Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Projects in Awesome Lists tagged with redteam

A curated list of projects in awesome lists tagged with redteam .

https://github.com/sherlock-project/sherlock

Hunt down social media accounts by username across social networks

cli hacktoberfest information-gathering linux macos osint python python3 reconnaissance redteam sherlock tools windows

Last synced: 02 Oct 2024

https://github.com/bettercap/bettercap

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

ble deauthentication-attack dot11 hacking hid mitm monitoring mousejack network-attacks password-sniffer pmkid proxy redteam redteaming rogue-ap security spoofing wifi wifi-security wpa2

Last synced: 29 Sep 2024

https://github.com/gtfobins/gtfobins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

binaries bind-shell blueteam bypass exfiltration gtfobins linux post-exploitation redteam reverse-shell unix

Last synced: 29 Sep 2024

https://github.com/GTFOBins/GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

binaries bind-shell blueteam bypass exfiltration gtfobins linux post-exploitation redteam reverse-shell unix

Last synced: 30 Jul 2024

https://github.com/samratashok/nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

activedirectory hacking infosec nishang penetration-testing powershell red-team redteam security

Last synced: 28 Sep 2024

https://github.com/LOLBAS-Project/LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

blueteam dfir living-off-the-land lolbins lolscripts purpleteam redteam

Last synced: 30 Jul 2024

https://github.com/lolbas-project/lolbas

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

blueteam dfir living-off-the-land lolbins lolscripts purpleteam redteam

Last synced: 01 Oct 2024

https://github.com/ffffffff0x/1earn

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

blueteam collection ctf hacking ics-security infosec linux-learning markdown-article pentest pentest-tool poc post-penetration redteam security security-tools study writeup

Last synced: 01 Oct 2024

https://github.com/madhuakula/kubernetes-goat

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

blueteam cloud-native cloud-security cloudsecurity container container-security devsecops docker hacking infrastructure k8s kubernetes kubernetes-goat kubernetes-security owasp pentesting redteam security vulnerable-app

Last synced: 27 Sep 2024

https://github.com/lcvvvv/kscan

Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。

brute-force bruteforce exploit fingerprint pentest red-team redteam scanner security webscan

Last synced: 26 Sep 2024

https://github.com/peiqi0/peiqi-wiki-book

面向网络安全从业者的知识文库🍃

0day 1day cve peiqi-wiki redteam vuln

Last synced: 30 Sep 2024

https://github.com/funnywolf/viper

Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台

attack attack-surface-management cobalt-strike docker metasploit-framework post-exploitation red-team-tools redteam viper

Last synced: 30 Sep 2024

https://github.com/t3l3machus/Villain

Villain is a high level stage 0/1 C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).

c2 cybersecurity hacking hacking-tool offensive-security open-source penetration-testing penetration-testing-tools pentest pentesting readteaming redteam redteam-tools

Last synced: 01 Aug 2024

https://github.com/FunnyWolf/Viper

Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台

attack attack-surface-management cobalt-strike docker metasploit-framework post-exploitation red-team-tools redteam viper

Last synced: 31 Jul 2024

https://github.com/PeiQi0/PeiQi-WIKI-Book

面向网络安全从业者的知识文库🍃

0day 1day cve peiqi-wiki redteam vuln

Last synced: 01 Aug 2024

https://github.com/snooppr/snoop

Snoop — инструмент разведки на основе открытых данных (OSINT world)

blueteam ctf geo geocoder infosec ip nickname osint parser pentest police redteam scanner scraping security termux username username-checker username-search web-scraping

Last synced: 01 Oct 2024

https://github.com/wgpsec/ENScan_GO

一款基于各大企业信息API的工具,解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。

app icp redteam redteam-tools

Last synced: 01 Aug 2024

https://github.com/jonaslejon/malicious-pdf

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

bugbounty bugbounty-tool pdf pdf-generation penetration-test penetration-testing penetrationtesting pentesting pentesting-tools python redteam redteaming scanner

Last synced: 30 Sep 2024

https://github.com/opsdisk/the_cyber_plumbers_handbook

Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.

blueteam kali lateral-movement oscp penetration-testing pivoting proxychains redteam socks5 ssh tunneling

Last synced: 30 Sep 2024

https://github.com/mgeeky/penetration-testing-tools

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

cheatsheets exploit hacking networks penetration penetration-testing pentesting red-teaming redteam scripts security social-engineering testing tools

Last synced: 30 Sep 2024

https://github.com/mgeeky/Penetration-Testing-Tools

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

cheatsheets exploit hacking networks penetration penetration-testing pentesting red-teaming redteam scripts security social-engineering testing tools

Last synced: 01 Aug 2024

https://github.com/r0eXpeR/redteam_vul

红队作战中比较常遇到的一些重点系统漏洞整理。

hacking redteam security

Last synced: 02 Aug 2024

https://github.com/matro7sh/bypassav

This map lists the essential techniques to bypass anti-virus and EDR

av bypass edr markdown mindmap pentest redteam

Last synced: 26 Sep 2024

https://github.com/CMEPW/BypassAV

This map lists the essential techniques to bypass anti-virus and EDR

av bypass edr markdown mindmap pentest redteam

Last synced: 06 Aug 2024

https://github.com/matro7sh/BypassAV

This map lists the essential techniques to bypass anti-virus and EDR

av bypass edr markdown mindmap pentest redteam

Last synced: 01 Aug 2024

https://github.com/gloxec/crossc2

generate CobaltStrike's cross-platform payload

android cobalt-strike cross-platform ios linux macos redteam

Last synced: 26 Sep 2024

https://github.com/tr0uble-maker/poc-bomber

利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点

cve exp getshell poc poc-bomber rce redteam vulnerability-scanner

Last synced: 01 Oct 2024

https://github.com/gloxec/CrossC2

generate CobaltStrike's cross-platform payload

android cobalt-strike cross-platform ios linux macos redteam

Last synced: 01 Aug 2024

https://github.com/sevagas/macro_pack

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

macros meterpreter msoffice obfuscation pentest redteam social-engineering vba

Last synced: 30 Sep 2024

https://github.com/tr0uble-mAker/POC-bomber

利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点

cve exp getshell poc poc-bomber rce redteam vulnerability-scanner

Last synced: 04 Aug 2024

https://github.com/nicocha30/ligolo-ng

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

golang offensive-security pentest-tool pentesting pivoting post-exploitation redteam tunneling

Last synced: 26 Sep 2024

https://github.com/hisxo/gitgraber

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

bugbounty leaks monitor osint realtime redteam security-automation security-tools

Last synced: 30 Sep 2024

https://github.com/zhzyker/dismap

Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点

cybersecurity detection fingerprint fingerprint-scanner golang-tools identification pentest-tool pentest-tools redteam redteam-tools security security-scan security-tools webscan

Last synced: 30 Sep 2024

https://github.com/kgretzky/pwndrop

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

file-manager file-sharing http-server payloads redteam self-hosted webdav-server

Last synced: 30 Sep 2024

https://github.com/hisxo/gitGraber

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

bugbounty leaks monitor osint realtime redteam security-automation security-tools

Last synced: 01 Aug 2024

https://github.com/Dliv3/Venom

Venom - A Multi-hop Proxy for Penetration Testers

ctf golang pentest-tool pentesting port-forward port-reuse proxy redteam security socks5 ssh-tunnel tunnel venom

Last synced: 01 Aug 2024

https://github.com/dliv3/venom

Venom - A Multi-hop Proxy for Penetration Testers

ctf golang pentest-tool pentesting port-forward port-reuse proxy redteam security socks5 ssh-tunnel tunnel venom

Last synced: 26 Sep 2024

https://github.com/ssl/ezxss

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

alert blind blind-xss bug bugbounty easy easy-to-use payload penetration-testing php redteam redteaming test xss xss-attacks xss-detection xss-exploitation xss-injection xss-scanner xss-vulnerability

Last synced: 30 Sep 2024

https://github.com/ssl/ezXSS

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

alert blind blind-xss bug bugbounty easy easy-to-use payload penetration-testing php redteam redteaming test xss xss-attacks xss-detection xss-exploitation xss-injection xss-scanner xss-vulnerability

Last synced: 01 Aug 2024

https://github.com/phra/pezor

Open-Source Shellcode & PE Packer

antivirus-evasion hacktoberfest redteam shellcode

Last synced: 30 Sep 2024

https://github.com/api0cradle/UltimateAppLockerByPassList

The goal of this repository is to document the most common techniques to bypass AppLocker.

applocker awl blueteam bypass purpleteam redteam rules

Last synced: 01 Aug 2024

https://github.com/api0cradle/ultimateapplockerbypasslist

The goal of this repository is to document the most common techniques to bypass AppLocker.

applocker awl blueteam bypass purpleteam redteam rules

Last synced: 30 Sep 2024

https://github.com/nettitude/poshc2

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

c2 csharp nettitude payloads poshc2 poshc2-installation powershell proxy-aware python3 redteam

Last synced: 27 Sep 2024

https://github.com/zer0yu/cybersecurityrss

CyberSecurityRSS: A collection of cybersecurity rss to make you better!

cyberspace-security knowledgebase redteam rss rss-subscription security websecurity

Last synced: 30 Sep 2024

https://github.com/phra/PEzor

Open-Source Shellcode & PE Packer

antivirus-evasion hacktoberfest redteam shellcode

Last synced: 04 Aug 2024

https://github.com/idov31/nidhogg

Nidhogg is an all-in-one simple to use windows kernel rootkit.

cpp cyber-security cybersecurity driver infosec kernel red-team redteam rootkit windows windows-rootkits

Last synced: 30 Sep 2024

https://github.com/nettitude/PoshC2

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

c2 csharp nettitude payloads poshc2 poshc2-installation powershell proxy-aware python3 redteam

Last synced: 31 Jul 2024

https://github.com/zer0yu/CyberSecurityRSS

CyberSecurityRSS: A collection of cybersecurity rss to make you better!

cyberspace-security knowledgebase redteam rss rss-subscription security websecurity

Last synced: 04 Aug 2024

https://github.com/api0cradle/lolbas

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

blueteam dfir living-off-the-land lolbins lolscripts purpleteam redteam

Last synced: 01 Aug 2024

https://github.com/api0cradle/LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

blueteam dfir living-off-the-land lolbins lolscripts purpleteam redteam

Last synced: 02 Aug 2024

https://github.com/wgpsec/fofa_viewer

A simple FOFA client written in JavaFX. Made by WgpSec, Maintained by f1ashine.

cybersecurity fofa fofa-api fofa-search redteam security-tools

Last synced: 30 Sep 2024

https://github.com/edoardottt/cariddi

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

bugbounty crawler crawling endpoint-discovery endpoints go golang hacktoberfest infosec osint penetration-testing pentesting recon reconnaissance redteam scraper secret-keys secrets-detection security security-tools

Last synced: 30 Sep 2024

https://github.com/veo/vscan

开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)

0day brute fingerprint fuzzing portscan redteam security

Last synced: 01 Oct 2024

https://github.com/xiecat/goblin

一款适用于红蓝对抗中的仿真钓鱼系统

blueteam cybersecurity goblin golang-tools honeypots phishing redteam redteam-tools security security-tools

Last synced: 26 Sep 2024

https://github.com/WADComs/WADComs.github.io

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

blueteam cheatsheet commands enumeration exploitation persistence privilege-escalation redteam wadcoms windows

Last synced: 01 Aug 2024

https://github.com/wadcoms/wadcoms.github.io

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

blueteam cheatsheet commands enumeration exploitation persistence privilege-escalation redteam wadcoms windows

Last synced: 30 Sep 2024

https://github.com/mufeedvh/moonwalk

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

cve exploit exploitation infosec infosectools linux privilege-escalation red-teaming redteam redteam-tools security security-tools

Last synced: 30 Sep 2024

https://github.com/skyw4tch3r/rootkits-list-download

This is the list of all rootkits found so far on github and other sites.

offensive-scripts redteam rootkit rootkits

Last synced: 30 Sep 2024

https://github.com/d30sa1/rootkits-list-download

This is the list of all rootkits found so far on github and other sites.

offensive-scripts redteam rootkit rootkits

Last synced: 01 Aug 2024

https://github.com/boku7/bokuloader

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

advsim boku cobaltstrike redteam reflectiveloader

Last synced: 26 Sep 2024

https://github.com/piaolin/detectdee

DetectDee: Hunt down social media accounts by username, email or phone across social networks.

collision-detection credi golang linux macos osint redteam soical-enginering-attack windows

Last synced: 25 Sep 2024

https://github.com/boku7/BokuLoader

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

advsim boku cobaltstrike redteam reflectiveloader

Last synced: 04 Aug 2024

https://github.com/piaolin/DetectDee

DetectDee: Hunt down social media accounts by username, email or phone across social networks.

collision-detection credi golang linux macos osint redteam soical-enginering-attack windows

Last synced: 10 Sep 2024

https://github.com/mvelazc0/defcon27_csharp_workshop

Writing custom backdoor payloads with C# - Defcon 27 Workshop

csharp payloads redteam

Last synced: 30 Sep 2024

https://github.com/joaoviictorti/RustRedOps

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

hacking malware malware-development offensive-security redteam rust windows

Last synced: 01 Aug 2024

https://github.com/WyAtu/Perun

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

pentest-tool pentesting redteam scanner security security-tool vulnerability-scanners

Last synced: 04 Aug 2024

https://github.com/wyatu/perun

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

pentest-tool pentesting redteam scanner security security-tool vulnerability-scanners

Last synced: 01 Aug 2024

https://github.com/blackarrowsec/redteam-research

Collection of PoC and offensive techniques used by the BlackArrow Red Team

redteam research

Last synced: 30 Sep 2024

https://github.com/megamansec/ssh-snake

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

bash cybersecurity exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation redteam scanner security security-tools shell ssh ssh-hacking vulnerability-scanner worm

Last synced: 30 Sep 2024

https://github.com/MegaManSec/SSH-Snake

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

bash cybersecurity exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation redteam scanner security security-tools shell ssh ssh-hacking vulnerability-scanner worm

Last synced: 01 Aug 2024