Red Team Tips as posted by @vysecurity on Twitter

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Links for the OSINT Team

dev backup for main site

Red Teaming Tactics and Techniques

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

A small, null-free Windows shellcode that executes calc.exe (x86/x64, all OS/SPs)

A set of scripts that demonstrate how to perform memory injection in C#

Small and highly portable detection tests based on MITRE's ATT&CK.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Credentials gathering tool automating remote procdump and parse of lsass process.

My OSCP journey

JAWS - Just Another Windows (Enum) Script

Scripted Local Linux Enumeration & Privilege Escalation Checks

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Advanced vulnerability scanning with Nmap NSE

Open Source Vulnerability Management Platform

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…

The Collective. A repo for a collection of red team and/or pen test projects found mostly on Github. https://github.com/ceramicskate0/TheCollective #infosec #redteaming #pentest

Complete Listing and Usage of Tools used for Ethical Hacking

The LAZY script will make your life easier, and of course faster.

windows-kernel-exploits Windows平台提权漏洞集合

PowerSploit - A PowerShell Post-Exploitation Framework

A curated list of awesome infosec blog posts, courses, books and more!

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…

"Technology Gold mine" to collect and share materials/resources

Config files used for my install of Home Assistant. This is no longer maintained as I started my install over, and have been using the UI for configuration.