Certified Red Team Operator (CRTO) Cheatsheet and Checklist
☆236Mar 16, 2024Updated 2 years ago
Alternatives and similar repositories for CRTO-Notes
Users that are interested in CRTO-Notes are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Certified Red Team Operator☆459Apr 17, 2022Updated 4 years ago
- A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.☆296May 9, 2026Updated 2 weeks ago
- Collection of Notes and CheatSheets used for Red teaming Certs☆497Feb 13, 2023Updated 3 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆147Mar 9, 2024Updated 2 years ago
- Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.☆175Jul 16, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A collection of Cobalt Strike Aggressor scripts.☆112Jan 3, 2022Updated 4 years ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆329May 17, 2024Updated 2 years ago
- Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing☆407Jun 15, 2023Updated 2 years ago
- Used to get NTLMv2 Hashes from SMB☆25Oct 24, 2024Updated last year
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated 10 months ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆856Dec 2, 2023Updated 2 years ago
- ☆158Apr 4, 2025Updated last year
- Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …☆64Updated this week
- Our repo for crushing through RTO course & labs.☆37Sep 12, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Azure AD cheatsheet for the CARTP course☆155May 5, 2022Updated 4 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆639Mar 2, 2026Updated 2 months ago
- Collection of remote authentication triggers in C#☆530May 15, 2024Updated 2 years ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,512Mar 17, 2026Updated 2 months ago
- Powerview on steroids☆942Updated this week
- A beacon object file implementation of PoolParty Process Injection Technique.☆449Dec 21, 2023Updated 2 years ago
- Havoc C2 profile generator☆110Mar 4, 2026Updated 2 months ago
- A tool to help query AD via the LDAP protocol☆631Sep 25, 2024Updated last year
- ☆306Mar 31, 2022Updated 4 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆32May 30, 2024Updated last year
- ☆441Mar 2, 2025Updated last year
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆19Jun 26, 2025Updated 10 months ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆126Jun 22, 2020Updated 5 years ago
- PEN-300 collection to help you on your exam.☆712Feb 25, 2026Updated 2 months ago
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆565Jun 3, 2025Updated 11 months ago
- Sleep obfuscation in golang based on ekko☆14Jan 16, 2024Updated 2 years ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,437Jul 27, 2025Updated 9 months ago
- SharpUp is a C# port of various PowerUp functionality.☆1,494Feb 14, 2024Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Because AV evasion should be easy.☆872Nov 28, 2024Updated last year
- Easy peasy file uploads☆35May 12, 2026Updated last week
- ☆37May 31, 2023Updated 2 years ago
- Various Cobalt Strike BOFs☆762Oct 16, 2022Updated 3 years ago
- Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.☆394Updated this week
- Just another Process Injection using Process Hollowing technique.☆18Sep 18, 2023Updated 2 years ago
- Direct syscalls Injection to bypass AV/EDR☆11May 18, 2024Updated 2 years ago