#Red-team-tools
Showing 37 of 37 repositories tagged #red-team-tools, ranked by stars
Tools and Techniques for Red Team / Penetration Testing
๐ข Open-Source Evaluation & Testing library for LLM Agents
Adversary simulation and Red teaming platform with AI
The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems.
A curated list of penetration testing and ethical hacking tools, organized by category. This compilation includes tools from Kali Linux and other notable sources.
Sandman is a NTP based backdoor for hardened networks.
Venom is a library that meant to perform evasive communication using stolen browser socket
Automated DLL Hijacking Discovery, Validation, and Confirmation. Turning local misconfigurations into weaponized, confirmed attack paths.
Repo containing cracked red teaming tools.
Red Teaming python-framework for testing chatbots and GenAI systems.
A fast SSH mass-scanner, login cracker, banner grabber and password auth checker tool using the python-masscan and shodan module.
A multithreaded, very fast and smart HTTP(S) directory and file bruteforcer written in C on top of libcurl
A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.
A curated list of awesome LLM Red Teaming training, resources, and tools.
Tool for working with Indirect System Calls in Cobalt Strike's Beacon Object Files (BOF) using SysWhispers3 for EDR evasion
EyeSpy is a PowerShell tool for finding IP Cameras and spraying credentials at the underlying RTSP streams if present.
The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems.
Curated cyber security resources for blue team, red team, DFIR, OSINT, AppSec, cloud security, security logging, and training.
wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures from various AV engines. It also has a handful of additional built in modules to help automate some common tasks on Red team engagements.
Nim process hollowing loader
A Content Discovery and Development Platform. Empowering Cybersecurity, AI, Marketing, and Finance professionals and researchers to discover, analyze, and interact with the web in all its dimensions.
Hackers Cookbook - Tons of hacker cli recipes ready to search and use when you need them
A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting to scan multiple bug bounty programs simultaneously, on a recurring basis.
๐ An up-to-date collection of precompiled binaries and hacking scripts.
A curation of tools presented at DEF CON conference each year, the world's largest hacker con.
Trojan (Ransomware) Phishing Simulator for Cybersecurity Training.
Curated precompiled Windows and Linux binaries for authorized pentesting, red teaming, Active Directory testing, privilege escalation labs, and post-exploitation research.
DRILL (Distributable Remote Integrated Lightweight Link) is a powerful and stealthy Command and Control (C2) framework designed for seamless operation across various environments.
Async HTTP(S) scanner that greps response bodies and headers for strings or regex across hosts, ports, CIDR/ranges and TLS-cert vhosts.
PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.
A penetration testing Swiss Army Knife that's suitable for CTF challenges, bug bounty hunting and red team assessments.
CatchClaw v5.3.0 โ ๅคๅนณๅฐ AI Agent ๅฎๅ จ่ฏไผฐๅทฅๅ ท๏ผๆฏๆ OpenClaw / Dify / FastGPT / LobeChat / NextChat / AnythingLLM / Flowise / RagFlow ็ญ 9 ๅคงๅนณๅฐใ78 ๆก DAG ๆปๅป้พ | 78 ไธช Exploit ๆจกๅ | ATT&CK ้ถๆฎตๆ ๅฐ | ๅคๅนณๅฐๆ็บน่ฏๅซ | Async Tokio ๅผๆ | ๆปๅปๅพๅฏ่งๅ
๐ค๐ก๏ธ๐๐๐ Tiny package designed to support red teams and penetration testers in exploiting large language model AI solutions.
OpenShell is a lightweight, open-source reverse shell management server written in Go.
Berry Sentinel v5.0 โ Advanced behavioral C2 and reverse shell detector for Linux/Windows/Unix systems. Features real-time connection analysis, heuristic scoring, C2 framework signature detection, beacon interval analysis, and an interactive curses-based TUI with process kill engine.
Collection of Red Team tools and techniques
GitHub-native Command & Control Framework. 11 covert channels. Zero infrastructure.