Certified Red Team Operator (CRTO) Cheatsheet and Checklist
☆247Mar 16, 2024Updated 2 years ago
Alternatives and similar repositories for CRTO-Notes
Users that are interested in CRTO-Notes are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Certified Red Team Operator☆466Apr 17, 2022Updated 4 years ago
- Collection of Notes and CheatSheets used for Red teaming Certs☆502Feb 13, 2023Updated 3 years ago
- A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.☆336May 9, 2026Updated last month
- Determine if the WebClient Service (WebDAV) is running on a remote system☆147Mar 9, 2024Updated 2 years ago
- Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.☆177Jul 16, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A collection of Cobalt Strike Aggressor scripts.☆114Jan 3, 2022Updated 4 years ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆328May 17, 2024Updated 2 years ago
- Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing☆419Jun 15, 2023Updated 3 years ago
- Used to get NTLMv2 Hashes from SMB☆27Oct 24, 2024Updated last year
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated last year
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆864Dec 2, 2023Updated 2 years ago
- ☆159Apr 4, 2025Updated last year
- Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …☆70Jun 12, 2026Updated 3 weeks ago
- Our repo for crushing through RTO course & labs.☆38Sep 12, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Azure AD cheatsheet for the CARTP course☆159May 5, 2022Updated 4 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆644Mar 2, 2026Updated 4 months ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,531Mar 17, 2026Updated 3 months ago
- Collection of remote authentication triggers in C#☆535May 15, 2024Updated 2 years ago
- Powerview on steroids☆962Jun 9, 2026Updated 3 weeks ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆452Dec 21, 2023Updated 2 years ago
- ☆313Mar 31, 2022Updated 4 years ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆32May 30, 2024Updated 2 years ago
- ☆450May 25, 2026Updated last month
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆19Jun 26, 2025Updated last year
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆127Jun 22, 2020Updated 6 years ago
- PEN-300 collection to help you on your exam.☆718Feb 25, 2026Updated 4 months ago
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆579Jun 3, 2025Updated last year
- Sleep obfuscation in golang based on ekko☆14Jan 16, 2024Updated 2 years ago
- Notes for the CRTO exam☆10May 22, 2022Updated 4 years ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,449Jul 27, 2025Updated 11 months ago
- Because AV evasion should be easy.☆886Nov 28, 2024Updated last year
- Easy peasy file uploads☆37Jun 18, 2026Updated 2 weeks ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- SharpUp is a C# port of various PowerUp functionality.☆1,510Feb 14, 2024Updated 2 years ago
- ☆37May 31, 2023Updated 3 years ago
- Various Cobalt Strike BOFs☆776Oct 16, 2022Updated 3 years ago
- Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.☆401Jun 25, 2026Updated last week
- Process hollowing injection technique for Red Team operations☆18Sep 18, 2023Updated 2 years ago
- Direct syscalls Injection to bypass AV/EDR☆11May 18, 2024Updated 2 years ago
- OSEP - Offsec Expert Professional☆21Jun 23, 2024Updated 2 years ago