Read-Teaming-TTPs is a comprehensive repository containing cybersecurity resources specifically designed for red team operations and offensive security practices. The repository includes cheatsheets that provide quick reference materials for commonly used tools and techniques in red teaming scenarios. It contains detailed notes covering various cybersecurity domains including cloud security, industrial control systems (ICS), Linux environments, Mac OSX systems, threat intelligence, web applications, and Windows platforms. The collection features automation scripts designed to improve task efficiency and streamline red team operations. Additionally, it provides an extensive compilation of free resources and platforms for practicing cybersecurity skills, including capture the flag (CTF) challenges, penetration testing environments, and ethical hacking platforms. The repository serves as a centralized knowledge base for red team professionals and security practitioners looking to enhance their offensive security capabilities across multiple technology domains and operating systems.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
PyBOF is a Python library that enables in-memory loading and execution of Beacon Object Files (BOFs) with support for argument passing and function targeting.
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
Parrot Security OS is a comprehensive, secure, and customizable operating system for cybersecurity professionals, offering over 600+ tools and utilities for red and blue team operations.
BeEF is a specialized penetration testing tool for exploiting web browser vulnerabilities to assess security.
SauronEye helps in identifying files containing sensitive data such as passwords through targeted directory searches.
AHHHZURE is an automated deployment script that creates vulnerable Azure cloud lab environments for offensive security training and cloud penetration testing practice.
A digital archive of the internet, allowing users to capture and browse archived web pages.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.