𦫠| GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
β661Apr 27, 2025Updated 10 months ago
Alternatives and similar repositories for GoRedOps
Users that are interested in GoRedOps are comparing it to the libraries listed below
Sorting:
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driverβ294Apr 21, 2025Updated 10 months ago
- Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONβ¦β847Dec 10, 2025Updated 3 months ago
- Go Based Crypter That Can Bypass Any Kinds Of Antivirus Products, payload crypter supports over 4 programming languages.β60Apr 27, 2025Updated 10 months ago
- Malware development in Go, learn today, anti dynamic analysis & Static & sandboxes.β15Apr 21, 2025Updated 10 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Frameworkβ640May 8, 2025Updated 10 months ago
- Golang weaponization for red teamers.β518Jan 17, 2024Updated 2 years ago
- GolangStyle, best looking go library.β13Apr 21, 2025Updated 10 months ago
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR β¦β301Jul 31, 2024Updated last year
- π | RubyRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rubyβ10Apr 21, 2025Updated 10 months ago
- A Documentation for my module PS2BAT, it converts Powershell Scripts to Batchfile ones.β11Apr 21, 2025Updated 10 months ago
- Dump cookies and credentials directly from Chrome/Edge process memoryβ1,417Jan 19, 2026Updated last month
- Shellcode loader generator with multiples featuresβ508Dec 31, 2024Updated last year
- Ransomware written in go, encrypt - decrypt.β30Apr 27, 2025Updated 10 months ago
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-buiβ¦β233Feb 12, 2025Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β787Jan 26, 2026Updated last month
- RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rustβ1,841Dec 29, 2025Updated 2 months ago
- Because AV evasion should be easy.β862Nov 28, 2024Updated last year
- Tool to remotely dump secrets from the Windows registryβ526Feb 27, 2026Updated 2 weeks ago
- A beacon object file implementation of PoolParty Process Injection Technique.β436Dec 21, 2023Updated 2 years ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phanβ¦β283Sep 18, 2024Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!β541May 9, 2025Updated 10 months ago
- A BOF that runs unmanaged PEs inlineβ683Oct 23, 2024Updated last year
- βοΈπ€« Stealth redirector for your red team operation securityβ1,066Mar 1, 2026Updated 2 weeks ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.β267Feb 22, 2025Updated last year
- Windows remote execution multitoolβ785Mar 10, 2026Updated last week
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layerβ542Feb 13, 2024Updated 2 years ago
- A command and control framework written in rust.β386Sep 4, 2025Updated 6 months ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetryβ459Aug 2, 2024Updated last year
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactionsβ346Nov 19, 2024Updated last year
- HVNC for Cobalt Strikeβ1,304Dec 7, 2023Updated 2 years ago
- β91May 15, 2024Updated last year
- A collection of offensive Go packages inspired by different Go repositories.β256Nov 2, 2024Updated last year
- A modern 32/64-bit position independent implant templateβ1,306Mar 21, 2025Updated 11 months ago
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).β586Mar 19, 2024Updated last year
- Stage 0β169Dec 18, 2024Updated last year
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and rβ¦β385Apr 26, 2025Updated 10 months ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β618Jan 2, 2025Updated last year
- Real fucking shellcode encryptor & obfuscator toolβ1,012Jan 7, 2026Updated 2 months ago
- Collection of UAC Bypass Techniques Weaponized as BOFsβ611Feb 21, 2024Updated 2 years ago