redtop

redtop's Stars

• sqshq/sampler

  Tool for shell commands execution, visualization and alerting. Configured with a simple YAML file.

  Language:Go12.6k549

• 3gstudent/Javascript-Backdoor

  Learn from Casey Smith @subTee

  Language:PowerShell241110

• Hood3dRob1n/JSRat-Py

  This is my implementation of JSRat.ps1 in Python so you can now run the attack server from any OS instead of being limited to a Windows OS with Powershell enabled.

  Language:Python301134

• aspiggy/JSRAT

  Language:Python5932

• nccgroup/Winpayloads

  Undetectable Windows Payload Generation

  Language:Python1.6k332

• LevelbossMike/vim_shortcut_wallpaper

  A vim cheat sheet wallpaper.

  84754

• fox-it/aclpwn.py

  Active Directory ACL exploitation with BloodHound

  Language:Python701107

• cddmp/enum4linux-ng

  A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

  Language:Python1.2k125

• 3xpl01tc0d3r/Obfuscator

  The program is designed to obfuscate the shellcode.

  Language:C#19349

• tomcarver16/ADSearch

  A tool to help query AD via the LDAP protocol

  Language:C#45251

• bohops/WSMan-WinRM

  A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object

  Language:C++22139

• optiv/Go365

  An Office365 User Attack Tool

  Language:Go621100

• b4rtik/SharpMiniDump

  Create a minidump of the LSASS process from memory

  Language:C#25449

• b4rtik/SharpKatz

  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands

  Language:C#973134

• Flangvik/AMSI.fail

  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.

  Language:C#37266

• G0ldenGunSec/SharpSecDump

  .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py

  Language:C#58274

• miriamxyra/EventList

  EventList

  Language:PowerShell37140

• CCob/SharpBlock

  A method of bypassing EDR's active projection DLL's by preventing entry point exection

  Language:C#1.1k157

• michaelweber/Macrome

  Excel Macro Document Reader/Writer for Red Teamers & Analysts

  Language:C#51478

• cube0x0/SharpMapExec

  Language:C#654121

• mandiant/capa

  The FLARE team's open-source tool to identify capabilities in executable files.

  Language:Python4.8k557

• mandiant/red_team_tool_countermeasures

  Language:YARA2.6k847

• hslatman/awesome-threat-intelligence

  A curated list of Awesome Threat Intelligence resources

  8k1.5k

• lucky-luk3/Grafiki

  Threat Hunting tool about Sysmon and graphs

  Language:Python32952

• christophetd/Adaz

  :wrench: Deploy customizable Active Directory labs in Azure - automatically.

  Language:HCL40983

• Flangvik/BetterSafetyKatz

  Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into memory.

  Language:C#826116

• obscuritylabs/RAI

  Rapid Attack Infrastructure (RAI)

  Language:Dockerfile29649

• Graph-X/Update_Mimikatz

  Bash script to take the powerkatz.dll files, encode them using base64 and then replace the old binaries with the new in the Invoke-Mimikatz.ps1 powershell file

  Language:Shell166

• cobbr/PSAmsi

  PSAmsi is a tool for auditing and defeating AMSI signatures.

  Language:PowerShell38670

• splitline/PHPFuck

  PHPFuck: ([+.^]) / Using only 7 different characters to write and execute php.

  Language:Python40237