#Red-team

Showing 60 of 328 repositories tagged #red-team, ranked by stars

elder-plinius
elder-plinius
CL4R1T4S

LEAKED SYSTEM PROMPTS FOR CHATGPT, CLAUDE, GEMINI, GROK, PERPLEXITY, CURSOR, LOVABLE, REPLIT, AND MORE! - AI SYSTEMS TRANSPARENCY FOR ALL! 👐

Score
100
★ 45.2k ⑂ 9.2k +557/day
mukul975
mukul975
Anthropic-Cybersecurity-Skills

817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0

Score
100
★ 24.9k ⑂ 2.9k +494/day
Python
BishopFox
BishopFox
sliver

Adversary Emulation Framework

Score
100
★ 11.5k ⑂ 1.5k +43/day
Go
infosecn1nja
infosecn1nja
Red-Teaming-Toolkit

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Score
100
★ 10.5k ⑂ 2.4k +22/day
samratashok
samratashok
nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Score
95
★ 10.0k ⑂ 2.5k +8/day
PowerShell
quasar
quasar
Quasar

Remote Administration Tool for Windows

Score
95
★ 9.9k ⑂ 2.6k
C#
A-poc
A-poc
RedTeam-Tools

Tools and Techniques for Red Team / Penetration Testing

Score
99
★ 9.4k ⑂ 1.3k +173/day
trickest
trickest
cve

Gather and update all available and newest CVEs with their PoC.

Score
99
★ 7.9k ⑂ 976 +7/day
HTML
apache
apache
caldera

Automated Adversary Emulation Platform

Score
83
★ 7.1k ⑂ 1.4k +12/day
Python
Trusted-AI
Trusted-AI
adversarial-robustness-toolbox

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

Score
50
★ 6.1k ⑂ 1.3k +10/day
Python
rmusser01
rmusser01
Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Score
96
★ 6.0k ⑂ 1.2k +2/day
CSS
Pennyw0rth
Pennyw0rth
NetExec

The Network Execution Tool

Score
67
★ 5.7k ⑂ 728 +6/day
Python
wgpsec
wgpsec
ENScan_GO

一款基于各大企业信息API的工具,解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。支持MCP接入

Score
86
★ 4.5k ⑂ 431 +38/day
Go
skerkour
skerkour
black-hat-rust

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Score
100
★ 4.4k ⑂ 434
Rust
lcvvvv
lcvvvv
kscan

Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。

Score
29
★ 4.3k ⑂ 550
Go
Astrosp
Astrosp
Awesome-OSINT-List

📡 Comprehensive collection of OSINT tools for cybersecurity professionals, researchers, and bug bounty hunters. Topics: information gathering, reverse search, red team, trust & safety, AI.

Score
98
★ 3.7k ⑂ 480 +31/day
Shell
BlackArch
BlackArch
blackarch

An ArchLinux based distribution for penetration testers and security researchers.

Score
99
★ 3.4k ⑂ 663
Shell
cisagov
cisagov
RedEye

RedEye is a visual analytic tool supporting Red & Blue Team operations

Score
86
★ 2.8k ⑂ 291 +4/day
TypeScript
x90skysn3k
x90skysn3k
brutespray

Fast, multi-protocol credential brute-forcer. Parses Nmap, Nessus, and Nexpose output to automatically test default and custom credentials across 30+ protocols.

Score
71
★ 2.5k ⑂ 434
Go
Idov31
Idov31
Nidhogg

Windows rootkit for Intel x64 with 25+ features, demonstrating rootkit techniques compatible with all Windows 10 and Windows 11 versions.

Score
98
★ 2.4k ⑂ 357 +5/day
C++
bats3c
bats3c
shad0w

A post exploitation framework designed to operate covertly on heavily monitored environments

Score
50
★ 2.2k ⑂ 331
C
samugit83
samugit83
redamon

An AI-powered agentic red team framework that automates offensive security operations, from reconnaissance to exploitation to post-exploitation, with zero human intervention.

Score
98
★ 2.2k ⑂ 448 +10/day
Python
center-for-threat-informed-defense
center-for-threat-informed-defense
adversary_emulation_library

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Score
84
★ 2.1k ⑂ 367 +3/day
C
Jieyab89
Jieyab89
OSINT-Cheat-sheet

OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book , red team OSINT for hackers and OSINT tips and OSINT branch. This repository will grow every time will research, there is a research, science and technology, tutorial. Please use it wisely.

Score
97
★ 2.1k ⑂ 306 +7/day
Python
koutto
koutto
pi-pwnbox-rogueap

Homemade Pwnbox :rocket: / Rogue AP :satellite: based on Raspberry Pi — WiFi Hacking Cheatsheets + MindMap :bulb:

Score
96
★ 2.1k ⑂ 220
Shell
0xSteph
0xSteph
pentest-ai-agents

Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engagements, analyze recon, research exploits, build detections, audit STIGs, and write reports.

Score
97
★ 2.0k ⑂ 388 +30/day
Shell
GhostManager
GhostManager
Ghostwriter

The SpecterOps project management and reporting engine

Score
97
★ 1.9k ⑂ 249
Python
TryCatchHCF
TryCatchHCF
Cloakify

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Score
80
★ 1.7k ⑂ 237
Python
liamg
liamg
gitjacker

🔪 :octocat: Leak git repositories from misconfigured websites

Score
93
★ 1.6k ⑂ 120 +1/day
Go
trickest
trickest
inventory

Asset inventory of over 800 public bug bounty programs.

Score
80
★ 1.6k ⑂ 282
Shell
m3n0sd0n4ld
m3n0sd0n4ld
GooFuzz

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

Score
94
★ 1.6k ⑂ 158 +1/day
Shell
Viralmaniar
Viralmaniar
BigBountyRecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Score
80
★ 1.6k ⑂ 290 +4/day
C#
gobysec
gobysec
Goby

Attack surface mapping

Score
77
★ 1.5k ⑂ 153
0xSteph
0xSteph
pentest-ai

Offensive-security MCP server with 205 wrapped tools, 17 specialist agents, and 60 SPA-aware probes for OWASP Top 10. CLI + MCP, BYO LLM. No API key needed on MCP path.

Score
96
★ 1.3k ⑂ 246 +26/day
Python
CyberStrikeus
CyberStrikeus
CyberStrike

AI-powered offensive security agent with 7,300+ actionable security skills. Autonomous pentesting powered by MITRE ATT&CK (2,000+ Atomic tests), CIS Benchmarks (1,500+ controls), OWASP, NIST. Lazy-loading, zero context pollution. Your AI red team.

Score
95
★ 1.2k ⑂ 192 +75/day
TypeScript
Zeyad-Azima
Zeyad-Azima
Offensive-Resources

A Huge Learning Resources with Labs For Offensive Security Players

Score
92
★ 1.2k ⑂ 244 +1/day
loseys
loseys
BlackMamba

C2/post-exploitation framework

Score
33
★ 1.2k ⑂ 178
Python
TryCatchHCF
TryCatchHCF
DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Score
76
★ 1.0k ⑂ 150
Python
trickest
trickest
resolvers

The most exhaustive list of reliable DNS resolvers.

Score
94
★ 1.0k ⑂ 113 +2/day
qwqdanchun
qwqdanchun
DcRat

A simple remote tool in C#.

Score
76
★ 1.0k ⑂ 335
C#
DataDog
DataDog
KubeHound

Tool for building Kubernetes attack paths

Score
57
★ 979 ⑂ 65
Go
Puliczek
Puliczek
CVE-2021-44228-PoC-log4j-bypass-words

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Score
75
★ 950 ⑂ 135
Java
Puliczek
Puliczek
awesome-list-of-secrets-in-environment-variables

🦄🔒 Awesome list of secrets in environment variables 🖥️

Score
72
★ 909 ⑂ 77
JoasASantos
JoasASantos
n8n-CyberSecurity-Workflows

Security automation with n8n ideas: 100+ Red/Blue/AppSec workflows, integrations, and ready-to-run playbooks.

Score
82
★ 880 ⑂ 172 +3/day
quantumcore
quantumcore
paradoxiaRAT

ParadoxiaRat : Native Windows Remote access Tool.

Score
73
★ 824 ⑂ 156 +1/day
C
Idov31
Idov31
Sandman

Sandman is a NTP based backdoor for hardened networks.

Score
17
★ 815 ⑂ 110
C#
uphiago
uphiago
recon-skills

156 offensive security skills for recon and pentest. Field-validated techniques from 600+ targets across 45+ sectors. Updated with browser fingerprint evasion, anti-bot bypass, hardcoded credential hunting, SCADA/ICS enumeration.

Score
94
★ 723 ⑂ 138 +146/day
Python
urbanadventurer
urbanadventurer
urlcrazy

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Score
71
★ 686 ⑂ 107 +3/day
Ruby
blark
blark
aiodnsbrute

Python 3.5+ DNS asynchronous brute force utility

Score
72
★ 674 ⑂ 118
Python
dolevf
dolevf
graphql-cop

Security Auditor Utility for GraphQL APIs

Score
85
★ 673 ⑂ 100
Python
KiExitDispatcher
KiExitDispatcher
GoRedOps

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.

Score
14
★ 669 ⑂ 95
Go
brannondorsey
brannondorsey
whonow

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Score
70
★ 661 ⑂ 94
JavaScript
TryCatchHCF
TryCatchHCF
PacketWhisper

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Score
71
★ 654 ⑂ 122 +1/day
Python
carloslack
carloslack
KoviD

Red-Team LKM

Score
88
★ 647 ⑂ 90
C
Idov31
Idov31
Cronos

PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.

Score
68
★ 623 ⑂ 64
C
praetorian-inc
praetorian-inc
titus

High-performance secrets scanner. CLI, Go library, Burp Suite extension, and Chrome extension. 487 detection rules with live credential validation.

Score
43
★ 605 ⑂ 68 +3/day
Go
Marshall-Hallenbeck
Marshall-Hallenbeck
red_team_attack_lab

Red Team Attack Lab for TTP testing & research

Score
68
★ 594 ⑂ 78
PowerShell
postrequest
postrequest
link

link is a command and control framework written in rust

Score
50
★ 579 ⑂ 88
Rust
chAng-L19
chAng-L19
codex-redteam-mode

针对于红队攻击思维做出的red team模式(破限项目,封号概不负责)##可自行适配其他AI

Score
93
★ 567 ⑂ 67 +241/day
Python
0xflux
0xflux
Sanctum

Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

Score
75
★ 561 ⑂ 60
Rust
Related Topics
#hacking#security#cybersecurity#pentesting#penetration-testing#infosec#security-tools#pentest#offensive-security#osint#redteam#windows

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly