Free hands-on digital forensics labs for students and faculty

RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create advanced phishing & payload infras

Container based implementation of the Cracked5pider Havoc C2 project for testing Client Scripts

⚔️Windows11 Penetration Suite Toolkit 🔰 The First Windows Penetration Testing Environment on Mac M Chips

Research notes

DFIR project to collect and analyze events in Google Workspace

A centralized and enhanced memory analysis platform

MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.

Educational, CTF-styled labs for individuals interested in Memory Forensics

Collection of handy online tools for developers, with great UX.

Tools and Techniques for Blue Team / Incident Response

ntlm hash cracker

Contextual Content Discovery Tool

↕️🤫 Stealth redirector for your red team operation security

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

A tool to help forensicate offline docker acquisitions

HookPhish is a Python script designed to aid in the detection of phishing websites

Python library to carry out DFIR analysis on the Cloud

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

Best practices for segmentation of the corporate network of any company

Create randomly insecure VMs

LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilities

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Collaborative forensic timeline analysis

Impacket is a collection of Python classes for working with network protocols.

A GPT-empowered penetration testing tool

A Dissect module implementing a parsers for various forensic evidence file containers, currently: AD1, ASDF and EWF.

Cuckoo3 is a Python 3 open source automated malware analysis system.