible operator GUI client written with Dear ImGui in Nim`
			`- HTTP listeners with support for callback hosts (Redirectors)`
			`- Support for malleable C2 profiles (TOML)`
			`- Customizable payload generation`
			`- Encrypted C2 communication leveraging AES256-GCM and X25519 key exchange`
			`- Sleep obfuscation via Ekko, Zilean or Foliage with support for call stack spoofing`
			`- Inline-execution of COFF/BOF files`
			`- Inline-execution of .NET assemblies`
			`- Token impersonation`
			`- AMSI/ETW patch using hardware breakpoints`
			`- Compile-time string obfuscation`
			`- Wide selection of built-in post-exploitation modules`
			`- Looting and loot management`
			`- Logging of all operator activity`
Added documentation. 2025-10-30 15:35:13 +01:00			`- Self-destruct functionality`
Implemented agent working hours. 2025-10-28 23:02:48 +01:00			`- Agent kill date & working hours`
Update README.md 2025-10-27 20:44:12 +01:00
			`## Screenshots`

Added documentation. 2025-10-30 15:35:13 +01:00			`![Payload generation](assets/payload_generation.png)`

			`![Screenshot Preview](assets/screenshot.png)`


			`## Acknowledgements`

			`The following projects and people have significantly inspired and/or helped with the development of this framework.`
Update README.md 2025-10-27 20:44:12 +01:00
Added documentation. 2025-10-30 15:35:13 +01:00			`- Inspiration:`
			`- [Havoc](https://github.com/havocFramework/havoc) by [C5pider](https://github.com/Cracked5pider)`
			`- [Cobalt Strike](https://www.cobaltstrike.com)`
			`- [AdaptixC2](https://github.com/Adaptix-Framework/AdaptixC2/)`
			`- Development:`
			`- [imguin](https://github.com/dinau/imguin) by [dinau](github.com/dinau/) (ImGui Wrapper for Nim)`
			`- [MalDev Academy](https://maldevacademy.com/)`
			`- [Creds](https://github.com/S3cur3Th1sSh1t/Creds) by [S3cur3Th1sSh1t](https://github.com/S3cur3Th1sSh1t/)`
			`- [malware](https://github.com/m4ul3r/malware/) by [m4ul3r](https://github.com/m4ul3r/)`
			`- [winim](https://github.com/khchen/winim)`
			`- [OffensinveNim](https://github.com/byt3bl33d3r/OffensiveNim)`
			`- Existing C2's written (partially) in Nim`
			`- [NimPlant](https://github.com/chvancooten/NimPlant)`
			`- [Nimhawk](https://github.com/hdbreaker/Nimhawk)`
			`- [grc2](https://github.com/andreiverse/grc2)`