Red team
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Automated Red Team Infrastructure deployement using Docker
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
Active Directory and Internal Pentest Cheatsheets
A fast, simple, recursive content discovery tool written in Rust.
Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applications to elevate privileges.
Quick bash script to enumerate stale ADIDNS entries on the local subnet
Tool to remotely dump secrets from the Windows registry
A Havoc UI tool to pivot onto a machine using ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.
Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP) 8000
Attack Graph Visualizer and Explorer (Active Directory) ...Who's *really* Domain Admin?
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
Send phishing messages and attachments to Microsoft Teams users
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
A universal memory dumper using Frida for Python 3
Xray panel supporting multi-protocol multi-user expire day & traffic & IP limit (Vmess & Vless & Trojan & ShadowSocks & Wireguard)
Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).