mantvydasb/redteaming-tactics-and-techniques — explained in plain English
Analysis updated 2026-06-26
Study Windows penetration testing techniques with working code examples for OSCP exam preparation in a lab environment.
Research how specific attack methods like process injection work and what forensic traces they leave for defenders to find.
Build a reference library of offensive techniques to use during authorized penetration testing engagements.
| mantvydasb/redteaming-tactics-and-techniques | disassembler0/win10-initial-setup-script | dotnet/machinelearning-samples | |
|---|---|---|---|
| Stars | 4,590 | 4,652 | 4,683 |
| Language | PowerShell | PowerShell | PowerShell |
| Setup difficulty | hard | easy | easy |
| Complexity | 4/5 | 2/5 | 2/5 |
| Audience | developer | general | developer |
Figures from each repo's GitHub metadata at analysis time.
Requires a dedicated lab environment with Windows VMs and security tools to safely test techniques, assumes prior familiarity with Windows internals and command-line tools.
This repository is a personal notebook of offensive security research, maintained by a security professional who goes by the handle spotheplanet. The notes document experiments with the kinds of techniques that penetration testers and red teamers use when assessing the security of computer systems in controlled, authorized lab environments. The same content is published as a website at ired.team. Red teaming is a practice where a group of security specialists tries to break into an organization's systems using the same methods a real attacker might use, so that defenders can find and fix weaknesses before a genuine threat actor does. The notes here cover areas like getting code to run on a target machine, injecting code into running processes, moving across a network, staying persistent after an initial foothold, and avoiding detection by security tools. The author is clear about the purpose: this is a learning resource built by doing hands-on experiments and documenting the results. Most of the techniques covered were discovered by other researchers in the security community, and the author tries to credit original sources throughout. The notes are not meant to be exhaustive or perfectly accurate, and the README itself warns readers to verify claims against other sources rather than treating anything here as definitive. The repository is aimed at people already working in security or studying for certifications like OSCP, a well-known hands-on penetration testing qualification. The content assumes familiarity with Windows internals, command-line tools, and concepts like process memory and system APIs. It is not an introduction to security for beginners, but rather a reference library of techniques with code examples and explanations of how each method works and what traces it leaves behind.
A personal research notebook of offensive security techniques for penetration testers, covering code execution, process injection, lateral movement, persistence, and detection evasion in authorized lab environments.
Mainly PowerShell. The stack also includes PowerShell, C#, Windows.
Setup difficulty is rated hard, with roughly 1day+ to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.