Top 98 red-team open source projects

Wiki to collect Red Team infrastructure hardening resources

Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely

Rubyfu, where Ruby goes evil!

Automated Adversary Emulation Platform

DART is a test documentation tool created by the Lockheed Martin Red Team to document and report on penetration tests, especially in isolated network environments.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Covenant is a collaborative .NET C2 framework for red teamers.

easy-to-use payload hosting

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Detecting ATT&CK techniques & tactics for Linux

The all-in-one Red Team extension for Web Pentester 🛠

The GitHub of Adversary Emulation Plans in JSON. Share SCYTHE threats with the community. #ThreatThursday adversary emulation plans are shared here.

Monitoring your Slack workspaces for sensitive information

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

A collection of useful scripts for Cobalt Strike

Monitoring GitLab for sensitive data shared publicly

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Go-deliver is a payload delivery tool coded in Go.

Adversary Simulation Framework

The Collective. A repo for a collection of red-team projects found mostly on Github.

🔪 Leak git repositories from misconfigured websites

A post exploitation framework designed to operate covertly on heavily monitored environments

Fast browser-based network discovery module

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Empire HTTP(S) C2 redirector setup script

Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

Homemade Pwnbox 🚀 / Rogue AP 📡 based on Raspberry Pi — WiFi Hacking Cheatsheets + MindMap 💡

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

The Shadow Attack Framework

🔨 A modern multiple reverse shell sessions manager wrote in go

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

C2/post-exploitation framework

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Aggressor scripts for use with Cobalt Strike 3.0+

Remote Administration Tool for Windows

A front-end JavaScript toolkit for creating DNS rebinding attacks.

DNS Rebinding Exploitation Framework

DeimosC2 is a Golang command and control framework for post-exploitation.

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

ParadoxiaRat : Native Windows Remote access Tool.

The SpecterOps project management and reporting engine

A Golang implant that uses Slack as a command and control server

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Python 3.5+ DNS asynchronous brute force utility

(l)user hunter using WinAPI calls only

An Android app that lets you use your access control card cloning devices in the field.

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Aggressor Script, Kits, Malleable C2 Profiles, External C2 and so on

A bash script for recon and DOS attacks

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

This repo will contain some basic pentest/RT commands.

Malleable C2 profiles for Cobalt Strike

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Linux Rootkits (4.x Kernel)