Red Teaming Tradecraft
☆47Sep 28, 2022Updated 3 years ago
Alternatives and similar repositories for tradecraft
Users that are interested in tradecraft are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 3 years ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆69Jan 5, 2026Updated 6 months ago
- A cmake template for crystal palace☆41Dec 20, 2025Updated 6 months ago
- Dumping LSASS Evaded Endpoint Security Solutions☆18Feb 15, 2025Updated last year
- Tools for Attacking Pleasant Password Server☆23Sep 19, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- .Net Assembly loader for the GMSAPasswordReader☆21Feb 15, 2023Updated 3 years ago
- Docker container for running CobaltStrike 4.7 and above☆25Mar 20, 2025Updated last year
- This exploit use PEB walk technique to resolve API calls dynamically, obfuscate all API calls to perform process injection.☆28Jul 26, 2024Updated last year
- LibreHealth v2.0.0 suffers from an authenticated file upload vulnerability allowing remote attackers to gain remote code execution (RCE) …☆12Jul 19, 2020Updated 5 years ago
- Bunch of BOF files☆45Jun 30, 2025Updated last year
- ☆12Jun 4, 2025Updated last year
- Post-Ex BOF tooling for Hannibal☆24Nov 20, 2024Updated last year
- GenZ Shellcode Generator to execute commands with winExec API☆22Apr 27, 2025Updated last year
- C2-agnostic BOF collection, categorized by attack chain phase. Designed to be small and modular, allowing for quick execution and automat…☆309Jun 22, 2026Updated 2 weeks ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆62Feb 25, 2025Updated last year
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆42Aug 5, 2025Updated 11 months ago
- shadow tls☆17Nov 13, 2022Updated 3 years ago
- Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data☆406Jun 29, 2026Updated last week
- Test bench lab for Shellcode Obfuscation☆37Sep 2, 2025Updated 10 months ago
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 11 months ago
- Direct syscalls Injection to bypass AV/EDR☆10May 18, 2024Updated 2 years ago
- Bulk indicator VirusTotal lookups supporting file hashes, domains and IPs.☆13May 28, 2025Updated last year
- Beacon Object File implementation of Yaxser's Backstab☆15Mar 9, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- AWS Testing and Reporting Management Tool☆20Jan 23, 2023Updated 3 years ago
- Code execution/injection technique using DLL PEB module structure manipulation☆284Jun 4, 2025Updated last year
- ☆165Mar 20, 2026Updated 3 months ago
- modified mssqlclient from impacket to extract policies from the SCCM database☆47Feb 24, 2026Updated 4 months ago
- example using NtCreateUserProcess in rust☆19Jan 20, 2025Updated last year
- A unique introduction to native runtime obfuscation.☆74Mar 2, 2025Updated last year
- A comprehensive list of aerospace affiliated CVEs 🚀👾⚠️☆30Dec 22, 2024Updated last year
- ☆14Sep 25, 2024Updated last year
- A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…☆65Jul 29, 2025Updated 11 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A method to execute shellcode using RegisterWaitForInputIdle API.☆55Apr 4, 2023Updated 3 years ago
- A malware-analysis tool that identify the exact position and details of malicious content in binary files using external Anti-Virus scann…☆40Dec 26, 2023Updated 2 years ago
- Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH☆139Aug 31, 2025Updated 10 months ago
- Filesystem interaction via firebeam virtual machine execution☆56Mar 26, 2026Updated 3 months ago
- ☆18Aug 8, 2024Updated last year
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆144Apr 6, 2025Updated last year
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆34Updated this week