OT Security Lab for ICS networks.

Simple hunting script for suspicious M365 OAuth Apps

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Notes on managing and coordinating the response to major cyber incidents

PowerShell tools to help defenders hunt smarter, hunt harder.

Run your own AI cluster at home with everyday devices 📱💻 🖥️⌚

Adversary Emulation Framework

Bambdas collection for Burp Suite Professional and Community.

🛰️ Represent any GraphQL API as an interactive graph

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Tools and Techniques for Blue Team / Incident Response

Tools and Techniques for Red Team / Penetration Testing

Red AI Archive: Jeff Sims - A curated collection of work in AI safety, cybersecurity data science, and AI red teaming – my own research alongside academic and industry peer research which have reco…

sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!

P4wnP1 is a highly customizable USB attack platform, based on a low cost Raspberry Pi Zero or Raspberry Pi Zero W.

A low cost, jack-of-all-trades hacking tool, taking inspiration from FlipperZero and P4wnP1, using the RPIZero

Raspberry Pi drone flight controller and autopilot

Purple Team Exercise Framework

Get your documents ready for gen AI

CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable reports more consistently and efficiently.

Master copies of the DISARM frameworks, with generated files to help you explore the data

A large collection of system log datasets for AI-driven log analytics [ISSRE'23]

Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.

Reversino is a tool for finding subdomains from IP ranges or CIDR subnets.

Egress-Assess is a tool used to test egress data detection capabilities