Trending repositories for topic red-team

demo PsExec

Adversary Emulation Framework

The Network Execution Tool

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Tools and Techniques for Red Team / Penetration Testing

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

Automated Adversary Emulation Platform

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Remote Administration Tool for Windows

Gather and update all available and newest CVEs with their PoC.

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recognizing and mitigating homograph attacks.

Shellcode loader generator with multiples features

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

The most exhaustive list of reliable DNS resolvers.

Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

The SpecterOps project management and reporting engine

A post exploitation framework designed to operate covertly on heavily monitored environments

demo PsExec

A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recognizing and mitigating homograph attacks.

Framework for testing vulnerabilities of large language models (LLM).

A bluetooth control script for all your Bluetooth devices DoS needs.

Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications

Shellcode loader generator with multiples features

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educatio...

Security Auditor Utility for GraphQL APIs

The Network Execution Tool

The most exhaustive list of reliable DNS resolvers.

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Loading BOF & ShellCode without executable permission memory.

PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.

Adversary Emulation Framework

Lifetime AMSI bypass

The SpecterOps project management and reporting engine

Automated Adversary Emulation Platform

Adversary Emulation Framework

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

The Network Execution Tool

demo PsExec

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Tools and Techniques for Red Team / Penetration Testing

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Covenant is a collaborative .NET C2 framework for red teamers.

Shellcode loader generator with multiples features

Automated Adversary Emulation Platform

Remote Administration Tool for Windows

Gather and update all available and newest CVEs with their PoC.

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

A post exploitation framework designed to operate covertly on heavily monitored environments

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recognizing and mitigating homograph attacks.

Loading BOF & ShellCode without executable permission memory.

Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications

The most exhaustive list of reliable DNS resolvers.

demo PsExec

A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recognizing and mitigating homograph attacks.

Shellcode loader generator with multiples features

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications

Framework for testing vulnerabilities of large language models (LLM).

[NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"

A compiled list of tools for reconnaissance and footprinting

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Loading BOF & ShellCode without executable permission memory.

A bluetooth control script for all your Bluetooth devices DoS needs.

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

Golang library for malware development

The Network Execution Tool

User Enumeration of Microsoft Teams users via API

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

The most exhaustive list of reliable DNS resolvers.

NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-build support

Dorothy is a tool to test security monitoring and detection for Okta environments

PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.

A simple tool designed to create Atomic Red Team tests with ease.

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Shellcode loader generator with multiples features

Adversary Emulation Framework

Tools and Techniques for Red Team / Penetration Testing

The Network Execution Tool

Automated Adversary Emulation Platform

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

Remote Administration Tool for Windows

Gather and update all available and newest CVEs with their PoC.

Covenant is a collaborative .NET C2 framework for red teamers.

OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications

Nidhogg is an all-in-one simple to use windows kernel rootkit.

A simple tool designed to create Atomic Red Team tests with ease.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

The SpecterOps project management and reporting engine

Framework for testing vulnerabilities of large language models (LLM).

A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.

Shellcode loader generator with multiples features

A tool for generating and detecting Unicode domains to identify phishing URLs, aimed at assisting cybersecurity professionals in recognizing and mitigating homograph attacks.

demo PsExec

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

[NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"

A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.

Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications

Frieren is a micro-framework designed for use in routers and Single Board Computers (SBCs). This framework is built to be lightweight, efficient, and easy to integrate into various hardware projects.

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

ATT&CK Evaluations Library

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-build support

OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.

User Enumeration of Microsoft Teams users via API

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

A compiled list of tools for reconnaissance and footprinting

Payload encoding utility to effectively lower payload entropy.

Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Ve...

An insane list of all dorks taken from everywhere from various different sources.

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educatio...

Loading BOF & ShellCode without executable permission memory.

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

Execute shellcode files with rundll32

A Red Team Activity Hub

NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-build support

Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Ve...

The Most Advanced Client-Side Prototype Pollution Scanner

Helios: Automated XSS Testing

A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.

X-ZIGZAG is a lightweight RAT engineered for stealth, operating exclusively in RAM.

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Payload encoding utility to effectively lower payload entropy.

Signature based honeypot detector tool written in Golang

EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.

[NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"

NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg

ATT&CK Evaluations Library

The Network Execution Tool

Adversary Emulation Framework

Tools and Techniques for Red Team / Penetration Testing

Remote Administration Tool for Windows

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Gather and update all available and newest CVEs with their PoC.

Automated Adversary Emulation Platform

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book , red team OSINT and OSINT tips

An insane list of all dorks taken from everywhere from various different sources.

OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educatio...

Nidhogg is an all-in-one simple to use windows kernel rootkit.

PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.

Wiki to collect Red Team infrastructure hardening resources

Covenant is a collaborative .NET C2 framework for red teamers.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.

Loading BOF & ShellCode without executable permission memory.

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Ve...

NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-build support

The Most Advanced Client-Side Prototype Pollution Scanner

An insane list of all dorks taken from everywhere from various different sources.

Generate DLL Hijacking Payload in batches.

Execute shellcode files with rundll32

A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.

A Red Team Activity Hub

A bluetooth control script for all your Bluetooth devices DoS needs.

ATT&CK Evaluations Library

A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.

Repo containing cracked red teaming tools.

RUDY is an acronym used to describe a Denial of Service (DoS) tool used by hackers to perform slow-rate a.k.a. “Low and slow” attacks.

OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.

Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications

Demonized Shell is an Advanced Tool for persistence in linux.

Helios: Automated XSS Testing