mgeeky/Penetration-Testing-Tools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mgeeky/Penetration-Testing-Tools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mgeeky/Penetration-Testing-Tools)

Close

mgeeky / Penetration-Testing-ToolsView on GitHubMore

• External links
• Readme badge

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

☆2,900Jun 27, 2023Updated 2 years ago

Alternatives and similar repositories for Penetration-Testing-Tools

Users that are interested in Penetration-Testing-Tools are comparing it to the libraries listed below

• S3cur3Th1sSh1t / WinPwn

  View on GitHub
  Automation for internal Windows Penetrationtest / AD-Security
  ☆3,644Aug 28, 2025Updated 6 months ago
• outflanknl / C2-Tool-Collection

  View on GitHub
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,370Oct 27, 2023Updated 2 years ago
• bigb0sss / RedTeam-OffensiveSecurity

  View on GitHub
  Tools & Interesting Things for RedTeam Ops
  ☆2,256Feb 10, 2026Updated 3 weeks ago
• infosecn1nja / Red-Teaming-Toolkit

  View on GitHub
  This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
  ☆10,158Sep 29, 2025Updated 5 months ago
• mgeeky / RedWarden

  View on GitHub
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆991Oct 7, 2022Updated 3 years ago
• optiv / ScareCrow

  View on GitHub
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,874Aug 18, 2023Updated 2 years ago
• mgeeky / PackMyPayload

  View on GitHub
  A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…
  ☆1,100Jun 10, 2024Updated last year
• mantvydasb / RedTeaming-Tactics-and-Techniques

  View on GitHub
  Red Teaming Tactics and Techniques
  ☆4,495Aug 22, 2024Updated last year
• sevagas / macro_pack

  View on GitHub
  macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other f…
  ☆2,300Aug 15, 2024Updated last year
• mgeeky / cobalt-arsenal

  View on GitHub
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,097Apr 19, 2023Updated 2 years ago
• S1ckB0y1337 / Active-Directory-Exploitation-Cheat-Sheet

  View on GitHub
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆6,498Jan 18, 2026Updated last month
• mgeeky / ProtectMyTooling

  View on GitHub
  Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts wa…
  ☆1,051Oct 14, 2025Updated 4 months ago
• S3cur3Th1sSh1t / PowerSharpPack

  View on GitHub
  ☆1,670Apr 14, 2025Updated 10 months ago
• optiv / Freeze

  View on GitHub
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,470Aug 18, 2023Updated 2 years ago
• bluscreenofjeff / Red-Team-Infrastructure-Wiki

  View on GitHub
  Wiki to collect Red Team infrastructure hardening resources
  ☆4,450Oct 1, 2025Updated 5 months ago
• netbiosX / Checklists

  View on GitHub
  Red Teaming & Pentesting checklists for various engagements
  ☆2,643Jul 27, 2025Updated 7 months ago
• Flangvik / TeamFiltration

  View on GitHub
  TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
  ☆1,369Oct 22, 2025Updated 4 months ago
• fortra / nanodump

  View on GitHub
  The swiss army knife of LSASS dumping
  ☆2,072Sep 17, 2024Updated last year
• login-securite / lsassy

  View on GitHub
  Extract credentials from lsass remotely
  ☆2,180Dec 24, 2025Updated 2 months ago
• ihebski / A-Red-Teamer-diaries

  View on GitHub
  RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
  ☆1,899Oct 29, 2025Updated 4 months ago
• rootsecdev / Azure-Red-Team

  View on GitHub
  Azure Security Resources and Notes
  ☆1,713Feb 17, 2026Updated 2 weeks ago
• lefayjey / linWinPwn

  View on GitHub
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆2,156Updated this week
• byt3bl33d3r / CrackMapExec

  View on GitHub
  A swiss army knife for pentesting networks
  ☆9,082Dec 6, 2023Updated 2 years ago
• yeyintminthuhtut / Awesome-Red-Teaming

  View on GitHub
  List of Awesome Red Teaming Resources
  ☆7,788Dec 28, 2023Updated 2 years ago
• S3cur3Th1sSh1t / Amsi-Bypass-Powershell

  View on GitHub
  This repo contains some Amsi Bypass methods i found on different Blog Posts.
  ☆2,132Nov 28, 2024Updated last year
• Mr-Un1k0d3r / SCShell

  View on GitHub
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,607Jul 10, 2023Updated 2 years ago
• p0dalirius / Coercer

  View on GitHub
  A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
  ☆2,188Jan 5, 2026Updated last month
• RistBS / Awesome-RedTeam-Cheatsheet

  View on GitHub
  Red Team Cheatsheet in constant expansion.
  ☆1,263Dec 28, 2023Updated 2 years ago
• 0xsp-SRD / mortar

  View on GitHub
  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
  ☆1,498Dec 21, 2023Updated 2 years ago
• Dec0ne / KrbRelayUp

  View on GitHub
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,631Aug 6, 2022Updated 3 years ago
• bats3c / shad0w

  View on GitHub
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,168Sep 29, 2021Updated 4 years ago
• Mr-Un1k0d3r / EDRs

  View on GitHub
  ☆2,168Feb 21, 2023Updated 3 years ago
• Integration-IT / Active-Directory-Exploitation-Cheat-Sheet

  View on GitHub
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆2,696Jul 6, 2025Updated 7 months ago
• klezVirus / inceptor

  View on GitHub
  Template-Driven AV/EDR Evasion Framework
  ☆1,779Nov 3, 2023Updated 2 years ago
• SnaffCon / Snaffler

  View on GitHub
  a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
  ☆2,745Updated this week
• itm4n / PrivescCheck

  View on GitHub
  Privilege Escalation Enumeration Script for Windows
  ☆3,708Jan 30, 2026Updated last month
• S3cur3Th1sSh1t / Creds

  View on GitHub
  Some usefull Scripts and Executables for Pentest & Forensics
  ☆1,151Dec 11, 2025Updated 2 months ago
• cube0x0 / KrbRelay

  View on GitHub
  Framework for Kerberos relaying
  ☆936May 29, 2022Updated 3 years ago
• Tylous / SourcePoint

  View on GitHub
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,199Apr 16, 2025Updated 10 months ago