RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create advanced phishing & payload infras

Neuviks Terraform Red Team Workshop

📦 Repopack is a powerful tool that packs your entire repository into a single, AI-friendly file. Perfect for when you need to feed your codebase to Large Language Models (LLMs) or other AI tools li…

Arcane - A secure remote desktop application for Windows with the particularity of having a server entirely written in PowerShell and a cross-platform client (Python/QT6).

Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit

LLM101n: Let's build a Storyteller

FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).

Windows11 Penetration Suite Toolkit 一个开箱即用的windows渗透测试环境

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

The open source Tines / Splunk SOAR alternative.

A collection of statically-linked tools targeted to run on almost any linux system.

Evilginx Phishing Engagement Infrastructure Setup Guide

Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.

An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.

Github as C2 Demonstration , free API = free C2 Infrastructure

Jan is an open source alternative to ChatGPT that runs 100% offline on your computer. Multiple engine support (llama.cpp, TensorRT-LLM)

A framework for developing alerting and detection strategies for incident response.

Takajō (鷹匠) is a Hayabusa results analyzer.

TrustedSec Sysinternals Sysmon Community Guide

Some POCs for my BYOVD research and find some vulnerable drivers

Slides and Codes used for the workshop Red Team Infrastructure Automation

M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.

Dump cookies and credentials directly from Chrome/Edge process memory

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

Amazing whoami alternatives

Enumerate Microsoft Entra ID (Azure AD) fast

PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection rules, simulate logs, and undertake various security tasks,…