Certified Red Team Operator (CRTO) Cheatsheet and Checklist
☆241Mar 16, 2024Updated 2 years ago
Alternatives and similar repositories for CRTO-Notes
Users that are interested in CRTO-Notes are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Certified Red Team Operator☆463Apr 17, 2022Updated 4 years ago
- Collection of Notes and CheatSheets used for Red teaming Certs☆501Feb 13, 2023Updated 3 years ago
- A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.☆303May 9, 2026Updated last month
- Determine if the WebClient Service (WebDAV) is running on a remote system☆147Mar 9, 2024Updated 2 years ago
- Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.☆175Jul 16, 2023Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- A collection of Cobalt Strike Aggressor scripts.☆113Jan 3, 2022Updated 4 years ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆328May 17, 2024Updated 2 years ago
- Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing☆412Jun 15, 2023Updated 2 years ago
- Used to get NTLMv2 Hashes from SMB☆26Oct 24, 2024Updated last year
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated 11 months ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆863Dec 2, 2023Updated 2 years ago
- ☆158Apr 4, 2025Updated last year
- Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …☆67Updated this week
- Our repo for crushing through RTO course & labs.☆38Sep 12, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Azure AD cheatsheet for the CARTP course☆158May 5, 2022Updated 4 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆641Mar 2, 2026Updated 3 months ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,519Mar 17, 2026Updated 2 months ago
- Collection of remote authentication triggers in C#☆532May 15, 2024Updated 2 years ago
- Powerview on steroids☆948May 22, 2026Updated 3 weeks ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆451Dec 21, 2023Updated 2 years ago
- A tool to help query AD via the LDAP protocol☆632Sep 25, 2024Updated last year
- ☆309Mar 31, 2022Updated 4 years ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆32May 30, 2024Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆446May 25, 2026Updated 2 weeks ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆19Jun 26, 2025Updated 11 months ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆126Jun 22, 2020Updated 5 years ago
- PEN-300 collection to help you on your exam.☆711Feb 25, 2026Updated 3 months ago
- Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs☆573Jun 3, 2025Updated last year
- Sleep obfuscation in golang based on ekko☆14Jan 16, 2024Updated 2 years ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,440Jul 27, 2025Updated 10 months ago
- Because AV evasion should be easy.☆878Nov 28, 2024Updated last year
- SharpUp is a C# port of various PowerUp functionality.☆1,503Feb 14, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Easy peasy file uploads☆36May 12, 2026Updated last month
- ☆37May 31, 2023Updated 3 years ago
- Various Cobalt Strike BOFs☆773Oct 16, 2022Updated 3 years ago
- Conquest is a feature-rich and malleable command & control/post-exploitation framework developed in Nim.☆398Updated this week
- Just another Process Injection using Process Hollowing technique.☆18Sep 18, 2023Updated 2 years ago
- Direct syscalls Injection to bypass AV/EDR☆11May 18, 2024Updated 2 years ago
- OSEP - Offsec Expert Professional☆21Jun 23, 2024Updated last year