redteam-tools

There are 55 repositories under redteam-tools topic.

• Scanners-Box

  We5ter / Scanners-Box

  A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

  pentesting-toolshacker-toolsvulnerability-scannersinformation-securityredteam-toolspenetration-testingdevsecopssecurity-automationsmart-contractsprivacy-complianceapk-analysisbinary-analysisexploitation-frameworkmalware-analysissecurity-auditcode-analyzerstatic-analysiswifi-hackingwifi-security
  7966
• traitor

  liamg / traitor

  :arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

  gtfobinsexploitprivescprivilege-escalationhacktheboxinfosecredteam-toolssecurity-toolscve-2021-3560dirtypipecve-2022-0847
  Language:Go 6492

• yaklang / yakit

  Cyber Security ALL-IN-ONE Platform

  redteamredteam-toolshacking-toolsscannerburpsuitepentestgolangblueteamexploithackingsecurity
  Language:TypeScript 5996

• t3l3machus / Villain

  Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

  open-sourcepentestpentestingreadteamingredteam-toolsredteamcybersecurityoffensive-securityc2hackinghacking-toolpenetration-testingpenetration-testing-tools
  Language:Python 3561

• wgpsec / ENScan_GO

  一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。

  redteamappicpredteam-tools
  Language:Go 2586

• zhzyker / dismap

  Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

  identificationsecurity-toolswebscangolang-toolsredteamredteam-toolssecurity-scansecuritypentest-toolspentest-toolcybersecurityfingerprintfingerprint-scannerdetection
  Language:Go 1910

• xiecat / goblin

  一款适用于红蓝对抗中的仿真钓鱼系统

  phishinghoneypotsgoblinsecuritysecurity-toolscybersecurityblueteamredteamgolang-toolsredteam-tools
  Language:Go 1375

• 0xsp-SRD / mortar

  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

  bypass-antivirusbypass-edrevasionredteam-tools
  Language:Pascal 1338

• mufeedvh / moonwalk

  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

  cveexploitexploitationinfosecinfosectoolslinuxprivilege-escalationred-teamingredteamredteam-toolssecuritysecurity-tools
  Language:Rust 1302

• cyberark / kubesploit

  Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

  containerskubernetespenetration-testing-frameworkpenetration-testing-toolsredteam-toolssecurity-toolssecuritypost-exploitationgolangred-teamsc2http2command-and-controlagent
  Language:Go 1077

• Esc4iCEscEsc / skanuvaty

  Dangerously fast DNS/network/port scanner

  penetration-testingpenetration-testing-toolspentestingpentestdnsdns-clientsubdomain-scannersubdomain-enumerationscannerrustrust-langsecuritysecurity-toolscybersecurityosint-toolhacking-toolsredteamredteam-tools
  Language:Rust 860

• ffffffff0x / BerylEnigma

  ffffffff0x team toolset for penetration testing, cryptography research, CTF and daily use. | ffffffff0x 团队工具集，用来进行渗透测试，密码学研究，CTF和日常使用。

  cryptocryptographyctfctf-toolsffffffff0xhackingredteamredteam-tools
  Language:Java 632

• naksyn / Pyramid

  a tool to help operate in EDRs' blind spots

  edredr-testinghackingpythonredteam-toolsredteaming
  Language:Python 611

• lintstar / About-Attack

  一个旨在通过应用场景 / 标签对 Github 红队向工具 / 资源进行分类收集，降低红队技术门槛的手册【持续更新】

  attackattack-defenseredteamredteam-toolsrceintranet-penetrationautomationopensource
  583

• bitquark / shortscan

  An IIS short filename enumeration tool

  bugbountybugbounty-tooliisiis-securityiis-serverpentestingpentesting-toolsredteamredteam-toolssecuritysecurity-auditsecurity-automationsecurity-scannersecurity-toolsvulnerability-detectionvulnerability-scanners
  Language:Go 543

• cyberark / PipeViewer

  A tool that shows detailed information about named pipes in Windows

  blueteamcybersecuritynamedpipenamedpipesredteamredteam-toolsresearch-toolwindows
  Language:C# 528

• signorrayan / RedTeam_toolkit

  Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

  cve-searchdir-scannerdjangonmapoffensive-scriptsoffensivesecuritypenetration-testingpythonpython3redteam-toolsservice-discoveryverb-tamperingvulnerability-scanners
  Language:Python 514

• n0mi1k / apk2url

  An OSINT tool to quickly extract IP and URL endpoints from APKs by disassembling and decompiling

  androidandroid-securityapkapktoolbugbountyendpoint-discoveryjadxosint-toolredteam-tools
  Language:Shell 508

• wddadk / Offensive-OSINT-Tools

  OffSec OSINT Pentest/RedTeam Tools

  hackinginformation-gatheringinfosecosintpentestpentest-scriptspentestingpentesting-toolsreconnaissanceredteamredteam-toolsredteamingawesome-listosint-tool
  503

• knight0x07 / ImpulsiveDLLHijack

  C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

  redteamdll-hijackingredteam-toolscybersecurity
  Language:C# 470

• v4d1 / Dome

  Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

  subdomain-enumerationsubdomain-findersubdomain-brutepentestingreconnaissancebugbountysubdomainredteamredteam-toolshacking-toolreconenumerationosintsubdomain-scannerpenetration-testing
  Language:Python 453

• cfalta / PowerShellArmoury

  A PowerShell armoury for security guys and girls

  amsiavbypassencryptionpowershellredteam-toolssecurity-toolswindows
  Language:PowerShell 449

• wh0amitz / KRBUACBypass

  UAC Bypass By Abusing Kerberos Tickets

  infoseckerberosredteamredteam-toolsuac-bypasswindows
  Language:C# 443

• wh0amitz / PetitPotato

  Local privilege escalation via PetitPotam (Abusing impersonate privileges).

  infosecpotatoprivilege-escalationredteamredteam-toolswindows
  Language:C 391

• pwn1sher / frostbyte

  FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads

  redteamredteam-tools
  Language:C# 365
• eviltree

  t3l3machus / eviltree

  A python3 remake of the classic "tree" command with the additional feature of searching for user provided keywords/regex in files, highlighting those that contain matches.

  infosecinfosectoolslinuxopen-sourcepentestingprivilege-escalationredteam-toolswindows
  Language:Python 360

• berylliumsec / nebula

  AI-Powered Ethical Hacking Assistant

  aicrackmapexecethical-hackingethical-hacking-toolsmachine-learningnmapvulnerability-scannerszapmetasploitnucleipenetration-testingpenetration-testing-toolsredteam-toolshackinghacking-tool
  Language:Python 354
• Vajra

  TROUBLE-1 / Vajra

  Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfaces.

  azureazureadawsgcpcloudsecurityredteam-toolstoolkitpython3
  Language:CSS 350
• realm

  spellshift / realm

  Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.

  agentbotc2cybercybersecuritygolanggraphqlimplantreactredteamredteam-toolsredteamingrustteamservertypescriptwebui
  Language:Rust 320

• cyberark / RPCMon

  RPC Monitor tool based on Event Tracing for Windows

  windowsrpcrpc-clientrpc-servereventtracingmonitoring-toolblueteamredteam-toolsredteamresearch-toolsecurity-toolscybersecurity
  Language:C# 303

• zeroperil / HookDump

  Security product hook detection

  edrhookingredteam-tools
  Language:C++ 293

• naksyn / PythonMemoryModule

  pure-python implementation of MemoryModule technique to load dll and unmanaged exe entirely from memory

  edr-evasionevasionhackingmemory-modulememorymodulepythonredteamredteam-toolsredteamingrunpe
  Language:Python 277

• yutianqaq / impacket-gui

  impacket-gui

  impacketimpacket-guipentest-toolredteam-tools
  Language:Python 271
• catspin

  rootcathacking / catspin

  Catspin rotates the IP address of HTTP requests making IP based blocks or slowdown measures ineffective. It is based on AWS API Gateway and deployed via AWS Cloudformation.

  awsaws-apigatewayaws-cloudformationhackingtoolspentestingpentesting-toolhackingredteamredteam-tools
  Language:Shell 254

• reveng007 / SharpGmailC2

  Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol

  c2gmailhacking-toolimap-clientimplantpowershellredteamredteam-toolsredteamingsmtp-client
  Language:C# 251

• nettitude / ETWHash

  C# POC to extract NetNTLMv1/v2 hashes from ETW provider

  etwredteamredteam-tools
  Language:C# 245