A penetration testing playbook that's suitable for CTF challenges, bug bounty hunting and red team assessments.
-
Updated
Jun 12, 2024 - C
A penetration testing playbook that's suitable for CTF challenges, bug bounty hunting and red team assessments.
The Python Risk Identification Tool for generative AI (PyRIT) is an open access automation framework to empower security professionals and machine learning engineers to proactively find risks in their generative AI systems.
🐢 Open-Source Evaluation & Testing for LLMs and ML models
The best and completely open source Stealer
Infrastructure as code framework for deploying servers to linode to be used in Red Team Operations
Persistent Powershell backdoor tool {😈}
Compiled tools for internal assessments
smbcrawler is no-nonsense tool that takes credentials and a list of hosts and 'crawls' (or 'spiders') through those shares
Response Filter Denial of Service (RFDoS) Experimental Scanner
wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures from various AV engines. It also has a handful of additional built in modules to help automate some common tasks on Red team engagements.
EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.
Nimbo-C2 is yet another (simple and lightweight) C2 framework
🤖🛡️🔍🔒🔑 Tiny package designed to support red teams and penetration testers in exploiting large language model AI solutions.
Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台
该工具用于导出正在运行中的微信进程的 key 并自动解密所有微信数据库文件以及导出 key 后数据库文件离线解密。
Repo containing cracked red teaming tools.
A command-line interface (CLI) based passive subdomain discovery utility. It is designed to efficiently identify known subdomains of given domains by tapping into a multitude of curated online passive sources.
A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting to scan multiple bug bounty programs simultaneously, on a recurring basis.
Nim process hollowing loader
Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments
Add a description, image, and links to the red-team-tools topic page so that developers can more easily learn about it.
To associate your repository with the red-team-tools topic, visit your repo's landing page and select "manage topics."