Red Team

Script for turning a Raspberry Pi into a Honey Pot Pi with various monitoring and logging capabilities.

RedWarden is a Cobalt Strike C2 reverse proxy that uses packet inspection and malleable profile correlation to evade detection by security controls during red team operations.

SILENTTRINITY is a Python-based, asynchronous C2 framework that uses .NET scripting languages for post-exploitation activities without relying on PowerShell.

WeirdAAL is an open-source framework that provides tools and libraries for simulating attacks and testing security vulnerabilities in AWS environments.

A Ruby script that scans networks for vulnerable third-party web applications and front-ends with known exploitable security flaws.

Pupy is an open-source, cross-platform C2 framework that provides remote access and control capabilities for compromised systems across Windows, Linux, OSX, and Android platforms.

An Azure Function that validates and relays Cobalt Strike beacon traffic based on Malleable C2 profile authentication.

TikiTorch is a process injection tool that executes code within the address space of other processes using various injection techniques.

PwnAuth is an open-source tool for generating and managing authentication tokens across multiple protocols, designed for penetration testing and red team exercises.

LeakIX is a red-team search engine that indexes mis-configurations and vulnerabilities online.

A proof-of-concept tool that generates Excel BIFF8 files with embedded 4.0 macros programmatically without requiring Microsoft Excel installation.

CrackMapExec (CME) - A tool for querying internal database for host and credential information in cybersecurity.

RedELK is a SIEM tool designed for red teams to monitor and receive alerts about blue team detection activities during penetration testing engagements.

A powerful tool for hiding the true location of your Teamserver, evading detection from Incident Response, redirecting users, blocking specific IP addresses, and managing Malleable C2 traffic in Red Team engagements.

A comprehensive repository of open-source security tools organized by attack phases for red team operations, adversary simulation, and threat hunting purposes.

Insights on Red Teaming for Pacific Rim CCDC 2016 competition, focusing on preparation, operations plan, and automation.

The official security guide for Red Hat Enterprise Linux 7, providing detailed information on securing the operating system.

A collaborative, multi-platform, red teaming framework for simulating attacks and testing defenses.

A framework for executing cloud attacker tactics, techniques, and procedures (TTPs) that can generate APIs, Sigma detection rules, and documentation from YAML-based definitions.

A payload creation framework designed to bypass Endpoint Detection and Response (EDR) systems.

A template-driven framework for creating custom evasion techniques to test Anti-Virus and EDR detection capabilities.

Sysreptor provides a customizable security reporting solution for penetration testers and red teamers.

Sysreptor offers a customizable reporting solution for penetration testers and red teamers to streamline their security assessments.

DNS spoofer tool for redirecting DNS lookup requests.