vari-sh / RedTeamGrimoireLinks
π₯π Forbidden collection of Red Team sorcery ππ₯
β233Updated this week
Alternatives and similar repositories for RedTeamGrimoire
Users that are interested in RedTeamGrimoire are comparing it to the libraries listed below
Sorting:
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijackingβ396Updated 5 months ago
- Cobalt Strike BOF for evasive .NET assembly executionβ284Updated 8 months ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactionsβ340Updated last year
- Ghosting-AMSIβ219Updated 7 months ago
- Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems.β439Updated last month
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordonβs (@YuG0rd) BadSuccessor attack from Akamai.β362Updated 2 months ago
- Open Source C&C Specificationβ272Updated 9 months ago
- Red teaming tool to dump LSASS memory, bypassing basic countermeasures.β241Updated last month
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotelyβ379Updated 11 months ago
- psexecsvc - a python implementation of PSExec's native service implementationβ228Updated 9 months ago
- Attempt at Obfuscated version of SharpCollectionβ232Updated 2 weeks ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detectionβ319Updated last year
- β186Updated 5 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the cloneβ¦β209Updated last year
- Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUSTβ194Updated last year
- SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.β257Updated 7 months ago
- Stealthily inject shellcode into an executableβ400Updated last month
- This is the tool to dump the LSASS process on modern Windows 11β507Updated last month
- Lateral Movement Using DCOM and DLL Hijackingβ324Updated 2 years ago
- Find potential DLL Sideloads on your windows computerβ216Updated 10 months ago
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functionsβ262Updated 7 months ago
- Extracting NetNTLM without touching lsass.exeβ239Updated 2 years ago
- TeamServer and Client of Exploration Command and Control Frameworkβ176Updated last month
- β407Updated 11 months ago
- Reaping treasures from strings in remote processes memoryβ283Updated 9 months ago
- Nameless C2 - A C2 with all its components written in Rustβ278Updated last year
- β226Updated last year
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.β322Updated last year
- A Rust implementation of Internal-Monologue β retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and β¦β186Updated 7 months ago
- Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for secuβ¦β250Updated last year