.NET, PE, & Raw Shellcode Packer/Loader Written in Nim

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

Active Directory Integrated DNS dumping by any authenticated user

Leverage WindowsApp createdump tool to obtain an lsass dump

Real fucking shellcode encryptor & obfuscator tool

Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.

Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel

Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.

Tools for interacting with authentication packages using their individual message protocols

smbclient-ng, a fast and user friendly way to interact with SMB shares.

Kernel Driver Utility

Elastic Security detection content for Endpoint

Wiki to collect Red Team infrastructure hardening resources

An step by step fuzzing tutorial. A GitHub Security Lab initiative

An ADCS honeypot to catch attackers in your internal network.

Create fake certs for binaries using windows binaries and the power of bat files

Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.

Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.

Construct the payload at runtime using an array of offsets

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

Tunnel TCP connections through a file

A memory-based evasion technique which makes shellcode invisible from process start to end.

Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

Materials for the workshop "Red Team Ops: Havoc 101"