{"id":13602832,"url":"https://github.com/sneakerhax/TTPs","last_synced_at":"2025-04-11T13:31:35.823Z","repository":{"id":57244226,"uuid":"68552806","full_name":"sneakerhax/TTPs","owner":"sneakerhax","description":"Red Team Tactics, Techniques, and Procedures","archived":false,"fork":false,"pushed_at":"2024-06-24T22:21:47.000Z","size":1437,"stargazers_count":392,"open_issues_count":0,"forks_count":91,"subscribers_count":26,"default_branch":"main","last_synced_at":"2024-08-04T07:01:09.327Z","etag":null,"topics":["bash","linux","pentesting","powershell","python","python3","redteam","security","windows"],"latest_commit_sha":null,"homepage":"","language":"Dockerfile","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sneakerhax.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2016-09-18T23:25:38.000Z","updated_at":"2024-08-09T21:48:51.856Z","dependencies_parsed_at":"2023-02-17T13:31:22.610Z","dependency_job_id":"665dda79-81bd-4796-a6fd-8187961902f8","html_url":"https://github.com/sneakerhax/TTPs","commit_stats":null,"previous_names":["sneakerhax/runbooks"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sneakerhax%2FTTPs","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sneakerhax%2FTTPs/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sneakerhax%2FTTPs/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sneakerhax%2FTTPs/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sneakerhax","download_url":"https://codeload.github.com/sneakerhax/TTPs/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223470287,"owners_count":17150526,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bash","linux","pentesting","powershell","python","python3","redteam","security","windows"],"created_at":"2024-08-01T18:01:39.336Z","updated_at":"2025-04-11T13:31:35.813Z","avatar_url":"https://github.com/sneakerhax.png","language":"Dockerfile","funding_links":[],"categories":["bash"],"sub_categories":[],"readme":"# TTPs\n\nTactics, Techniques, and Procedures (aka. my notes)\n\n[![License](https://img.shields.io/badge/license-GPL3-lightgrey.svg)](https://www.gnu.org/licenses/gpl-3.0.en.html) [![Twitter](https://img.shields.io/badge/twitter-sneakerhax-38A1F3?logo=twitter)](https://twitter.com/sneakerhax)\n\n## Red Team Resources\n\nResources to define, understand the execution, and goals of Red Teaming. These resources have an emphasis on Enterprise Red Teaming in the cloud\n\n## General\n\n* [Red Team](https://en.wikipedia.org/wiki/Red_team) - Wikipedia\n* [Hacking Google | Red Team](https://www.youtube.com/watch?v=TusQWn2TQxQ) - Google\n* [Red teaming 101: What is red teaming?](https://www.ibm.com/blog/red-teaming-101-what-is-red-teaming/) - Evan Anderson (IBM)\n* [Meta Tech Podcast - Offensive Security at Meta's Red Team X](https://insidefacebookmobile.libsyn.com/53-offensive-security-at-metas-red-team-x) - Meta\n\n ## TTP\n\n * [Mitre Att\u0026ck](https://attack.mitre.org) - Mitre\n * [NIST Glossary - Tactics, Techniques, and Procuedures](https://csrc.nist.gov/glossary/term/tactics_techniques_and_procedures) - NIST\n * [NIST Glossary - Tactic, Technique, and Procedure](https://csrc.nist.gov/glossary/term/tactic_technique_procedure) - NIST\n * [What’s in a name? TTPs in Info Sec](https://posts.specterops.io/whats-in-a-name-ttps-in-info-sec-14f24480ddcc) - Robby Winchester\n * [Red Team Guide - RED TEAM TRADECRAFT AND TTP GUIDANCE](https://redteam.guide/docs/Planning/red-team-tradecraft/) - Joe Vest and James Tubberville\n\n## Execution\n* [Red Teaming: Using Cutting-Edge Threat Simulation to Harden the Microsoft Enterprise Cloud](https://azure.microsoft.com/en-us/blog/red-teaming-using-cutting-edge-threat-simulation-to-harden-the-microsoft-enterprise-cloud/) - Scott Field\n* [GitLab - Red Team](https://about.gitlab.com/handbook/engineering/security/threat-management/red-team/) - Chris Moberly (Gitlab)\n* [Red Team Operations with Cobalt Strike (2019)](https://www.youtube.com/watch?v=q7VQeK533zI\u0026list=PL9HO6M_MU2nfQ4kHSCzAQMqxQxH47d1no) - Raphael Mudge\n* [Cobalt Strike Blog](https://www.cobaltstrike.com/blog/) - Raphael Mudge\n* [Dirty Red Team Tricks](https://www.youtube.com/watch?v=oclbbqvawQg) - Raphael Mudge and Rob Fuller\n* [Dirty Red Team Tricks 2.0](https://www.youtube.com/watch?v=6kKoJW5xvhg) - Raphael Mudge\n* [Force Multipliers for Red Team Operations](https://www.youtube.com/watch?v=G-JaHWaLmgc) - Raphael Mudge\n* [Flying a Cylon Raider](https://www.youtube.com/watch?v=26PedM_-zRo) - Raphael Mudge\n* [In Memory Evasion (2018)](https://www.youtube.com/watch?v=lz2ARbZ_5tE\u0026list=PL9HO6M_MU2nc5Q31qd2CwpZ8J4KFMhgnK\u0026ab_channel=RaphaelMudge) - Raphael Mudge\n* [Red Teaming Back and Forth 5ever](https://www.youtube.com/watch?v=FTiBwFJQg64) - Fuzzynop\n* [Bridging the gap - Lesson in adversarial tradecraft](https://www.youtube.com/watch?v=xHkRhRo3l8o) - harmj0y \u0026 enigma0x3\n* [Tradecraft Security Weekly](https://www.youtube.com/playlist?list=PLlPkFwQHxYE7Yi5jtcSyCCr8pXxP1OEkZ) - Security Weekly\n* [Red Team Infrastructure Wiki](https://github.com/bluscreenofjeff/Red-Team-Infrastructure-Wiki) - bluescreenofjeff\n* [Red Teaming Experiments](https://www.ired.team/) - spottheplanet\n* [Assumed Breach: The Evolution of Offensive Security Testing](https://trustedsec.com/blog/assumed-breach-the-evolution-of-offensive-security-testing) - Jason Lang (TrustedSec)\n\n## Breaches \u0026 Incidents\n* [Cost of a Data Breach Report](https://www.ibm.com/security/data-breach) - IBM\n* [Data Breach Investigation Report](https://www.verizon.com/business/resources/reports/dbir/) - Verizon\n* [What is the cost of a data breach?](https://www.csoonline.com/article/3434601/what-is-the-cost-of-a-data-breach.html) - Michael Hill (CSO online)\n* [89 Must-Know Data Breach Statistics 2022](https://www.varonis.com/blog/data-breach-statistics) - Rob Sobers (Varonis)\n* [Annual Data Breaches US 2005 - Current](https://www.statista.com/statistics/273550/data-breaches-recorded-in-the-united-states-by-number-of-breaches-and-records-exposed/) - Statista Research Department\n* [CYBERSECURITY INCIDENT TRACKER](https://www.board-cybersecurity.com/incidents/tracker/) - Board CyberSecurity\n  * [SEC FORM 8-K](https://www.sec.gov/answers/form8k.htm) - U.S. Securities and Exchange Commission\n* [Significant Cyber Incidents](https://www.csis.org/programs/strategic-technologies-program/significant-cyber-incidents) - CSIS\n* [Awesome Annual Security Reports](https://github.com/jacobdjwilson/awesome-annual-security-reports) - Jacob Wilson\n \n## Books\n* [Red Team Development and Operations: A practical guide](https://www.amazon.com/Red-Team-Development-Operations-practical/dp/B083XVG633) - Joe Vest and James Tubberville\n* [Red Team: How to Succeed by Thinking Like the Enemy](https://www.amazon.com/Red-Team-Succeed-Thinking-Enemy/dp/0465048943) - Micah Zenko\n* [Red Teaming - How Your Business Can Conquer the Competition by Challenging Everything](https://www.amazon.com/Red-Teaming/dp/1524759988) - Bryce G. Hoffman\n\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsneakerhax%2FTTPs","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsneakerhax%2FTTPs","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsneakerhax%2FTTPs/lists"}