Alternatives and similar repositories for RedFlags

Users that are interested in RedFlags are comparing it to the libraries listed below

• p0dalirius / CVE-2022-45771-Pwndoc-LFI-to-RCE
  Pwndoc local file inclusion to remote code execution of Node.js code on the server
  ☆47Updated last year
• j4k0m / really-good-cybersec
  A really good cybersec reading materials.
  ☆13Updated 3 years ago
• minispooner / red-team-playground
  Docker network containing many vulnerable targets for practicing Red Teaming concepts (initial access, priv esc, persistence, lateral, C2…
  ☆86Updated 2 years ago
• j4k0m / godkiller
  Vulnerabilities you my miss during a penetration testing.
  ☆97Updated last year
• rootshooter / oswe-prep-2022
  Offensive Security OSWE Prep 2022
  ☆76Updated 3 years ago
• p0dalirius / LFIDump
  A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.
  ☆77Updated last year
• jayesther / OSEP_OSED_TOOLS
  Tooling for the OffSec Experienced Pentester (OSEP) and OffSec Exploit Developer (OSED) course
  ☆27Updated last year
• ferreiraklet / icmp_reverse_shell
  ☆44Updated 3 years ago
• nuts7 / CVE-2023-27372
  SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…
  ☆67Updated last year
• 0xjbb / taskpwn
  Remote Task Scheduler Enumeration
  ☆13Updated last year
• ohmigod / pentestgod
  A collection of everything I learn while working as a pentester, doing certifications, bug bounty hunting or playing CTFs.
  ☆19Updated 2 months ago
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆46Updated 6 months ago
• securebinary / o365sprayer
  An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.
  ☆48Updated 3 years ago
• ejedev / web2shell
  Automate converting webshells into reverse shells.
  ☆72Updated last week
• 0xDEF1NE / subtrace
  ☆17Updated last year
• wlayzz / RopstenCtf
  RopstenCtf is an easy tool to interact with the ethereum ropsten network for ctf purpose and more.
  ☆17Updated 3 years ago
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆85Updated 3 years ago
• 0xJs / CRTE-Cheatsheet
  ☆39Updated 4 years ago
• 0xjbb / static-nmap
  Statically compiled nmap with scripting
  ☆13Updated 4 years ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆153Updated 2 years ago
• AD-Attacks / Active-Directory-Penetration-Testing
  ☆22Updated last year
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆71Updated 3 years ago
• hakivvi / CVE-2025-23369
  GitHub Entreprise Server SAML authentication bypass (CVE-2025-23369) exploit
  ☆38Updated 11 months ago
• abdoghazy2015 / ofbiz-CVE-2023-49070-RCE-POC
  ☆59Updated 2 years ago
• 0xJs / OSCP_cheatsheet
  ☆37Updated 4 years ago
• Marmeus / mad-hyperv
  Ansible + Vagrant + Hyper-V + Vulnerable AD 😎
  ☆91Updated last year
• W0rty / libcurl-crlf
  ☆13Updated 2 years ago
• Cyber-Guy1 / WCE
  This Python tool enables network node command and exfiltration while applying OPSEC to ensure the process is hidden by transmitting comma…
  ☆35Updated 2 years ago
• p0dalirius / TimeBasedLoginUserEnum
  A script to enumerate valid usernames based on the requests response times.
  ☆22Updated 3 years ago
• w0Tx / generate-ad-username
  Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...
  ☆26Updated last year