𦫠| GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
β666Apr 27, 2025Updated last year
Alternatives and similar repositories for GoRedOps
Users that are interested in GoRedOps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONβ¦β850Dec 10, 2025Updated 5 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Frameworkβ648May 8, 2025Updated last year
- Golang weaponization for red teamers.β521Jan 17, 2024Updated 2 years ago
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR β¦β308Jul 31, 2024Updated last year
- Dump cookies and credentials directly from Chrome/Edge process memoryβ1,462Apr 9, 2026Updated last month
- AI Agents on DigitalOcean Gradient AI Platform β’ AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Shellcode loader generator with multiples featuresβ509Dec 31, 2024Updated last year
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-buiβ¦β238Feb 12, 2025Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β802Jan 26, 2026Updated 4 months ago
- RustRedOps is a repository for advanced Red Team techniques focused on Rustβ1,871Dec 29, 2025Updated 5 months ago
- Because AV evasion should be easy.β876Nov 28, 2024Updated last year
- Tool to remotely dump secrets from the Windows registryβ528Feb 27, 2026Updated 3 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.β449Dec 21, 2023Updated 2 years ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phanβ¦β285Sep 18, 2024Updated last year
- A BOF that runs unmanaged PEs inlineβ702Oct 23, 2024Updated last year
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- βοΈπ€« Stealth redirector for your red team operation securityβ1,079Jun 1, 2026Updated last week
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!β557May 9, 2025Updated last year
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layerβ551Feb 13, 2024Updated 2 years ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.β269Feb 22, 2025Updated last year
- Windows remote execution multitoolβ795Mar 25, 2026Updated 2 months ago
- A command and control framework written in rust.β389Apr 27, 2026Updated last month
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetryβ470Aug 2, 2024Updated last year
- β91May 15, 2024Updated 2 years ago
- HVNC for Cobalt Strikeβ1,331Dec 7, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactionsβ357Nov 19, 2024Updated last year
- A modern 32/64-bit position independent implant templateβ1,344Jun 1, 2026Updated last week
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).β594Mar 19, 2024Updated 2 years ago
- Stage 0β169Dec 18, 2024Updated last year
- Shellcode encryptor & obfuscator toolβ1,026May 23, 2026Updated 2 weeks ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β628Jan 2, 2025Updated last year
- Simulate the behavior of AV/EDR for malware development training.β566Feb 15, 2024Updated 2 years ago
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and rβ¦β387Apr 26, 2025Updated last year
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.β1,212Apr 16, 2025Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Collection of UAC Bypass Techniques Weaponized as BOFsβ631Feb 21, 2024Updated 2 years ago
- Reuse open handles to dynamically dump LSASS.β247Apr 4, 2024Updated 2 years ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.β523Updated this week
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)β196Feb 6, 2025Updated last year
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.β326Apr 12, 2024Updated 2 years ago
- Reflective DLL Injection Made Bellaβ249Jan 6, 2025Updated last year
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.β766Jan 26, 2025Updated last year