253 Open source projects that are alternatives of or similar to redpill

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

Load shellcode into a new process

Search for Unix binaries that can be exploited to bypass system security restrictions.

metasploit-framework 图形界面 / 图形化内网渗透工具

Network Pivoting Toolkit

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

linux post-exploitation framework made by linux user

备考 OSCP 的各种干货资料/渗透测试干货资料

DNS-Persist is a post-exploitation agent which uses DNS for command and control.

A cross-platform C2/teamserver supporting multiple transport protocols, written in Go.

A PowerShell module for automatic switching between light and dark themes

PoC script showing that MacOS leaves the wireless key in NVRAM, in plaintext and accessible to anyone.

Purple Team Exercise Framework

365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.

Python AV Evasion Tools

XENA is the managed remote administration platform for botnet creation & development powered by blockchain and machine learning. Aiming to provide an ecosystem which serves the bot herders. Favoring secrecy and resiliency over performance. It's micro-service oriented allowing for specialization and lower footprint. Join the community of the ulti…

Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes

My Presentations in PDF

Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

👻Behold3r -- 收集指定网站的子域名，并可监控指定网站的子域名更新情况，发送变更报告至指定邮箱

Execute ELF files without dropping them on disk

C++ Windows Reverse Shell - Universal DLL Hijack | SSL Encryption | Statically Linked

A Cobalt Strike Aggressor script to generate GadgetToJScript payloads

A little tool to play with Outlook

Automatic Reverse Shell Generator

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Pentesting/Bugbounty Dockerfiles.

PowerShell Cmdlets for Azure DevOps and Team Foundation Server

Scan for and exploit Consul agents

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

Offensive Reverse Shell (Cheat Sheet)

Steal user's password when running sudo for post-exploitation purposes

PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.

Cobalt Strike AggressorScripts For Red Team

Post-Exploitation 😎 module for Penetration Tester and Hackers.

PowerShell Module for OPNsense REST api

Little tool made in python to create payloads for Linux, Windows and OSX with unique handler

One stop place for exploiting Jira instances in your proximity

一款可以检测WEB蜜罐并阻断请求的Chrome插件，能够识别并阻断长亭D-sensor、墨安幻阵的部分溯源api

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

一个简单实用的FOFA客户端 By flashine

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV

🔎 Find usernames across social networks

Static Binary Deployer. Download and deploy *Nix utilities on a compromised system.

SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#

C# tool to discover low hanging fruits

Bifrost C2. Open-source post-exploitation using Discord API

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

A basic AIX enumeration guide for penetration testers/red teamers

A tool that allows you to search for vulnerable android devices across the world and exploit them.

Wordlists and passwords handcrafted with ♥

基于Threathunting-book基础上完善的狩猎视角红队handbook

Just another useless C2 occupying space in some HDD somewhere.

🌒 Shell command obfuscation to avoid detection systems

GoPhish Templates that I have retired and/or templates I've recreated.