Submit your favorite resources for free.
Red team operations simulate real-world adversaries using C2 frameworks, OPSEC-aware tooling, payload generation, and stealthy post-exploitation methods.
A covert technique encoding executables into pixel data within images/videos, executed in memory, highlighting unconventional data delivery.
MeetC2 is a proof-of-concept C2 framework using Google Calendar API as a covert communication channel between operators and a compromised system.
MicroBurst is a PowerShell toolkit for assessing Microsoft Azure security, including discovery, auditing, and post-exploitation actions.
Modlishka is a MITM proxy to bypass 2FA, enabling transparent multi-domain TLS traffic over a single domain without client certificates.
Mutimetroo is an all-in-one security platform offering a suite of offensive tools for red teams to conduct deep network recon and vulnerability testing.
Mythic is a collaborative, multi-platform, red teaming framework with a user-friendly interface for operators and managers.
NeroSwarm Deception Lab offers free cyber deception tools including honeytoken creation, honeypot script generation, and IP threat reputation checking.
Nerva is a high-performance CLI tool for fast service fingerprinting across 120+ protocols (TCP/UDP/SCTP), built by Praetorian for network reconnaissance.
NetExec is a network service exploitation tool designed to automate security assessments of large networks.
Nighthawk is an advanced redteam toolkit designed with operational security in mind, offering a robust platform for red team operations.
Nishang is a PowerShell framework for offensive security, penetration testing, and red teaming, useful in all phases of security assessments.
OnionC2: C2 framework with Tor integration for secure, anonymous command and control. Rust & Go powered, cross-platform, and user-friendly.
