Automation to assess the state of your M365 tenant against CISA's baselines

A powerful Go-based multi-shell handler for managing multiple reverse shell connections simultaneously with features like shell type detection, background management, command broadcasting, and real…

Windows protocol library, including SMB and RPC implementations, among others.

AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with intelligent fuzzing, AI-driven analysis, and a marketplace of s…

Crystal Palace library for proxying Nt API calls via the Threadpool

A tool used to enumerate, report and eliminate any existing RMM tools on a host.

New generation of wmiexec.py

☁️ Nextcloud server, a safe home for all your data

IP Rotation from different providers - Like FireProx but for GCP, Azure, Alibaba and CloudFlare

EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.

Open-source CMDB for ICS and OT environments — map assets, visualize networks, track changes, and keep control.

Inboxfuscation is an advanced offensive & defensive framework for mailbox rule obfuscation and detection in Exchange environments.

A Python-based lab demo of Microsoft 365 Direct Send, showing how spoofed internal-looking emails can bypass filtering in a controlled environment.

Azure AppHunter is an open-source tool created for security researchers, red teamers and defenders to help them identify excessive privileges assigned to Service Principals

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

Azure-based home lab simulating real-world SOC operations in an AD-controlled enterprise. Includes attack simulations, log analysis, MITRE ATT&CK threat hunting, and automated response via custom S…

Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

Collection of powershell scripts I used to complete my CARTP and CARTE courses.

Maester is a PowerShell based test automation framework to help you stay in control of your Microsoft security configuration.

CyberShield 2025 Intro to EDR Evasion Class