A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.
☆285Oct 8, 2025Updated 6 months ago
Alternatives and similar repositories for Cheatsheets
Users that are interested in Cheatsheets are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆325May 17, 2024Updated last year
- Certified Red Team Operator (CRTO) Cheatsheet and Checklist☆224Mar 16, 2024Updated 2 years ago
- Awesome Privilege Escalation☆145Oct 18, 2022Updated 3 years ago
- A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader☆46Sep 25, 2024Updated last year
- A Mythic Agent written in PIC C.☆203Feb 4, 2025Updated last year
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Enable or Disable TokenPrivilege(s)☆15May 17, 2024Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆542May 9, 2025Updated 11 months ago
- Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.☆170Jul 16, 2023Updated 2 years ago
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆587Jan 20, 2026Updated 2 months ago
- ☆60Dec 15, 2023Updated 2 years ago
- BOF with Synthetic Stackframe☆239Oct 30, 2025Updated 5 months ago
- Port of Cobalt Strike's Process Inject Kit☆193Dec 1, 2024Updated last year
- TartarusGate, Bypassing EDRs☆661Jan 25, 2022Updated 4 years ago
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆744Jul 22, 2023Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- RunPE implementation with multiple evasive techniques (1)☆383Sep 22, 2023Updated 2 years ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆444Dec 21, 2023Updated 2 years ago
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,376Oct 27, 2023Updated 2 years ago
- EDR Lab for Experimentation Purposes☆1,430Mar 1, 2026Updated last month
- A BOF that runs unmanaged PEs inline��☆689Oct 23, 2024Updated last year
- Because AV evasion should be easy.☆864Nov 28, 2024Updated last year
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆683Aug 15, 2025Updated 7 months ago
- Scripts for public use that we've randomly written, or have updated from other people's work.☆40Jun 25, 2024Updated last year
- ☆299Mar 31, 2022Updated 4 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Python3 tool to perform password spraying using RDP☆17Aug 14, 2023Updated 2 years ago
- A Mythic agent for Windows written in C☆161Mar 25, 2026Updated 2 weeks ago
- Remote operations commands implemented using Beacon Object Files☆1,146Mar 5, 2026Updated last month
- A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Inte…☆1,337Nov 12, 2025Updated 4 months ago
- msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…☆43Mar 13, 2025Updated last year
- A tool to help query AD via the LDAP protocol☆618Sep 25, 2024Updated last year
- .NET assembly loader with patchless AMSI and ETW bypass☆375Apr 19, 2023Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆378Mar 31, 2026Updated last week
- Collection of Notes and CheatSheets used for Red teaming Certs☆498Feb 13, 2023Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆514May 19, 2025Updated 10 months ago
- Lateral Movement Using DCOM and DLL Hijacking☆325Jun 18, 2023Updated 2 years ago
- HookChain: A new perspective for Bypassing EDR Solutions☆595Jan 5, 2025Updated last year
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆629Jun 25, 2024Updated last year
- Library of BOFs to interact with SQL servers☆231Dec 3, 2025Updated 4 months ago
- NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…☆234Feb 12, 2025Updated last year
- A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike☆195Oct 29, 2025Updated 5 months ago