RED TEAMING TTP NOTES

February 10, 2026 ยท View on GitHub

RED TEAMING TTP NOTES


Reconnaisance / OSINT

Passive Discovery

User Enumeration

Public Site Enumeration (Github, Gitlab, etc.)

Cloud Enumeation


Microsoft (Windows, Azure, etc.)

Active Discovery

ADFS


Web Application Exploitation

Resources


Phishing

Resources

Microsfot 365 Device Code Phishing

Gitlab Device Code Phishing

Phishing Frameworks


Password-based Attack


Password Spray Tools

Default Password Check


Infrastructure


Proxy / IP Rotators

Cobal Strike

Control Pack C2

Malleable C2

OpenSource C2

Redirectors

Living Off Trusted Sites


Post-Exploitation

Windows Active Directory Recon

Windows Active Directory Attacks

Internal Phishing

Credential Theft

Windows OS

Internet Browsers

Lateral Movement Tools

Offensive C#

LiveOffTheLand

AV/AMSI Evasion

EDR Evasion

PowerShell

Log/Trace Deletion


Exploit Dev

Windows OS

Linux-based OS

VulnDB

Vulns - Cloud

Vulns - WebApp

Vulns - Windows / Active Directory

RedTeam Researchers (Githubs / Gitbooks)

Awesome Collections

Lab Resources

Labs - Windows

Labs - Cloud

Labs - CTF / Security Testing Practice

Sexy Resources

BlueTeam

Lab Resources

Threat Detection

Windows Security (What will BlueTeam look for?)

LDAP (Lightweight Directory Access Protocol)

Disclaimer

All the credits belong to the original authors and publishers.

Contributors

  • @bigb0ss
  • @T145
  • @threat-punter
  • @3isenHeiM