𦫠| GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
β666Apr 27, 2025Updated last year
Alternatives and similar repositories for GoRedOps
Users that are interested in GoRedOps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONβ¦β849Dec 10, 2025Updated 5 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Frameworkβ644May 8, 2025Updated last year
- Golang weaponization for red teamers.β519Jan 17, 2024Updated 2 years ago
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR β¦β306Jul 31, 2024Updated last year
- Dump cookies and credentials directly from Chrome/Edge process memoryβ1,454Apr 9, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Shellcode loader generator with multiples featuresβ513Dec 31, 2024Updated last year
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-buiβ¦β238Feb 12, 2025Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β799Jan 26, 2026Updated 3 months ago
- RustRedOps is a repository for advanced Red Team techniques focused on Rustβ1,874Dec 29, 2025Updated 4 months ago
- Because AV evasion should be easy.β872Nov 28, 2024Updated last year
- Tool to remotely dump secrets from the Windows registryβ529Feb 27, 2026Updated 2 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.β449Dec 21, 2023Updated 2 years ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phanβ¦β286Sep 18, 2024Updated last year
- A BOF that runs unmanaged PEs inlineβ700Oct 23, 2024Updated last year
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- βοΈπ€« Stealth redirector for your red team operation securityβ1,079Mar 1, 2026Updated 2 months ago
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!β555May 9, 2025Updated last year
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layerβ550Feb 13, 2024Updated 2 years ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.β270Feb 22, 2025Updated last year
- Windows remote execution multitoolβ795Mar 25, 2026Updated last month
- A command and control framework written in rust.β389Apr 27, 2026Updated 3 weeks ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetryβ471Aug 2, 2024Updated last year
- β91May 15, 2024Updated 2 years ago
- HVNC for Cobalt Strikeβ1,332Dec 7, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactionsβ356Nov 19, 2024Updated last year
- A collection of offensive Go packages inspired by different Go repositories.β258Nov 2, 2024Updated last year
- A modern 32/64-bit position independent implant templateβ1,333Mar 21, 2025Updated last year
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).β596Mar 19, 2024Updated 2 years ago
- Stage 0β169Dec 18, 2024Updated last year
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β627Jan 2, 2025Updated last year
- Real fucking shellcode encryptor & obfuscator toolβ1,026Jan 7, 2026Updated 4 months ago
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and rβ¦β388Apr 26, 2025Updated last year
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.β1,210Apr 16, 2025Updated last year
- GPUs on demand by Runpod - Special Offer Available β’ AdRun AI, ML, and HPC workloads on powerful cloud GPUsβwithout limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Collection of UAC Bypass Techniques Weaponized as BOFsβ627Feb 21, 2024Updated 2 years ago
- Reuse open handles to dynamically dump LSASS.β247Apr 4, 2024Updated 2 years ago
- Simulate the behavior of AV/EDR for malware development training.β567Feb 15, 2024Updated 2 years ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.β521May 19, 2025Updated last year
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)β197Feb 6, 2025Updated last year
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.β327Apr 12, 2024Updated 2 years ago
- Library of BOFs to interact with SQL serversβ236Dec 3, 2025Updated 5 months ago