MCPcopy Create free account
hub / github.com/0xJs/RedTeaming_CheatSheet

github.com/0xJs/RedTeaming_CheatSheet @main

Chat with this repo
repository ↗ · DeepWiki ↗ · + Follow
2,123 symbols 4,567 edges 303 files 251 documented · 12% updated 7mo ago★ 1,570

Browse by type

Functions 1,919 Types & classes 204
What it actually does AI analysis from the code graph — generated when you open this
loading…
README

RedTeaming_CheatSheet

Pentesting / RedTeaming cheatsheet with all the commands and techniques I learned during my learning journey. Will keep it up to date. If you have any recommendations for courses or links or have any questions feel free to dm me on discord. 0xjs#9027

Index

RedTeaming General

  • Definition of Red Teaming by Joe Vest and James Tubberville:

    Red Teaming is the process of using tactics, techniques and procedures (TTPs) to emulate a real-world threat, with the goal of measuring the effectiveness of the people, processes and technologies used to defend an environment.

  • OPSEC (Operations Security) is a process that identifies critical information to determine if actions can be observed by enemy intelligence, determines if information obtained by adversaries could be interpreted to be useful to them, and then executes selected measures that eliminate or reduce adversary exploitation of critical information. It's generally used to describe the "ease" by which actions can be observed by "enemy" intelligence.

Sources & Credits

Most of my knowledge is gathered from the following coures, so big thanks to them! If you like a specific topic I would recommend taking the courses from them!

  • Cloud: CARTP and CARTE from Altered Security, breaching the cloud from antisyphon, OASP from Cloudbreach, GCRTS from cyberwarfare
  • Windows: CRTP, CRTE, PACES from Altered Security, ECPTX from eLearnSecurity and CRTO from ZeroPointSecurity.
  • Infra: OSCP, PNPT from TCM Security and Tiberius privesc courses
  • OSINT: PNPT Course
  • Coding: Pavel Yosifovich & Sektor7 Reenz0h

Misc

C2 frameworks overview

Data exfiltration simulation

  • https://github.com/FortyNorthSecurity/Egress-Assess

Nuget Package Manager dependancies

  • Open Tools --> NuGet Package Manager --> Package Manager Settings --> Package Sources
  • Add a source. Name nuget.org and Source https://api.nuget.org/v3/index.json

AV / EDR Netblocks for deny listing

  • https://github.com/her0ness/av-edr-urls/blob/main/AV-EDR-Netblocks

Core symbols most depended-on inside this repo

Shape

Function 1,660
Method 259
Class 190
Enum 14

Languages

C++89%
C#7%
Python4%
C1%

Modules by API surface

coding/projects/VeraCryptPasswordStealer/VCsniff/detours/samples/tracebld/trcbld.cpp139 symbols
coding/projects/Hooking/Detours/detours/samples/tracebld/trcbld.cpp139 symbols
coding/projects/VeraCryptPasswordStealer/VCsniff/detours/samples/cping/cping.cpp81 symbols
coding/projects/Hooking/Detours/detours/samples/cping/cping.cpp81 symbols
coding/projects/VeraCryptPasswordStealer/VCsniff/detours/samples/tracetcp/trctcp.cpp66 symbols
coding/projects/Hooking/Detours/detours/samples/tracetcp/trctcp.cpp66 symbols
coding/projects/VeraCryptPasswordStealer/VCsniff/detours/samples/tracereg/trcreg.cpp64 symbols
coding/projects/Hooking/Detours/detours/samples/tracereg/trcreg.cpp64 symbols
coding/projects/VeraCryptPasswordStealer/VCsniff/detours/samples/tracessl/trcssl.cpp63 symbols
coding/projects/Hooking/Detours/detours/samples/tracessl/trcssl.cpp63 symbols
coding/projects/VeraCryptPasswordStealer/VCsniff/detours/samples/traceser/trcser.cpp50 symbols
coding/projects/Hooking/Detours/detours/samples/traceser/trcser.cpp50 symbols

For agents

$ claude mcp add RedTeaming_CheatSheet \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact

Ask about this repo answers extend the page