Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/0xsyr0/red-team-playbooks

This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.
https://github.com/0xsyr0/red-team-playbooks

offensive-methodology offensive-security penetration-testing playbook redteam ttp

Last synced: about 1 month ago
JSON representation

This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.

Awesome Lists containing this project

README 

        


  




# Red Team Playbooks



![GitHub commit activity (branch)](https://img.shields.io/github/commit-activity/m/0xsyr0/Red-Team-Playbooks) ![GitHub contributors](https://img.shields.io/github/contributors/0xsyr0/Red-Team-Playbooks)



> [!NOTE]

> I am currently in the process of moving the notes to GitBook which takes quite some time and after that, I am going to rework and finalize version 1.0 of the playbooks.

> Stay curious!



This repository contains cutting-edge open-source tools, techniques and procedures that will help you during your Red Team engagements.



I tried as good as I can to all resources I used in this projects. If I used code or other resources from you and you are not yet listed in the shoutout box below, feel free to reach out to me and I will add you asap.



## Table of Contents



- [Kickoff](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/Kickoff/Kickoff.md)

- [Operations](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/Operations/Operations.md)

- [Infrastructure](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/Infrastructure/Infrastructure.md)

- [1 Reconnaissance](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/1-Reconnaissance/1-Reconnaissance.md)

	- [1.1 Scanning and Enumeration](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/1-Reconnaissance/1.1-Scanning-and-Enumeration.md)

- [2 Weaponization](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/2-Weaponization/2-Weaponization.md)

	- [2.1 Initial Access](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/2-Weaponization/2.1-Initial-Access.md)

- [3 Delivery](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/3-Delivery/3-Delivery.md)

- [4 Exploitation](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/4-Exploitation/4-Exploitation.md)

	- [4.1 Defense Evasion](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/4-Exploitation/4.1-Defense-Evasion.md)

	- [4.2 Credential Dumping](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/4-Exploitation/4.2-Credential-Dumping.md)

	- [4.3 Privilege Escalation](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/4-Exploitation/4.3-Privilege-Escalation.md)

	- [4.4 Lateral Movement](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/4-Exploitation/4.4-Lateral-Movement.md)

- [5 Installation](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/5-Installation/5-Installation.md)

	- [5.1 Persistence](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/5-Installation/5.1-Persistence.md)

	- [5.2 Situational Awareness](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/5-Installation/5.2-Situational-Awareness.md)

- [6 Command-and-Control](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/6-Command-and-Control/6-Command-and-Control.md)

- [7 Actions-on-Objective](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/7-Actions-on-Objective/7-Actions-on-Objective.md)

	- [7.1 Post Exploitation](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/7-Actions-on-Objective/7.1-Post-Exploitation.md)

	- [7.2 Exfiltration](https://github.com/0xsyr0/Red-Team-Playbooks/blob/master/7-Actions-on-Objective/7.2-Exfiltration.md)



## Books I used for the playbooks



- Red Team Development and Operations by Joe Vest & James Tubberville

- RTFM by Ben Clark

- RTFMv2 by Ben Clark & Nick Downer

- PTFM by Tim Bryant

- Internal Security Assessment: Field Guide by Paul Seekamp (awesome person!)

- Cybersecurity Attacks - Red Team Strategies by Johann Rehberger



## Special thanks and a huge shoutout to the following people



[IppSec](https://twitter.com/ippsec), [0xdf](https://twitter.com/0xdf_), [xct](https://twitter.com/xct_de), [John Hammond](https://twitter.com/_JohnHammond), [Alh4zr3d](https://twitter.com/Alh4zr3d), [securibee](https://twitter.com/securibee), [Paul Seekamp](https://twitter.com/nullenc0de), [Vickie Li](https://twitter.com/vickieli7), [James Kettle](https://twitter.com/albinowax), [NahamSec](https://twitter.com/NahamSec), [Jason Haddix](https://twitter.com/Jhaddix), [STÖK](https://twitter.com/stokfredrik), [carlospolop](https://twitter.com/hacktricks_live), [Swissky](https://twitter.com/pentest_swissky), [snovvcrash](https://twitter.com/snovvcrash), [RastaMouse](https://twitter.com/_RastaMouse), [bigb0sss](https://github.com/bigb0sss), [g0tmi1k](https://twitter.com/g0tmi1k), [mr.d0x](https://twitter.com/mrd0x), [gentilkiwi](https://twitter.com/gentilkiwi), [byt3bl33d3r](https://twitter.com/byt3bl33d3r), [cube0x0](https://twitter.com/cube0x0), [HarmJ0y](https://twitter.com/harmj0y), [S3cur3Th1sSh1t](https://twitter.com/ShitSecure), [PinkDraconian](https://twitter.com/PinkDraconian), [PwnFunction](https://twitter.com/PwnFunction), [christophetd](https://twitter.com/christophetd) just to name a few and all the people behind these awesome repositories I referenced in this collection!



Thank you all for your hard work, support and inspiration since the start of my hacking journey!