Also known by Microsoft as Knifecoat 🌶️

One stop shop for enabling Recall in Windows 11 version 24H2 on unsupported devices

Collaborative Incident Response platform

🔧 Deploy customizable Active Directory labs in Azure - automatically.

Automatically generated Sysmon parser for Azure Sentinel

Purpleteam scripts simulation & Detection - trigger events for SOC detections

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

A repository of sysmon configuration modules

IntelOwl: manage your Threat Intelligence at scale

Notion as a platform for offensive operations

This repo contains some Amsi Bypass methods i found on different Blog Posts.

An advanced multithreaded admin panel finder written in python.

A method of bypassing EDR's active projection DLL's by preventing entry point exection

⭐ ⭐ ⭐ Build your own IP Attack Maps with SOUND!

A swiss army knife for pentesting networks

Automate the creation of a lab environment complete with security tooling and logging best practices

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

Mockoon is the easiest and quickest way to run mock APIs locally. No remote deployment, no account required, open source.

The Hunting ELK

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

Self contained htaccess shells and attacks

A curated list of awesome Go frameworks, libraries and software

CTFs as you need them

Extract domains/subdomains from URLs en masse

Defund the Police.

An Active Defense and EDR software to empower Blue Teams

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

A list of useful payloads and bypass for Web Application Security and Pentest/CTF