redteam

There are 365 repositories under redteam topic.

PayloadsAllTheThings
swisskyrepo / PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
bounty bugbounty bypass cheatsheet enumeration hacking hacktoberfest methodology payload payloads penetration-testing pentest privilege-escalation redteam security vulnerability web-application
Language:Python 56648
sherlock-project / sherlock
🔎 Hunt down social media accounts by username across social networks
cli hacktoberfest information-gathering linux macos osint python python3 reconnaissance redteam sherlock tools windows
Language:Python 51162
bettercap / bettercap
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
password-sniffer mitm rogue-ap wifi hacking security spoofing proxy wifi-security deauthentication-attack dot11 network-attacks monitoring pmkid wpa2 redteam ble mousejack hid redteaming
Language:Go 15656
maurosoria / dirsearch
Web path scanner
appsec brute bug-bounty bugbounty dirsearch enumeration fuzzer fuzzing hacking hacking-tool infosec penetration-testing pentest-tool pentesting python red-teaming redteam scanner security wordlist
Language:Python 11212
theHarvester
laramies / theHarvester
E-mails, subdomains and names Harvester - OSINT
osint subdomain-enumeration redteam recon blueteam discovery emails python information-gathering reconnaissance
Language:Python 10294
GTFOBins / GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
post-exploitation linux unix bypass gtfobins binaries reverse-shell bind-shell exfiltration redteam blueteam
Language:HTML 10089
samratashok / nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
activedirectory hacking infosec nishang penetration-testing powershell red-team redteam security
Language:PowerShell 8324
edoardottt / awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
awesome awesome-list awesome-lists bugbounty cve dns exploit hacking hacking-tools hacktoberfest osint osint-tool redteam redteaming search-engine security security-tools vulnerabilities vulnerability wifi-network
Language:Shell 6662
LOLBAS-Project / LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
blueteam dfir living-off-the-land lolbins lolscripts purpleteam redteam
Language:XSLT 6577
yeyintminthuhtut / Awesome-Red-Teaming
List of Awesome Red Teaming Resources
cobalt-strike empire phishing redteam redteaming uac
6501
yaklang / yakit
Cyber Security ALL-IN-ONE Platform
blueteam burpsuite exploit golang hacking hacking-tools pentest redteam redteam-tools scanner security
Language:TypeScript 5997
HackTools
LasCC / HackTools
The all-in-one browser extension for offensive security professionals 🛠
reverse-shell hacking hack-tools chrome-extension firefox-addon hacktools payloads xss-payloads web-pentesters hack msfvenom metasploit hackbar cheatsheet purpleteam redteam bug-bounty hackingtools
Language:TypeScript 5433
RedTeam-Tools
A-poc / RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
cheatsheet cybersecurity enumeration hacking linux mitre-attack payload penetration-testing pentest pentest-tools red-team red-team-tools redteam resources security-tools tools windows
5120
1earn
ffffffff0x / 1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
markdown-article linux-learning pentest study security collection blueteam redteam post-penetration ics-security writeup pentest-tool poc ctf security-tools infosec hacking
Language:C++ 4986
kubernetes-goat
madhuakula / kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
kubernetes vulnerable-app security hacking pentesting infrastructure cloud-security docker container kubernetes-goat devsecops cloudsecurity kubernetes-security container-security owasp cloud-native k8s blueteam redteam
Language:HTML 3860
mantvydasb / RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
redteam pentesting redteaming redteam-infrastructure offensive-security oscp
Language:PowerShell 3808
zer0yu / Awesome-CobaltStrike
List of Awesome CobaltStrike Resources
cobalt-strike redteam security
3801
lcvvvv / kscan
Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。
redteam scanner bruteforce brute-force pentest exploit red-team security webscan fingerprint
Language:Go 3631
t3l3machus / Villain
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
open-source pentest pentesting readteaming redteam-tools redteam cybersecurity offensive-security c2 hacking hacking-tool penetration-testing penetration-testing-tools
Language:Python 3561
Viper
FunnyWolf / Viper
Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台
metasploit-framework post-exploitation redteam cobalt-strike viper docker attack attack-surface-management red-team-tools
3470
PeiQi0 / PeiQi-WIKI-Book
面向网络安全从业者的知识文库🍃
cve 1day 0day vuln redteam peiqi-wiki
3468
S3cur3Th1sSh1t / WinPwn
Automation for internal Windows Penetrationtest / AD-Security
adsecurity automation exploitation pentest-tool pentesting powershell powersploit privilege-escalation recon redteam
Language:PowerShell 3174
vaib25vicky / awesome-mobile-security
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
pentesting ios ios-security android security-tools awesome redteam hacking-tools hacking mobile mobile-security android-security awesome-list resources bugbounty reverse-engineering
2807
snoop
snooppr / snoop
Snoop — инструмент разведки на основе открытых данных (OSINT world)
osint termux username-search username-checker pentest web-scraping ctf scanner redteam blueteam infosec security nickname ip geo police parser scraping geocoder username
Language:Python 2675
malicious-pdf
jonaslejon / malicious-pdf
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
penetrationtesting pentesting pentesting-tools penetration-testing penetration-test pdf-generation pdf bugbounty bugbounty-tool python redteam redteaming scanner
Language:Python 2668
wgpsec / ENScan_GO
一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。
redteam app icp redteam-tools
Language:Go 2586
opsdisk / the_cyber_plumbers_handbook
Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
blueteam kali lateral-movement oscp penetration-testing pivoting proxychains redteam socks5 ssh tunneling
2502
r0eXpeR / redteam_vul
红队作战中比较常遇到的一些重点系统漏洞整理。
hacking redteam security
2415
mgeeky / Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
penetration-testing penetration testing tools scripts cheatsheets exploit social-engineering networks red-teaming hacking pentesting redteam security
Language:PowerShell 2412
ph4ntonn / Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
golang ssh tunnel ecc pentesting security-tools encrypt stowaway socks5 security pentest-tool redteam ctf multi-hop port-forward
Language:Go 2411
BypassAV
matro7sh / BypassAV
This map lists the essential techniques to bypass anti-virus and EDR
av bypass edr mindmap pentest redteam markdown
2201
phpsploit
nil0x42 / phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
post-exploitation hacking backdoor stealth hacktool blackhat privilege-escalation php-backdoor hacking-framework webshell advanced-persistent-threat redteam c2 command-and-control php-webshell php-webshell-backdoor persistence web-hacking
Language:Python 2134
gloxec / CrossC2
generate CobaltStrike's cross-platform payload
android cobalt-strike cross-platform ios linux macos redteam
Language:C 2117
tr0uble-mAker / POC-bomber
利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点
poc vulnerability-scanner poc-bomber cve rce getshell redteam exp
Language:Python 2104
nicocha30 / ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
golang offensive-security pentest-tool pentesting pivoting post-exploitation redteam tunneling
Language:Go 2089
sevagas / macro_pack
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
pentest social-engineering vba obfuscation redteam msoffice macros meterpreter
Language:Python 2039