𦫠| GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
β661Apr 27, 2025Updated last year
Alternatives and similar repositories for GoRedOps
Users that are interested in GoRedOps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONβ¦β850Dec 10, 2025Updated 4 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Frameworkβ639May 8, 2025Updated 11 months ago
- Golang weaponization for red teamers.β519Jan 17, 2024Updated 2 years ago
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR β¦β303Jul 31, 2024Updated last year
- Dump cookies and credentials directly from Chrome/Edge process memoryβ1,437Apr 9, 2026Updated 2 weeks ago
- AI Agents on DigitalOcean Gradient AI Platform β’ AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Shellcode loader generator with multiples featuresβ510Dec 31, 2024Updated last year
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-buiβ¦β236Feb 12, 2025Updated last year
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird β¦β792Jan 26, 2026Updated 3 months ago
- RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rustβ1,866Dec 29, 2025Updated 4 months ago
- Because AV evasion should be easy.β867Nov 28, 2024Updated last year
- Tool to remotely dump secrets from the Windows registryβ527Feb 27, 2026Updated 2 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.β445Dec 21, 2023Updated 2 years ago
- Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phanβ¦β284Sep 18, 2024Updated last year
- βοΈπ€« Stealth redirector for your red team operation securityβ1,075Mar 1, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A BOF that runs unmanaged PEs inlineβ695Oct 23, 2024Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!β551May 9, 2025Updated 11 months ago
- A Go implementation of Cobalt Strike style BOF/COFF loaders.β270Feb 22, 2025Updated last year
- An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layerβ549Feb 13, 2024Updated 2 years ago
- Windows remote execution multitoolβ792Mar 25, 2026Updated last month
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetryβ465Aug 2, 2024Updated last year
- A command and control framework written in rust.β386Sep 4, 2025Updated 7 months ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactionsβ349Nov 19, 2024Updated last year
- β91May 15, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- HVNC for Cobalt Strikeβ1,322Dec 7, 2023Updated 2 years ago
- A collection of offensive Go packages inspired by different Go repositories.β256Nov 2, 2024Updated last year
- A modern 32/64-bit position independent implant templateβ1,319Mar 21, 2025Updated last year
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).β592Mar 19, 2024Updated 2 years ago
- Stage 0β169Dec 18, 2024Updated last year
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.β625Jan 2, 2025Updated last year
- Real fucking shellcode encryptor & obfuscator toolβ1,022Jan 7, 2026Updated 3 months ago
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and rβ¦β388Apr 26, 2025Updated last year
- SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.β1,205Apr 16, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Collection of UAC Bypass Techniques Weaponized as BOFsβ621Feb 21, 2024Updated 2 years ago
- Reuse open handles to dynamically dump LSASS.β247Apr 4, 2024Updated 2 years ago
- Simulate the behavior of AV/EDR for malware development training.β567Feb 15, 2024Updated 2 years ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.β515May 19, 2025Updated 11 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)β196Feb 6, 2025Updated last year
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.β328Apr 12, 2024Updated 2 years ago
- Library of BOFs to interact with SQL serversβ232Dec 3, 2025Updated 4 months ago