Alternatives and similar repositories for red

Users that are interested in red are comparing it to the libraries listed below

• SolomonSklash / RubeusToCcache
  A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket
  ☆61Updated 5 years ago
• aress31 / clm-rout
  A C# program featuring an all-in-one bypass for CLM, AppLocker and AMSI using Runspace.
  ☆19Updated 2 years ago
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆53Updated 3 years ago
• Karmaz95 / evasion
  AV EVASION TECHNIQUES
  ☆79Updated 2 years ago
• kyle41111 / RedTeamHelp
  Tools I use on red team engagements and more
  ☆33Updated last year
• cube0x0 / HashSpray.py
  python spraying tools based on impacket lib
  ☆53Updated 2 years ago
• fozavci / WeaponisingCSharp-Fundamentals
  Weaponising C# - Fundamentals Training Content
  ☆70Updated 4 years ago
• sinfulz / JustGetDA
  JustGetDA, a cheat sheet which will aid you through internal network & red team engagements.
  ☆13Updated last year
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆39Updated 2 years ago
• cham423 / cs-tools
  cobalt strike tools
  ☆31Updated 3 years ago
• 0xVIC / myAPPLockerBypassSummary
  Simple APPLocker bypass summary
  ☆42Updated 6 years ago
• sbasu7241 / HellsGate
  Rewrote HellsGate in C# for fun and learning
  ☆86Updated 3 years ago
• SecurityRiskAdvisors / msspray
  Password attacks and MFA validation against various endpoints in Azure and Office 365
  ☆151Updated 2 years ago
• snovvcrash / OffensivePipeline
  OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
  ☆91Updated 3 years ago
• xct / morbol
  Simple AV Evasion for PE Files
  ☆41Updated 3 years ago
• S3cur3Th1sSh1t / RDPThiefInject
  RDPThief donut shellcode inject into mstsc
  ☆87Updated 4 years ago
• bowtiejicode / Reflective-PPIDxProcHollow
  A powershell script that performs reflective parent process ID (PPID) spoofing and process hollowing to evade Windows Defender
  ☆11Updated 2 years ago
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆41Updated 2 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆56Updated 3 years ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆56Updated 2 years ago
• Wh04m1001 / Random
  Random
  ☆33Updated 2 years ago
• S3cur3Th1sSh1t / SharpUnhooker
  C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)
  ☆23Updated 2 years ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆95Updated last year
• KINGSABRI / MSI-AlwaysInstallElevated
  A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy
  ☆33Updated 2 years ago
• 0xe7 / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆42Updated 3 months ago
• RedSiege / RandomScripts
  Scripts for public use that we've randomly written, or have updated from other people's work.
  ☆40Updated last year
• cube0x0 / LdapSignCheck
  Beacon Object File & C# project to check LDAP signing
  ☆192Updated 10 months ago
• NinjaStyle82 / rbcd_permissions
  Add SD for controlled computer object to a target object for RBCD using LDAP
  ☆38Updated 3 years ago
• Dec0ne / AMS-BP
  AMSI Bypass for powershell
  ☆30Updated 3 years ago