RedefiningReality/Cheatsheets external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

RedefiningReality/Cheatsheets

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RedefiningReality/Cheatsheets)

Close

RedefiningReality / CheatsheetsView on GitHubMore

• External links
• Readme badge

A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.

☆283Oct 8, 2025Updated 5 months ago

Alternatives and similar repositories for Cheatsheets

Users that are interested in Cheatsheets are comparing it to the libraries listed below

• RedefiningReality / Cobalt-Strike

  View on GitHub
  Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
  ☆324May 17, 2024Updated last year
• An0nUD4Y / CRTO-Notes

  View on GitHub
  Certified Red Team Operator (CRTO) Cheatsheet and Checklist
  ☆219Mar 16, 2024Updated 2 years ago
• HadessCS / Awesome-Privilege-Escalation

  View on GitHub
  Awesome Privilege Escalation
  ☆145Oct 18, 2022Updated 3 years ago
• EricEsquivel / OpsLoader

  View on GitHub
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Sep 25, 2024Updated last year
• MythicAgents / Hannibal

  View on GitHub
  A Mythic Agent written in PIC C.
  ☆206Feb 4, 2025Updated last year
• voidvxvi / EnableAllTokenPrivs

  View on GitHub
  Enable or Disable TokenPrivilege(s)
  ☆15May 17, 2024Updated last year
• ricardojoserf / TrickDump

  View on GitHub
  Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
  ☆541May 9, 2025Updated 10 months ago
• 0xStarlight / CRTE-Notes

  View on GitHub
  Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.
  ☆166Jul 16, 2023Updated 2 years ago
• mertdas / PrivKit

  View on GitHub
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆574Jan 20, 2026Updated 2 months ago
• Bl4ckM1rror / PEAs

  View on GitHub
  ☆60Dec 15, 2023Updated 2 years ago
• NtDallas / Draugr

  View on GitHub
  BOF with Synthetic Stackframe
  ☆233Oct 30, 2025Updated 4 months ago
• rasta-mouse / process-inject-kit

  View on GitHub
  Port of Cobalt Strike's Process Inject Kit
  ☆192Dec 1, 2024Updated last year
• trickster0 / TartarusGate

  View on GitHub
  TartarusGate, Bypassing EDRs
  ☆657Jan 25, 2022Updated 4 years ago
• anthemtotheego / InlineExecute-Assembly

  View on GitHub
  InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…
  ☆742Jul 22, 2023Updated 2 years ago
• Maldev-Academy / MaldevAcademyLdr.1

  View on GitHub
  RunPE implementation with multiple evasive techniques (1)
  ☆383Sep 22, 2023Updated 2 years ago
• 0xEr3bus / PoolPartyBof

  View on GitHub
  A beacon object file implementation of PoolParty Process Injection Technique.
  ☆438Dec 21, 2023Updated 2 years ago
• outflanknl / C2-Tool-Collection

  View on GitHub
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,372Oct 27, 2023Updated 2 years ago
• Xacone / BestEdrOfTheMarket

  View on GitHub
  EDR Lab for Experimentation Purposes
  ☆1,422Mar 1, 2026Updated 2 weeks ago
• fortra / No-Consolation

  View on GitHub
  A BOF that runs unmanaged PEs inline
  ☆683Oct 23, 2024Updated last year
• gatariee / gocheck

  View on GitHub
  Because AV evasion should be easy.
  ☆862Nov 28, 2024Updated last year
• REDMED-X / OperatorsKit

  View on GitHub
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆680Aug 15, 2025Updated 7 months ago
• RedSiege / RandomScripts

  View on GitHub
  Scripts for public use that we've randomly written, or have updated from other people's work.
  ☆40Jun 25, 2024Updated last year
• Octoberfest7 / OSEP-Tools

  View on GitHub
  ☆299Mar 31, 2022Updated 3 years ago
• eversinc33 / RDPassSpray

  View on GitHub
  Python3 tool to perform password spraying using RDP
  ☆17Aug 14, 2023Updated 2 years ago
• MythicAgents / Xenon

  View on GitHub
  A Mythic agent for Windows written in C
  ☆162Updated this week
• trustedsec / CS-Remote-OPs-BOF

  View on GitHub
  Remote operations commands implemented using Beacon Object Files
  ☆1,139Mar 5, 2026Updated 2 weeks ago
• BlackSnufkin / LitterBox

  View on GitHub
  A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Inte…
  ☆1,325Nov 12, 2025Updated 4 months ago
• tomcarver16 / ADSearch

  View on GitHub
  A tool to help query AD via the LDAP protocol
  ☆614Sep 25, 2024Updated last year
• Phil0x4a / msuserstats

  View on GitHub
  msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…
  ☆43Mar 13, 2025Updated last year
• VoldeSec / PatchlessCLRLoader

  View on GitHub
  .NET assembly loader with patchless AMSI and ETW bypass
  ☆374Apr 19, 2023Updated 2 years ago
• coffeegist / bofhound

  View on GitHub
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆371Jan 29, 2026Updated last month
• 0xn1k5 / Red-Teaming

  View on GitHub
  Collection of Notes and CheatSheets used for Red teaming Certs
  ☆497Feb 13, 2023Updated 3 years ago
• WKL-Sec / Malleable-CS-Profiles

  View on GitHub
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆514May 19, 2025Updated 10 months ago
• helviojunior / hookchain

  View on GitHub
  HookChain: A new perspective for Bypassing EDR Solutions
  ☆594Jan 5, 2025Updated last year
• WKL-Sec / dcomhijack

  View on GitHub
  Lateral Movement Using DCOM and DLL Hijacking
  ☆324Jun 18, 2023Updated 2 years ago
• BlackSnufkin / NyxInvoke

  View on GitHub
  NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-bui…
  ☆234Feb 12, 2025Updated last year
• RedSiege / GraphStrike

  View on GitHub
  Cobalt Strike HTTPS beaconing over Microsoft Graph API
  ☆626Jun 25, 2024Updated last year
• Tw1sm / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆227Dec 3, 2025Updated 3 months ago
• rasta-mouse / Crystal-Loaders

  View on GitHub
  A small collection of Crystal Palace PIC loaders designed for use with Cobalt Strike
  ☆193Oct 29, 2025Updated 4 months ago