Lists (32)
Active Directory Security
Repos regarding Active Directory security/offensive tools for red teaming AD.23 repositories
AI/ML 🤖
24 repositories
Blue Team 📘
3 repositories
C2 Tools/Infrastructure 📡
Repos for C2 infrastructure and C2 tools.13 repositories
CLI 🖥️
CLI tools and repos12 repositories
Cloud Security/Pentesting ☁️
9 repositories
CobaltStrike
CobaltStrike Repos34 repositories
Content Discovery & Fuzzing
Tools for content discovery and fuzzing.1 repository
CRTO 🔴 ⚔️
Repos related to Zero-Point Security CRTO course for Red Team Operator 1 certification2 repositories
CVEs
Collection of PoC for CVEs1 repository
Docker Security 🐳
3 repositories
Domain Security
Tools regarding the security of domains, domain spoofing, subdomain takeover, etc.3 repositories
Google Cloud Security
4 repositories
Host Enumeration & PrivEsc 🔍
Repos related to host enumeration, host recon, and PrivEsc.1 repository
Kerberos 🐶
Repos related to Kerberos attack/defense/management1 repository
Ludus 🏟
Ludus related repos5 repositories
MalDocs 📃
Repos regarding maldocs1 repository
Markdown Ⓜ️
Repos regarding Markdown and markdown tools.6 repositories
NTLM Relaying & Forced Auth
Tools for NTLM relaying and forcing auth3 repositories
Offsenive C#/.NET
Repos for offensive tooling in C# or .NET10 repositories
OSINT 🕵️
A collection of repos for OSINT!25 repositories
Password Attacks 🗝️
Repos related to password attacks, such as password spraying.5 repositories
Persistence 💾
Repos relating to establishing/maintaining persistence on compromised hosts.2 repositories
Phishing 🎣
Repos to aid in phishing.8 repositories
PowerShell
Repos relating to PowerShell (Modules, Tools, Scripts, etc.)6 repositories
Proxy & Port Forwarding
Repos and tools for proxying and port forwarding!2 repositories
Red Team 🚩
277 repositories
Rust 🦀
Repos related to Rust19 repositories
Subdomain Enumeration & Hacking
2 repositories
WebSockets
2 repositories
Wordlists 📖
Collection of wordlists for password cracking, fuzzing, content discovery, username enumeration, etc.2 repositories
ZSH
Repos related to ZSH (Themes, plugins, etc.)2 repositories
Starred repositories
Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.
Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binary
Cobalt-Strike / unhook-bof
Forked from rsmudge/unhook-bofRemove API hooks from a Beacon process.
UDC2 implementation that provides an ICMP C2 channel
KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulation for LSASS memory dumping on modern Windows with HVCI/VBS.
Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective
BOF to steal browser cookies & credentials
UAC Bypass using UIAccess program QuickAssist
Custom dyld version inherited from original Apple dyld implementation
A collection of scripts and documents to help future XProtect Remediator (XPR) research
template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.
Usermode exploit to bypass any AC using a 0day shatter attack.
Create your own AirTag with OpenHaystack, but without the need to own an Apple device
Send files and folders anywhere in the world without storing in cloud - any size, any format, no accounts, no restrictions.
Wiretap is a transparent, VPN-like proxy server that tunnels traffic via WireGuard and requires no special privileges to run.
A C# based Red Team utility, to execute commands on a remote windows system using SMB/SCCM
Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.
Minimal, self-hosted, 0-config alternative to ngrok. Caddy+OpenSSH+50 lines of Python.
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
Tunnel relay allows you to expose local services to the outside world over HTTPS
Cobalt Strike module x loader x profile x wike / A public collection of open resources for Cobalt Strike (only legal use in Red Team and penetration testing