RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create advanced phishing & payload infras
☆227Mar 28, 2025Updated 11 months ago
Alternatives and similar repositories for Red-Infra-Craft
Users that are interested in Red-Infra-Craft are comparing it to the libraries listed below
Sorting:
- Azure Post Exploitation Framework☆244Oct 27, 2025Updated 4 months ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆323May 17, 2024Updated last year
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆18Mar 19, 2025Updated 11 months ago
- Your Skyfall Infrastructure Pack☆89Jan 25, 2026Updated last month
- Abusing Azure services over C2☆368Jan 20, 2026Updated last month
- Blog/Journal on how to backdoor VSCode extensions☆76Updated this week
- A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Inte…☆1,311Nov 12, 2025Updated 3 months ago
- Python implementation of GhostPack's Seatbelt situational awareness tool☆270Nov 12, 2024Updated last year
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆673Feb 17, 2026Updated last week
- C2 Infrastructure Automation☆119Jun 21, 2025Updated 8 months ago
- Mythic C2 wrapper for NimSyscallPacker☆25Mar 12, 2025Updated 11 months ago
- Docker container for running CobaltStrike 4.7 and above☆24Mar 20, 2025Updated 11 months ago
- A small executable to trick a user to authenticate using code matching MFA☆68Oct 6, 2023Updated 2 years ago
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆285Jun 8, 2023Updated 2 years ago
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆400Jul 23, 2025Updated 7 months ago
- ☆14Jul 26, 2025Updated 7 months ago
- A python script that automates a C2 Profile build☆48Dec 14, 2025Updated 2 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆214Oct 19, 2024Updated last year
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆592Jun 12, 2024Updated last year
- Azure DevOps Services Attack Toolkit☆314Mar 15, 2025Updated 11 months ago
- Adversary Emulation Framework☆130Jul 1, 2025Updated 7 months ago
- ☆235Oct 8, 2024Updated last year
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆672Aug 15, 2025Updated 6 months ago
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆137Apr 6, 2025Updated 10 months ago
- A PoC for Early Cascade process injection technique.☆211Jan 30, 2025Updated last year
- WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.☆149Jun 5, 2025Updated 8 months ago
- PowerShell Obfuscator☆231Aug 28, 2025Updated 5 months ago
- A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO☆236Aug 25, 2024Updated last year
- AV/EDR Lab environment setup references to help in Malware development☆424Feb 19, 2025Updated last year
- ☆17Jan 9, 2025Updated last year
- Ludus range for the Constructing Defense Lab☆102Updated this week
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆442Oct 1, 2025Updated 4 months ago
- A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints☆121Jul 11, 2025Updated 7 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆261Feb 21, 2025Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆537May 9, 2025Updated 9 months ago
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…☆382Apr 26, 2025Updated 10 months ago
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆256Jan 29, 2026Updated 3 weeks ago
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆381Jan 23, 2025Updated last year
- Generate and Manage KeyCredentialLinks☆246Jan 30, 2026Updated last month