Packages and Binaries:


Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features and share them among connected sibling servers.

Installed size: 300 KB
How to install: sudo apt install villain

  • python3
  • python3-netifaces
  • python3-pycryptodome
  • python3-pyperclip
  • python3-requests
root@kali:~# villain -h
usage: [-h] [-p PORT] [-x HOAX_PORT] [-n NETCAT_PORT]
                  [-f FILE_SMUGGLER_PORT] [-i] [-c CERTFILE] [-k KEYFILE] [-q]

  -h, --help            show this help message and exit
  -p PORT, --port PORT  Team server port (default: 6501).
  -x HOAX_PORT, --hoax-port HOAX_PORT
                        HoaxShell server port (default: 8080 via http, 443 via
  -n NETCAT_PORT, --netcat-port NETCAT_PORT
                        Netcat multi-listener port (default: 4443).
  -f FILE_SMUGGLER_PORT, --file-smuggler-port FILE_SMUGGLER_PORT
                        Http file smuggler server port (default: 8888).
  -i, --insecure        Allows any Villain client (sibling server) to connect
                        to your instance without prompting you for
  -c CERTFILE, --certfile CERTFILE
                        Path to your ssl certificate (for HoaxShell https
  -k KEYFILE, --keyfile KEYFILE
                        Path to the private key for your certificate (for
                        HoaxShell https server).
  -q, --quiet           Do not print the banner on startup.

Updated on: 2024-Feb-16