𦫠| GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
β669Apr 27, 2025Updated last year
Alternatives and similar repositories for GoRedOps
Users that are interested in GoRedOps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONβ¦β851Dec 10, 2025Updated 6 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Frameworkβ651May 8, 2025Updated last year
- Golang weaponization for red teamers.β524Jan 17, 2024Updated 2 years ago
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR β¦β309Jul 31, 2024Updated last year
- Dump cookies and credentials directly from Chrome/Edge process memoryβ1,469Apr 9, 2026Updated 2 months ago
- Simple, predictable pricing with DigitalOcean hosting β’ AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Shellcode loader generator with multiples featuresβ509Dec 31, 2024Updated last year
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-buiβ¦β238Feb 12, 2025Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β802Jan 26, 2026Updated 5 months ago
- Repository for advanced Red Team techniques focused on Rustβ1,884Dec 29, 2025Updated 5 months ago
- Because AV evasion should be easy.β881Nov 28, 2024Updated last year
- Tool to remotely dump secrets from the Windows registryβ530Jun 8, 2026Updated 2 weeks ago
- A beacon object file implementation of PoolParty Process Injection Technique.β451Dec 21, 2023Updated 2 years ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phanβ¦β285Sep 18, 2024Updated last year
- A BOF that runs unmanaged PEs inlineβ702Oct 23, 2024Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer β’ AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- βοΈπ€« Stealth redirector for your red team operation securityβ1,086Jun 1, 2026Updated 3 weeks ago
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!β557May 9, 2025Updated last year
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layerβ552Feb 13, 2024Updated 2 years ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.β272Feb 22, 2025Updated last year
- Windows remote execution multitoolβ797Mar 25, 2026Updated 3 months ago
- A command and control framework written in rust.β388Apr 27, 2026Updated 2 months ago
- β91May 15, 2024Updated 2 years ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetryβ475Aug 2, 2024Updated last year
- HVNC for Cobalt Strikeβ1,335Dec 7, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactionsβ360Nov 19, 2024Updated last year
- A collection of offensive Go packages inspired by different Go repositories.β258Nov 2, 2024Updated last year
- A modern 32/64-bit position independent implant templateβ1,350Jun 1, 2026Updated 3 weeks ago
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).β596Mar 19, 2024Updated 2 years ago
- Stage 0β170Dec 18, 2024Updated last year
- Shellcode encryptor & obfuscator toolβ1,027May 23, 2026Updated last month
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β626Jan 2, 2025Updated last year
- Simulate the behavior of AV/EDR for malware development training.β567Feb 15, 2024Updated 2 years ago
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and rβ¦β387Apr 26, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.β1,212Apr 16, 2025Updated last year
- Collection of UAC Bypass Techniques Weaponized as BOFsβ636Feb 21, 2024Updated 2 years ago
- Reuse open handles to dynamically dump LSASS.β247Apr 4, 2024Updated 2 years ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.β530Jun 12, 2026Updated 2 weeks ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)β196Feb 6, 2025Updated last year
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.β326Apr 12, 2024Updated 2 years ago
- Reflective DLL Injection Made Bellaβ249Jan 6, 2025Updated last year