red-team

There are 212 repositories under red-team topic.

• BishopFox / sliver

  Adversary Emulation Framework

  security-toolsimplantgolangdns-serverhttpc2command-and-controlred-teamred-teamingred-team-engagementadversarial-attacksadversary-simulationslivergplv3dns
  Language:Go 9991

• infosecn1nja / Red-Teaming-Toolkit

  This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

  red-teamhackinginfosecpentesting
  9794

• quasar / Quasar

  Remote Administration Tool for Windows

  ratremoteadministrationnetc-sharpmonowindowssecurityremote-desktopremote-controlprotobufdotnetred-team
  Language:C# 9494

• samratashok / nishang

  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

  powershellnishangsecurityred-teampenetration-testinginfosechackingredteamactivedirectory
  Language:PowerShell 9468
• RedTeam-Tools

  A-poc / RedTeam-Tools

  Tools and Techniques for Red Team / Penetration Testing

  cheatsheetcybersecurityhackingpenetration-testingred-teamsecurity-toolslinuxresourcestoolswindowsenumerationpayloadpentestpentest-toolsred-team-toolsmitre-attackredteam
  7289

• trickest / cve

  Gather and update all available and newest CVEs with their PoC.

  poccvecve-poclatest-cvevulnerabilityvulnerabilitiessoftware-vulnerabilitiessoftware-securityexploitsecurityinfosechackingpentestingpenetration-testingred-teamsecurity-toolssoftware-vulnerability
  Language:HTML 7225
• caldera

  mitre / caldera

  Automated Adversary Emulation Platform

  adversary-emulationcalderasecurity-automationred-teammitremitre-attacksecurity-testingmitre-corporationcybersecurityhacking
  Language:Python 6420

• rmusser01 / Infosec_Reference

  An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

  infosecinfosec-referencereverse-engineeringhackingpentestingpenetration-testingreferenceslinuxprivilege-escalationinformation-securityblueteamred-teamwindowsosxforensicshacking-simulatorprivilege-escalation-exploitshacktoberfesthacktoberfest2021
  Language:CSS 5818

• Trusted-AI / adversarial-robustness-toolbox

  Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

  pythonattackadversarial-machine-learningpoisoningtrusted-aiartificial-intelligenceextractionadversarial-attacksadversarial-examplesevasioninferenceprivacyaitrustworthy-aired-teamblue-teammachine-learning
  Language:Python 5532
• NetExec

  Pennyw0rth / NetExec

  The Network Execution Tool

  hackingpentestpentest-toolpentest-toolspentestingpythonpython3red-teamactive-directoryinfosecsecuritysecurity-toolsinfosectoolsnetworkswindows
  Language:Python 4679

• cobbr / Covenant

  Covenant is a collaborative .NET C2 framework for red teamers.

  c2covenantdotnetdotnet-corered-team
  Language:C# 4504

• bluscreenofjeff / Red-Team-Infrastructure-Wiki

  Wiki to collect Red Team infrastructure hardening resources

  cobalt-strikeempireinfrastructurepentestingred-teamredirector
  4246

• lcvvvv / kscan

  Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

  redteamscannerbruteforcebrute-forcepentestexploitred-teamsecuritywebscanfingerprint
  Language:Go 4194

• skerkour / black-hat-rust

  Applied offensive security with Rust - https://kerkour.com/black-hat-rust

  rustsecuritypentestpentestingoffensive-securityred-teamauditbeaconc2bug-bountybug-huntingwasmshellcodesscannerphishingtrojanvirushackinginfosecsecurity-tools
  Language:Rust 4132

• leebaird / discover

  Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

  red-teambashnmapmetasploitscanningosintreconkali-linuxpayload-generatorreconnaissanceinformation-gatheringenumerationpentesting
  Language:Shell 3736
• RedEye

  cisagov / RedEye

  RedEye is a visual analytic tool supporting Red & Blue Team operations

  blue-teamcybersecurityred-team
  Language:TypeScript 2707

• bats3c / shad0w

  A post exploitation framework designed to operate covertly on heavily monitored environments

  shad0wc2red-teamcdockerdotnetshellcode
  Language:C 2157

• Idov31 / Nidhogg

  Nidhogg is an all-in-one simple to use windows kernel rootkit.

  cppcyber-securitycybersecuritydriverinfoseckernelred-teamredteamrootkitwindowswindows-rootkits
  Language:C++ 1930
• pi-pwnbox-rogueap

  koutto / pi-pwnbox-rogueap

  Homemade Pwnbox :rocket: / Rogue AP :satellite: based on Raspberry Pi — WiFi Hacking Cheatsheets + MindMap :bulb:

  pwnboxrogueapwifi-hackingwifi-securityred-teammitm-attackswifihackinghacking-toolsraspberry-picheatsheetmindmaphacking-cheasheet
  Language:Shell 1914

• center-for-threat-informed-defense / adversary_emulation_library

  An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

  adversary-emulationadversary-emulation-plansctidcyber-threat-intelligencecybersecuritymitre-attackred-teamthreat-informed-defense
  Language:C 1861

• Bashfuscator / Bashfuscator

  A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

  bashblue-teamevasionincident-responseinfoseclinuxlinux-shellobfuscationred-team
  Language:Python 1743
• inceptor

  klezVirus / inceptor

  Template-Driven AV/EDR Evasion Framework

  obfuscationpinvokedinvokecode-injectionprocess-injectionav-bypassamsi-bypassav-evasionedr-bypasspe-packeramsi-evasionred-teamred-teamingav-edr-bypasspayload-generator
  Language:Assembly 1723

• TryCatchHCF / Cloakify

  CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

  cipherdata-exfiltrationhackingpentestingexfiltrationsteganographycryptographydlpav-evasionprivacysecuritysecurity-toolsinfosecred-teampentestpentest-toolhacking-toolhacking-toolspentest-toolsstego
  Language:Python 1626

• WangYihang / Platypus

  :hammer: A modern multiple reverse shell sessions manager written in go

  reverse-shellctfattack-defensereverse-shell-as-a-servicepentestingpentesting-toolsred-team
  Language:Go 1608

• 0xmaximus / Galaxy-Bugbounty-Checklist

  Tips and Tutorials for Bug Bounty and also Penetration Tests.

  bugbountybughackeronebugbountytricksbugbounty-toolbugbountytipsbugbounty-reportsbugbounty-checklistbugcrowdbugsethical-hackingethical-hackerred-teamred-teamingvulnerabilitiesvulnerability
  1576
• gitjacker

  liamg / gitjacker

  🔪 :octocat: Leak git repositories from misconfigured websites

  githackingpenetration-testingpentestingred-team
  Language:Go 1565

• harleyQu1nn / AggressorScripts

  Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

  cnaaggressor-scriptsred-teamscriptsaggressorcobalt-strike
  Language:C# 1519
• Ghostwriter

  GhostManager / Ghostwriter

  The SpecterOps project management and reporting engine

  informationsecuritypenetration-testingred-teamreporting
  Language:Python 1476

• trickest / inventory

  Asset inventory of over 800 public bug bounty programs.

  securitybugbountybugbountytipsinfosecreconnaissancereconpentestinghackingsecurity-toolsred-teampenetration-testingsoftware-securitypentest-toolosintosint-toolosint-resourcesthreat-intelligencebug-bountyfuzzing
  Language:Shell 1453

• gobysec / Goby

  Attack surface mapping

  vulnerability-researchscan-toolsecuritysecurity-toolshackingnetworkingportscanningcveexppentestingexploitred-teamproxyshellcve-2023-22527cve-2024-0204cve-2024-20931cve-2024-21887cve-2024-21893cve-2024-23897cve-2024-25600
  1449

• m3n0sd0n4ld / GooFuzz

  GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

  bash-scriptbugbountydiscoveryfuzzinggoogle-dorkshackinginformation-disclosureinfosecosintpenetration-testingpentestingreconreconnaissancered-teamsubdomain
  Language:Shell 1422

• Viralmaniar / BigBountyRecon

  BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

  osintreconreconnaissancecybersecurityoffensive-securitypentestingpentest-toolbugbountybugbounty-toolbugbountytipsred-teamred-teamingblue-teampurple-teampurple-teams
  Language:C# 1396

• Arvanaghi / SessionGopher

  SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

  artifactspentestingpowershellred-teamregistrywindows
  Language:PowerShell 1256
• DeimosC2

  DeimosC2 / DeimosC2

  DeimosC2 is a Golang command and control framework for post-exploitation.

  security-toolsgolangc2red-teamquichttpsdohinfosechacktoberfest
  Language:Vue 1138
• AutoRDPwn

  JoelGMSec / AutoRDPwn

  The Shadow Attack Framework

  powershellrdpshadowattackpentestingred-teamwindows
  Language:PowerShell 1101
• BlackMamba

  loseys / BlackMamba

  C2/post-exploitation framework

  pyqt5python3spywarepost-exploitationpentestpentest-tooloffensive-securityred-teamsecurity-toolscommand-and-controlqtframeworkpython
  Language:Python 1092