Open-source alternatives to OSEP

Havoc is a post-exploitation framework used for red team operations. It provides a centralized command and control system for managing remote agents through persistent network connections and customizable communication profiles. The framework focuses on security evasion and stealth, utilizing indirect syscall execution, return address spoofing, and hardware-breakpoint patching to bypass endpoint detection and response tools. It includes a payload generation workflow to create executable shellcode or DLLs for initial remote access. The system covers a broad range of operational capabilities,

My thoughts from going through the OSEP materials.

This repo contains information about EDRs that can be useful during red team exercise.

Red Team C code repo

Just a place to store some of my pre-course research notes.

This is a repository of notes and material that I consider necessary in advance to opt for the course and the OSEP certification (Techniques of Evasion and Breaching Defenses)

I am a Masters Student in information Security, with keen interest in infrastructure security. Worked as an intern, Volunteer and Freelancer for a couple of companies. Participated in CTF's, solved boxes in HTB, TryHackMe, Proving Grounds, etc. I would design home labs to test and practice, but…

An offensive data enrichment pipeline

This wiki is intended to provide a resource for setting up a resilient Red Team infrastructure. It was made to complement Steve Borosh (@424f424f) and Jeff Dimmock's (@bluscreenofjeff) BSides NoVa 2017 talk "Doomsday Preppers: Fortifying Your Red Team Infrastructure" (slides)

1. Tunneling (Ligolo-NG) - 2. Map The Network - 3. AMSI-Bypass - 4. Windows Privilege Escalation - 5. Windows Defender/Firewall Commands - 6. Useful Basic Commands - 7. Escalate to SYSTEM via Schedule Task - 8. Enable RDP and RestrictedAdmin - 9. TCP Port Redirection via powercat - 10. MSSQL…