A lightweight Go-based HTTP botnet framework built for educational purposes , Go language learning , and security research .
- Remote Download Execute: It could execute a local executable or download from remote host and execute
- Evasion: anti-vm, anti-sandbox and anti-debugger features
- Operation logs: It could record all opeartions or export
- Task logs: Check task status and manage it or export
- Friendly builder
- Install function
- Auto-startup
- Support HTTP/HTTPS mode, allow generate CA certificate and self-sign
- Allow generate C2 which could working on Linux/Windows
- Install Mysql server Mysql Community Version and start. (currently, server only support working on windows)
- Execute sql file in Mysql client(Even in cmd is enough)
use Your_Database_Name;
source "X:/YouPath/thisbot.sql";
- Open cmd.exe, type following command to generate basic configure and configure yours
ThisBotC2.exe --init-config- Initialize commands to mysql
ThisBotC2.exe --init-commands- Run ThisBotC2.exe in cmd/powershell, then use "help" command first
- Install go environment(Best is Go 1.25.4)
- Run build.ps1 which located in client and server folder.
# release or debug are all okay
build.ps1 [release/debug] [win/linux]This software is provided strictly for educational and legitimate security research purposes only.
It must not be used for:
- Unauthorized access
- Intrusion, exploitation, or disruption of systems
- Any illegal or unethical activity
The user assumes full responsibility for compliance with all applicable laws.
The author(s) are not liable for any misuse, damages, or legal consequences. If you do not accept these terms, do not use this software.
⚠️ Legal Notice: This project is strictly for authorized testing, education, and research.
Misuse of this software may violate laws. Read the disclaimer below before using.
If you find this useful, feel free to star the repository once you publish it.
For questions or contributions, feel free to open an Issue or Pull Request. My Telegram: @Zymikek