Alternatives and similar repositories for Red-Terroir

Users that are interested in Red-Terroir are comparing it to the libraries listed below

• offsecginger / AES-PowerShellCode

  View on GitHub
  Standalone version of my AES Powershell payload for Cobalt Strike.
  ☆111Dec 27, 2019Updated 6 years ago
• JohnWoodman / stealthInjector

  View on GitHub
  Injects shellcode into remote processes using direct syscalls
  ☆77Dec 30, 2020Updated 5 years ago
• aahmad097 / ZoomPersistence

  View on GitHub
  Zoom Persistence Aggressor and Handler
  ☆55Mar 24, 2021Updated 4 years ago
• Cobalt-Strike / beacon_health_check

  View on GitHub
  This aggressor script uses a beacon's note field to indicate the health status of a beacon.
  ☆141Sep 29, 2021Updated 4 years ago
• ByteJunkies-co-uk / Metsubushi

  View on GitHub
  Generate droppers with encrypted payloads automatically.
  ☆54Nov 16, 2021Updated 4 years ago
• curtbraz / PhishingFromMS365API

  View on GitHub
  A Couple of Python Scripts Leveraging MS365's GraphAPI to Send Custom Calendar Events / Emails from Cheap O365 Accounts
  ☆18Apr 19, 2024Updated last year
• audibleblink / DoubleTap

  View on GitHub
  Password spraying on sites that require 2+ page loads and dynamic nonces
  ☆32Jun 23, 2019Updated 6 years ago
• TheCyberViking / CoverStory

  View on GitHub
  A cover story generator for people who Need Quick Covers On Operations
  ☆13May 17, 2020Updated 5 years ago
• curi0usJack / ansible-redelk

  View on GitHub
  Ansible playbooks for instrumenting a Red Team environment with RedElk
  ☆52Oct 6, 2020Updated 5 years ago
• cedowens / Mod_Rewrite_Automation

  View on GitHub
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆47Feb 17, 2021Updated 4 years ago
• martinsohn / Office-phish-templates

  View on GitHub
  Tricks the target into enabling content (macros) with fake messages. Once enabled, uses macros to reduce the risk of suspision from targe…
  ☆173Mar 12, 2025Updated 11 months ago
• shantanu561993 / SharpLoginPrompt

  View on GitHub
  ☆133Dec 19, 2020Updated 5 years ago
• mdsecactivebreach / Farmer

  View on GitHub
  ☆415Apr 28, 2021Updated 4 years ago
• mdsecactivebreach / TakeATest

  View on GitHub
  ☆19Mar 9, 2021Updated 4 years ago
• OffenseTeacher / NimSkrull

  View on GitHub
  NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…
  ☆13May 20, 2023Updated 2 years ago
• GKNSB / HTMLSmuggler

  View on GitHub
  Smuggle a file to a user's browser
  ☆20Apr 16, 2022Updated 3 years ago
• jfmaes / SharpZipRunner

  View on GitHub
  Executes position independent shellcode from an encrypted zip
  ☆304Dec 22, 2020Updated 5 years ago
• cube0x0 / LdapSignCheck

  View on GitHub
  Beacon Object File & C# project to check LDAP signing
  ☆199Aug 7, 2024Updated last year
• invokethreatguy / AggressorCollection

  View on GitHub
  Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors
  ☆155Jan 7, 2019Updated 7 years ago
• Imanfeng / Telemetry

  View on GitHub
  ABUSING WINDOWS TELEMETRY FOR PERSISTENCE
  ☆140Jul 2, 2020Updated 5 years ago
• rvrsh3ll / NoMSBuild

  View on GitHub
  MSBuild without MSbuild.exe
  ☆135Dec 21, 2020Updated 5 years ago
• 0xS2V2 / marsform

  View on GitHub
  terraform deployment for red team
  ☆26Dec 13, 2022Updated 3 years ago
• its-a-feature / offensive_macos

  View on GitHub
  Tracking of offensive macOS tooling, blogs, and related helpful information
  ☆192Nov 18, 2024Updated last year
• rsmudge / unhook-bof

  View on GitHub
  Remove API hooks from a Beacon process.
  ☆283Sep 18, 2021Updated 4 years ago
• xorrior / raven

  View on GitHub
  CobaltStrike External C2 for Websockets
  ☆197Jul 16, 2019Updated 6 years ago
• aahmad097 / BadOutlook

  View on GitHub
  (kinda) Malicious Outlook Reader
  ☆138Mar 3, 2021Updated 4 years ago
• rvrsh3ll / SharpExcel4-DCOM

  View on GitHub
  Port of Invoke-Excel4DCOM
  ☆104Oct 12, 2019Updated 6 years ago
• moloch-- / wire-transfer

  View on GitHub
  Encode binary as English text over HTTP(s)
  ☆30Aug 25, 2023Updated 2 years ago
• danielwolfman / Invoke-WordThief

  View on GitHub
  This script runs multithreading module that connects to a remote TCP server, monitors active (opened) Microsoft Word documents (.doc,.doc…
  ☆33Jul 24, 2020Updated 5 years ago
• Raikia / SharpStat

  View on GitHub
  C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB to read and delete the file remotely
  ☆38Jan 3, 2020Updated 6 years ago
• Accenture / CLRvoyance

  View on GitHub
  Managed assembly shellcode generation
  ☆280Mar 19, 2021Updated 4 years ago
• NotMedic / SocksLauncher

  View on GitHub
  ☆14Oct 25, 2019Updated 6 years ago
• Flangvik / AzureC2Relay

  View on GitHub
  AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…
  ☆233Feb 15, 2021Updated 5 years ago
• rvrsh3ll / SharpFruit

  View on GitHub
  A C# penetration testing tool to discover low-haning web fruit via web requests.
  ☆91May 26, 2022Updated 3 years ago
• Mr-Un1k0d3r / PoisonHandler

  View on GitHub
  lateral movement techniques that can be used during red team exercises
  ☆273Jan 13, 2020Updated 6 years ago
• matterpreter / spotter

  View on GitHub
  Targeted Payload Execution
  ☆100Apr 9, 2020Updated 5 years ago
• optiv / Go365

  View on GitHub
  An Office365 User Attack Tool
  ☆645Mar 19, 2024Updated last year
• breakid / RedReaper

  View on GitHub
  This tool is designed to simplify and automate the extraction and organization of useful data from Cobalt Strike logs.
  ☆18Apr 24, 2019Updated 6 years ago
• Tw1sm / HTTPS-MalleableC2-Config

  View on GitHub
  Create Cobalt Strike malleable C2 profiles with HTTPS configs
  ☆18May 23, 2020Updated 5 years ago