Offsec
This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
Tools and Techniques for Red Team / Penetration Testing
A little toolbox to play with Microsoft Kerberos in C
This map lists the essential techniques to bypass anti-virus and EDR
E4GL30S1NT - Simple Information Gathering Tool
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Tutorials, examples, discussions, research proposals, and other resources related to fuzzing
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
Red Teaming Tactics and Techniques
Transforms UDP stream into (fake) TCP streams that can go through Layer 3 & Layer 4 (NAPT) firewalls/NATs.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
Powershell tool to automate Active Directory enumeration.
Simple script to extract useful informations from the combo BloodHound + Neo4j
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
Open Adversary Exposure Validation Platform
Template-Driven AV/EDR Evasion Framework