assume-breach / Home-Grown-Red-TeamLinks
☆716Updated last year
Alternatives and similar repositories for Home-Grown-Red-Team
Users that are interested in Home-Grown-Red-Team are comparing it to the libraries listed below
Sorting:
- Useful C2 techniques and cheat sheets learned from engagements☆551Updated 3 weeks ago
- Killer is a super simple tool designed to bypass AV/EDR security tools using various evasive techniques.☆833Updated last year
- Materials for the workshop "Red Team Ops: Havoc 101"☆387Updated 11 months ago
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆527Updated 5 months ago
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆608Updated last year
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,295Updated last year
- Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes☆1,021Updated 2 years ago
- An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer☆729Updated 2 years ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,018Updated last year
- Protected Process Dumper Tool☆567Updated 2 years ago
- Kraken, a modular multi-language webshell coded by @secu_x11☆548Updated last year
- HookChain: A new perspective for Bypassing EDR Solutions☆565Updated 8 months ago
- Another Windows Local Privilege Escalation from Service Account to System☆916Updated 2 years ago
- Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.☆384Updated 2 years ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,197Updated last year
- ScareCrow - Payload creation framework designed around EDR bypass.☆339Updated 2 years ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆806Updated 6 months ago
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆561Updated 4 months ago
- Amsi Bypass payload that works on Windwos 11☆376Updated 2 years ago
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆758Updated 3 months ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆572Updated 3 years ago
- GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsof…☆626Updated 6 months ago
- Collection of UAC Bypass Techniques Weaponized as BOFs☆557Updated last year
- A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…☆567Updated last year
- ☆1,036Updated 7 months ago
- ☆470Updated 10 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆617Updated 4 months ago
- Automated Multi UAC BYPASS for win10|win11|win12-pre-release|ws2019|ws2022☆452Updated 11 months ago
- ↕️🤫 Stealth redirector for your red team operation security☆714Updated 2 months ago
- a tool to help operate in EDRs' blind spots☆761Updated 10 months ago