180 Open source projects that are alternatives of or similar to Taie Redteam Os

The goal of this repository is to document the most common techniques to bypass AppLocker.

backdorOS is an in-memory OS written in Python 2.7 with a built-in in-memory filesystem, hooks for open() calls and imports, Python REPL etc.

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Venom - A Multi-hop Proxy for Penetration Testers

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Project to enumerate proxy configurations and generate shellcode from CobaltStrike

cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources

Disposable and resilient red team infrastructure with Terraform

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

DeepSea Phishing Gear

The Collective. A repo for a collection of red-team projects found mostly on Github.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

🚀 Fast Port Scanner 🚀

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

A collection of scripts I've written to help red and blue teams with malware persistence techniques.

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

Reproducible and extensible BloodHound playbooks

Webshell Manager

Utilities for MITRE™ ATT&CK

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.

Automation for internal Windows Penetrationtest / AD-Security

Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

New UAC bypass for Silent Cleanup for CobaltStrike

A set of recipes useful in pentesting and red teaming scenarios

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

Script collection to bypass Network Access Control (NAC, 802.1x)

A PowerShell module to deploy active directory decoy objects.

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

🔺 Red Team Hardware Toolkit 🔺

A collection of electronic hacker magazines carefully curated over the years from multiple sources

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Collection of quality safety articles. Awesome articles.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

备考 OSCP 的各种干货资料/渗透测试干货资料

做redteam时使用，修改自Ridter的https://github.com/Ridter/Intranet_Penetration_Tips

Extensible Red Team Framework

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Red Teaming Tactics and Techniques

This is the list of all rootkits found so far on github and other sites.

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Linux C2 框架demo，为期2周的”黑客编程马拉松“，从学习编程语言开始到实现一个demo的产物

记录自己编写、修改的部分工具

mosquito - Automating reconnaissance and brute force attacks

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Monitoring GitLab for sensitive data shared publicly

红队作战中比较常遇到的一些重点系统漏洞整理。

A list of payload and bypass lists for penetration testing and red team infrastructure build.

Passwords Recovery Tool

Monitoring your Slack workspaces for sensitive information

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.