OpenMalleableC2 is a library designed to implement Cobalt Strike's Malleable C2 profile format, focusing on HTTP communication. This framework-agnostic tool allows security researchers and red teams to customize their command-and-control (C2) communications, making it easier to integrate malleable C2 features into various tools and frameworks. The primary advantage is the ability to send arbitrary data over HTTP while maintaining a stable and transparent communication channel. Existing open-source C2 frameworks, like Mythic and Havoc, offer some level of HTTP traffic customization, but they often fall short of the extensive options provided by Cobalt Strike's Malleable C2. OpenMalleableC2 aims to bridge this gap, enabling users to utilize the detailed customization capabilities of Malleable C2 and leverage existing profiles and profile generator tools. The library is operational but not entirely stable, and users are encouraged to report any bugs they encounter. The article provides a practical example using a "ping pong" agent and server setup. This example illustrates the typical Beacon callback mechanism. The agent sends a GET request to check in for tasks and a POST request to send back the results. For demonstration purposes, the tasks consist of a random string that the agent retrieves, reverses, and then posts back to the server. The server verifies the response and provides feedback based on the correctness of the reversed string. Users can easily run this example using provided commands for starting the server and executing the agent.