redteam

There are 371 repositories under redteam topic.

PayloadsAllTheThings
swisskyrepo / PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
pentest payload bypass web-application hacking vulnerability bounty methodology privilege-escalation penetration-testing cheatsheet security enumeration bugbounty redteam payloads hacktoberfest
Language:Python 57163
sherlock-project / sherlock
🔎 Hunt down social media accounts by username across social networks
osint reconnaissance linux macos cli sherlock python3 windows redteam tools information-gathering hacktoberfest python
Language:Python 51658
bettercap / bettercap
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
password-sniffer mitm rogue-ap wifi hacking security spoofing proxy wifi-security deauthentication-attack dot11 network-attacks monitoring pmkid wpa2 redteam ble mousejack hid redteaming
Language:Go 15756
maurosoria / dirsearch
Web path scanner
fuzzer fuzzing python security dirsearch hacking pentesting penetration-testing bug-bounty appsec wordlist hacking-tool infosec brute scanner bugbounty enumeration pentest-tool red-teaming redteam
Language:Python 11332
theHarvester
laramies / theHarvester
E-mails, subdomains and names Harvester - OSINT
osint subdomain-enumeration redteam recon blueteam discovery emails python information-gathering reconnaissance
Language:Python 10423
GTFOBins / GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
post-exploitation linux unix bypass gtfobins binaries reverse-shell bind-shell exfiltration redteam blueteam
Language:HTML 10176
samratashok / nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
powershell nishang security red-team penetration-testing infosec hacking redteam activedirectory
Language:PowerShell 8375
edoardottt / awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
awesome awesome-list hacking search-engine osint awesome-lists dns hacking-tools exploit security security-tools vulnerability wifi-network bugbounty osint-tool vulnerabilities redteam redteaming cve hacktoberfest
Language:Shell 6747
LOLBAS-Project / LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
lolbins lolscripts redteam blueteam purpleteam dfir living-off-the-land
Language:XSLT 6632
yeyintminthuhtut / Awesome-Red-Teaming
List of Awesome Red Teaming Resources
cobalt-strike phishing redteaming redteam empire uac
6548
yaklang / yakit
Cyber Security ALL-IN-ONE Platform
redteam redteam-tools hacking-tools scanner burpsuite pentest golang blueteam exploit hacking security
Language:TypeScript 6080
HackTools
LasCC / HackTools
The all-in-one browser extension for offensive security professionals 🛠
reverse-shell hacking hack-tools chrome-extension firefox-addon hacktools payloads xss-payloads web-pentesters hack msfvenom metasploit hackbar cheatsheet purpleteam redteam bug-bounty hackingtools
Language:TypeScript 5478
RedTeam-Tools
A-poc / RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
cheatsheet cybersecurity hacking penetration-testing red-team security-tools linux resources tools windows enumeration payload pentest pentest-tools red-team-tools mitre-attack redteam
5250
1earn
ffffffff0x / 1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
markdown-article linux-learning pentest study security collection blueteam redteam post-penetration ics-security writeup pentest-tool poc ctf security-tools infosec hacking
Language:C++ 5097
kubernetes-goat
madhuakula / kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
kubernetes vulnerable-app security hacking pentesting infrastructure cloud-security docker container kubernetes-goat devsecops cloudsecurity kubernetes-security container-security owasp cloud-native k8s blueteam redteam
Language:HTML 3995
mantvydasb / RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
redteam pentesting redteaming redteam-infrastructure offensive-security oscp
Language:PowerShell 3840
zer0yu / Awesome-CobaltStrike
List of Awesome CobaltStrike Resources
cobalt-strike security redteam
3830
lcvvvv / kscan
Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。
redteam scanner bruteforce brute-force pentest exploit red-team security webscan fingerprint
Language:Go 3657
t3l3machus / Villain
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
open-source pentest pentesting readteaming redteam-tools redteam cybersecurity offensive-security c2 hacking hacking-tool penetration-testing penetration-testing-tools
Language:Python 3590
PeiQi0 / PeiQi-WIKI-Book
面向网络安全从业者的知识文库🍃
cve 1day 0day vuln redteam peiqi-wiki
3507
Viper
FunnyWolf / Viper
Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台
metasploit-framework post-exploitation redteam cobalt-strike viper docker attack attack-surface-management red-team-tools
3498
S3cur3Th1sSh1t / WinPwn
Automation for internal Windows Penetrationtest / AD-Security
pentesting automation adsecurity privilege-escalation powersploit pentest-tool exploitation recon redteam powershell
Language:PowerShell 3198
vaib25vicky / awesome-mobile-security
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
pentesting ios ios-security android security-tools awesome redteam hacking-tools hacking mobile mobile-security android-security awesome-list resources bugbounty reverse-engineering
2831
snoop
snooppr / snoop
Snoop — инструмент разведки на основе открытых данных (OSINT world)
osint termux username-search username-checker pentest web-scraping ctf scanner redteam blueteam infosec security nickname ip geo police parser scraping geocoder username
Language:Python 2712
malicious-pdf
jonaslejon / malicious-pdf
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
penetrationtesting pentesting pentesting-tools penetration-testing penetration-test pdf-generation pdf bugbounty bugbounty-tool python redteam redteaming scanner
Language:Python 2695
wgpsec / ENScan_GO
一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。
redteam app icp redteam-tools
Language:Go 2663
opsdisk / the_cyber_plumbers_handbook
Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.
ssh penetration-testing tunneling kali oscp lateral-movement socks5 proxychains blueteam redteam pivoting
2508
mgeeky / Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
penetration-testing penetration testing tools scripts cheatsheets exploit social-engineering networks red-teaming hacking pentesting redteam security
Language:PowerShell 2438
r0eXpeR / redteam_vul
红队作战中比较常遇到的一些重点系统漏洞整理。
redteam security hacking
2435
ph4ntonn / Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
golang ssh tunnel ecc pentesting security-tools encrypt stowaway socks5 security pentest-tool redteam ctf multi-hop port-forward
Language:Go 2425
BypassAV
matro7sh / BypassAV
This map lists the essential techniques to bypass anti-virus and EDR
av bypass edr mindmap pentest redteam markdown
2220
nicocha30 / ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
redteam tunneling golang post-exploitation offensive-security pentest-tool pentesting pivoting
Language:Go 2200
phpsploit
nil0x42 / phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
post-exploitation hacking backdoor stealth hacktool blackhat privilege-escalation php-backdoor hacking-framework webshell advanced-persistent-threat redteam c2 command-and-control php-webshell php-webshell-backdoor persistence web-hacking
Language:Python 2149
gloxec / CrossC2
generate CobaltStrike's cross-platform payload
cobalt-strike linux macos android ios cross-platform redteam
Language:C 2142
tr0uble-mAker / POC-bomber
利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点
poc vulnerability-scanner poc-bomber cve rce getshell redteam exp
Language:Python 2133
sevagas / macro_pack
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
pentest social-engineering vba obfuscation redteam msoffice macros meterpreter
Language:Python 2050