api0cradle / RedTeamScriptsLinks
Just some random Red Team Scripts that can be useful
☆152Updated last year
Alternatives and similar repositories for RedTeamScripts
Users that are interested in RedTeamScripts are comparing it to the libraries listed below
Sorting:
- ☆119Updated 6 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆139Updated last year
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆130Updated 9 months ago
- Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"☆145Updated last year
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆177Updated 5 months ago
- Cortex XDR Config Extractor☆135Updated 2 years ago
- Collection of random RedTeam scripts.☆207Updated last year
- PowerShell Reverse Shell☆79Updated 2 years ago
- A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).☆93Updated 2 years ago
- ☆160Updated last year
- ☆71Updated 7 months ago
- Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querie…☆80Updated 2 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆175Updated 2 years ago
- Utilities for obfuscating shellcode☆94Updated last month
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆112Updated 3 months ago
- ☆222Updated 2 years ago
- Bypass AMSI By Dividing files into multiple smaller files☆46Updated 2 years ago
- linikatz is a tool to attack AD on UNIX☆147Updated 2 years ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆209Updated last year
- Two in one, patch lifetime powershell console, no more etw and amsi!☆96Updated 5 months ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆82Updated last year
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆197Updated last year
- A Python POC for CRED1 over SOCKS5☆158Updated last year
- pysnaffler☆104Updated 2 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- PowerShell runner for executing malicious payloads in order to bypass Windows Defender.☆74Updated 3 years ago
- Inject RDPThief into memory with PowerShell.☆65Updated 9 months ago
- Bounces when a fish bites - Evilginx database monitoring with exfiltration automation☆181Updated last year
- ☆92Updated 9 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆207Updated last year