HuskyHacks

🔬

Matt Kiely HuskyHacks

🔬

Principal Security Researcher @huntresslabs

1.5k followers · 27 following

Achievements

x3 x2

Achievements

x3 x2

Highlights

PMAT-labs Public

Labs for Practical Malware Analysis & Triage

HCL 1,061 245 Updated Dec 20, 2025
shell-setup Public
Forked from mttaggart/shell-setup

Repo for automating shell config on new machines

Shell 2 1 Updated Dec 20, 2025
windows-x64-shellcode-pipeline Public

A Dockerized build pipeline for custom Windows x64 shellcode

Python 51 8 MIT License Updated Dec 12, 2025
pisces Public
Forked from mjc-gh/pisces

A tool for analyzing phishing attack sites

Go Updated Dec 10, 2025
VM-Packages Public
Forked from mandiant/VM-Packages

Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.

PowerShell 2 Apache License 2.0 Updated Oct 4, 2025
cazadora Public

Simple hunting script for suspicious M365 OAuth Apps

Python 318 31 MIT License Updated Sep 23, 2025
ctf-test Public

Updated Aug 2, 2025
ctf101 Public

The README for the CTF101 challenge from Snyk FtF 2025

4 1 Updated Feb 27, 2025
HuskyHacks Public

12 1 Updated Jan 20, 2025
blue-jupyter Public
Forked from mttaggart/blue-jupyter

Jupyter Notebooks for the Blue Team

Jupyter Notebook 39 15 MIT License Updated Jan 16, 2025
bsides-nyc-2024-when-apps-attack Public

Slides for BSidesNYC 2024 - "When Apps Attack: Hunting Traitorware and Rogue Microsoft 365 Apps at the Small to Medium Business Scale"

1 1 Updated Oct 22, 2024
tricon-2024-identity-crisis Public

Slides for Identity Crisis from TricCon 2024

1 Updated Jul 28, 2024
SharpTokenFinder Public

C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps

C# 144 24 MIT License Updated Jul 25, 2024
GraphRunner Public
Forked from dafthack/GraphRunner

A Post-exploitation Toolset for Interacting with the Microsoft Graph API

PowerShell 1 MIT License Updated Jul 9, 2024
bsides-nashville-identity-crisis Public

Identity Crisis: Combating M365 Account Takeovers at Scale (BSides Nashville 2024)

3 Updated May 13, 2024
GraphSpy Public
Forked from RedByte1337/GraphSpy

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

HTML 2 1 BSD 3-Clause "New" or "Revised" License Updated Apr 7, 2024
PynAuth Public
Forked from Synzack/PynAuth

Python 1 Updated Mar 31, 2024
pancakescon-2024 Public

How to Combat Microsoft365 Account Takeovers (while you're not out Thru-Hiking the Appalachian Trail)

2 Updated Mar 25, 2024
wtfbins Public
Forked from mttaggart/wtfbins

WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.

TypeScript 2 1 MIT License Updated Mar 20, 2024
SandboxEvasion_BuildCommDCBAndTimeoutA Public

Sandbox evasion (probably?) via BuildCommDCBAndTimeoutA PoC

C 3 Updated Mar 12, 2024
Unprotect_Submission Public
Forked from Unprotect-Project/Unprotect_Submission

Repository to publish your evasion techniques and contribute to the project

C++ 1 Updated Mar 12, 2024
clarion Public

The clarion call tells you if someone is logging into an AitM proxy that is proxying your M365 login page

Python 84 24 MIT License Updated Jan 14, 2024
flare-vm Public
Forked from mandiant/flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

PowerShell 3 2 Apache License 2.0 Updated Dec 12, 2023
SharpCollection Public
Forked from Flangvik/SharpCollection

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

2 Updated Nov 29, 2023
hardyharHAR Public

1 Updated Oct 24, 2023
merlin Public
Forked from Ne0nd0g/merlin

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Go 1 GNU General Public License v3.0 Updated Sep 15, 2023
logformatter Public

logformatter

Go 1 2 MIT License Updated Sep 8, 2023
cloudy-with-a-chance-of-malware Public

Terraform repo for "Cloudy with a Chance of Malware"

HCL 3 3 MIT License Updated Aug 31, 2023
replit-test Public

Go Updated Jul 23, 2023
merlin-agent Public
Forked from Ne0nd0g/merlin-agent

Go 1 GNU General Public License v3.0 Updated Jun 10, 2023

Matt Kiely HuskyHacks

Achievements

Achievements

Highlights

PMAT-labs Public

Uh oh!

shell-setup Public

Uh oh!

windows-x64-shellcode-pipeline Public

Uh oh!

pisces Public

Uh oh!

VM-Packages Public

Uh oh!

cazadora Public

Uh oh!

ctf-test Public

Uh oh!

ctf101 Public

Uh oh!

HuskyHacks Public

Uh oh!

blue-jupyter Public

Uh oh!

bsides-nyc-2024-when-apps-attack Public

Uh oh!

tricon-2024-identity-crisis Public

Uh oh!

SharpTokenFinder Public

Uh oh!

GraphRunner Public

Uh oh!

bsides-nashville-identity-crisis Public

Uh oh!

GraphSpy Public

Uh oh!

PynAuth Public

Uh oh!

pancakescon-2024 Public

Uh oh!

wtfbins Public

Uh oh!

SandboxEvasion_BuildCommDCBAndTimeoutA Public

Uh oh!

Unprotect_Submission Public

Uh oh!

clarion Public

Uh oh!

flare-vm Public

Uh oh!

SharpCollection Public

Uh oh!

hardyharHAR Public

Uh oh!

merlin Public

Uh oh!

logformatter Public

Uh oh!

cloudy-with-a-chance-of-malware Public

Uh oh!

replit-test Public

Uh oh!

merlin-agent Public

Uh oh!