#Red-team-engagement

Showing 29 of 29 repositories tagged #red-team-engagement, ranked by stars

BishopFox
BishopFox
sliver

Adversary Emulation Framework

Score
0
★ 11.5k ⑂ 1.5k +43/day
Go
ivan-sincek
ivan-sincek
penetration-testing-cheat-sheet

Work in progress...

Score
100
★ 829 ⑂ 165
PHP
ivan-sincek
ivan-sincek
php-reverse-shell

PHP shells that work on Linux OS, macOS, and Windows OS.

Score
96
★ 565 ⑂ 161 +2/day
PHP
tobor88
tobor88
PowerShell-Red-Team

Collection of PowerShell functions a Red Teamer may use in an engagement

Score
74
★ 551 ⑂ 93
PowerShell
ivan-sincek
ivan-sincek
wifi-penetration-testing-cheat-sheet

Work in progress...

Score
70
★ 545 ⑂ 87
ivan-sincek
ivan-sincek
android-penetration-testing-cheat-sheet

Work in progress...

Score
93
★ 484 ⑂ 75
JavaScript
ivan-sincek
ivan-sincek
ios-penetration-testing-cheat-sheet

Work in progress...

Score
85
★ 419 ⑂ 79
JavaScript
The-Z-Labs
The-Z-Labs
bof-launcher

[ BOF-LAUNCHER ] -> an API for loading, executing and in-memory masking BOFs on Windows and Linux for use in C/Zig/Go/Rust agents/implants. [ Z-BEAC0N ] -> a custom-written stage-1 (aka pre-C2) solution engineered with a small footprint, stealth and modularity in mind. [ DEVELOPED BOFS ] -> cross-platform (12), Linux-only (10), Win-only (2)

Score
89
★ 324 ⑂ 28 +1/day
Zig
ivan-sincek
ivan-sincek
invoker

Penetration testing utility and antivirus assessment tool.

Score
56
★ 314 ⑂ 82
C++
ivan-sincek
ivan-sincek
powershell-reverse-tcp

PowerShell scripts for communicating with a remote host.

Score
52
★ 301 ⑂ 65
PowerShell
lmco
lmco
dart

DART is a test documentation tool created by the Lockheed Martin Red Team to document and report on penetration tests, especially in isolated network environments.

Score
81
★ 292 ⑂ 63
Python
ivan-sincek
ivan-sincek
forbidden

Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.

Score
78
★ 257 ⑂ 48
Python
tdeerenberg
tdeerenberg
InlineWhispers3

Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion

Score
30
★ 104 ⑂ 17
C
gbiagomba
gbiagomba
Sherlock

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Score
67
★ 87 ⑂ 12
Shell
ivan-sincek
ivan-sincek
keylogger

Windows OS keylogger with a hook mechanism (i.e. with a keyboard hook procedure).

Score
33
★ 84 ⑂ 33
C++
ivan-sincek
ivan-sincek
java-reverse-tcp

JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.

Score
59
★ 68 ⑂ 13
Java
ice-wzl
ice-wzl
wmiexec2

wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures from various AV engines. It also has a handful of additional built in modules to help automate some common tasks on Red team engagements.

Score
63
★ 65 ⑂ 8
Python
sahadnk72
sahadnk72
jecretz

Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets

Score
19
★ 52 ⑂ 10
Python
ivan-sincek
ivan-sincek
xss-catcher

Simple API for storing all incoming XSS requests and various XSS templates.

Score
15
★ 49 ⑂ 7
HTML
david3107
david3107
squatm3

Squatm3 is a python tool designed to enumerate available domains generated modifying the original domain name through different techniques

Score
44
★ 42 ⑂ 14
Python
hexachordanu
hexachordanu
Red-Team-Essentials

This repo will contain some basic pentest/RT commands.

Score
11
★ 38 ⑂ 9
PowerShell
ivan-sincek
ivan-sincek
chad

Search Google Dorks like Chad. / Broken link hijacking tool.

Score
48
★ 33 ⑂ 5
Python
ivan-sincek
ivan-sincek
dns-exfiltrator

Exfiltrate data with DNS queries. Based on CertUtil and NSLookup.

Score
7
★ 24 ⑂ 8
Batchfile
ivan-sincek
ivan-sincek
secure-website

Secure website with a registration, sign in, session management, and CRUD controls.

Score
4
★ 23 ⑂ 6
PHP
ivan-sincek
ivan-sincek
file-scraper

Scrape files for sensitive information, and generate an interactive HTML report. Based on Rabin2.

Score
37
★ 18 ⑂ 3
Python
ivan-sincek
ivan-sincek
scrapy-scraper

Web crawler and scraper based on Scrapy and Playwright's headless browser.

Score
41
★ 17 ⑂ 7
Python
ivan-sincek
ivan-sincek
nagooglesearch

Not another Google searching tool.

Score
22
★ 14 ⑂ 0
Python
blendF
blendF
harpoon

Autonomous Black-Box Pentesting for Web Applications.

Score
26
★ 10 ⑂ 2
Python
ivan-sincek
ivan-sincek
wordlist-extender

Extend wordlist by appending digits and special characters to each word.

Score
0
★ 10 ⑂ 3
Python
Related Topics
#penetration-testing#security#offensive-security#ethical-hacking#bug-bounty#red-team#web-penetration-testing#python#red-teaming#web#cybersecurity#security-tools

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly