intersection of open-source red teaming tools and malicious cyber activities conducted by cybercriminals and nation-state actors. It highlights the dual-use nature of these tools, originally intended for security testing, and their increasing adoption in sophisticated attacks, including supply chain compromises. The paper discusses methodologies for managing open-source threats, including AI-based identification and a unique triage process for analyzing GitHub repositories. Furthermore, it explores the evolution of red teaming and the emergence of paid services for managing and utilizing red teaming resources, alongside the potential future impact of AI in generating malicious tools. Ultimately, the research emphasizes the critical need for proactive threat detection and ethical considerations to mitigate the risks associated with the misuse of these powerful tools.