GoRedOps : A Golang Arsenal For Red Teamers And Security Professionals

GoRedOps is a comprehensive collection of Golang-based projects tailored for red teamers and offensive security professionals.

This repository offers a wide array of tools and techniques essential for penetration testing, exploitation, and security research. Below is an overview of its structure and functionality.

Project Structure And Tools

GoRedOps is organized into multiple directories, each containing specialized tools for various offensive security tasks:

Anti-Debugging: Includes both packaged and unpackaged techniques to evade debugging attempts.
BatchfileDeobfuscator: Tools for deobfuscating batch scripts.
Cryptography: Implements cryptographic algorithms like AES, ChaCha20, RC4, and XOR.
EDR/XDR/AV Bypass: Tools for evading Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), and antivirus software.
Injection Techniques: Covers a variety of injection methods such as APC injection, thread injection (e.g., createThread, ntCreateThreadEx), remote thread hijacking, and threadless injection.
Payload Execution: Demonstrates payload execution methods using fibers, memory mapping, or shellcode placement in processes.
Process Manipulation: Includes tools for process dumping, protection, and spoofing parent process IDs.
Networking: Provides HTTP, TCP, and named pipes clients/servers.
ETW/AMSI Bypass: Techniques to bypass Event Tracing for Windows (ETW) and Antimalware Scan Interface (AMSI).
Keylogger: Captures keystrokes into a temporary file.
Miscellaneous Tools: Includes sandbox evasion techniques, self-removal scripts, WMI interaction tools, and more.

To use GoRedOps:

Install the Go programming language (version 1.20 or higher).
Clone the repository:

   git clone https://github.com/EvilBytecode/GoRedOps.git
   cd GoRedOps
   cd desired_folder

Follow the instructions in the README file within each tool’s directory.

Contributions are encouraged to enhance GoRedOps. Developers can fork the repository, create a branch for their feature or fix, implement changes, and submit a pull request.

The repository operates under an “UnLicense,” granting unrestricted use.

GoRedOps is a valuable resource for offensive security practitioners looking to leverage Golang’s capabilities in red teaming operations.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.