Skip to content
View an4kein's full-sized avatar
🏠
Working from home
🏠
Working from home
94 followers · 75 following

Achievements

Achievement: Pull SharkAchievement: StarstruckAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Pull SharkAchievement: StarstruckAchievement: Arctic Code Vault Contributor

Block or report an4kein

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

Showing results

danielmiessler / Personal_AI_Infrastructure

Agentic AI Infrastructure for magnifying HUMAN capabilities.

TypeScript 5,336 840 Updated Jan 19, 2026

R3alM0m1X82 / SpecterPortal

Advanced post-exploitation framework designed for Red Team operations in Entra ID, Azure and Microsoft 365 environments.

Vue 37 9 Updated Dec 30, 2025

R3alM0m1X82 / SpecterBroker

Advanced Windows authentication token extraction and decryption tool for red team operations and security research

C# 80 17 Updated Dec 30, 2025

botesjuan / Burp-Suite-Certified-Practitioner-Exam-Study

Burp Suite Certified Practitioner Exam Study

Python 1,287 354 Updated Nov 20, 2025

gremwell / o365enum

Enumerate valid usernames from Office 365 using ActiveSync, Autodiscover v1, or office.com login page.

Python 292 44 Updated May 2, 2024

rootsecdev / Azure-Red-Team

Azure Security Resources and Notes

PowerShell 1,696 225 Updated Nov 7, 2025

mvelazc0 / BadZure

BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse entities and configurable, traversable attack paths.

Python 481 31 Updated Jan 20, 2026

dafthack / GraphRunner

A Post-exploitation Toolset for Interacting with the Microsoft Graph API

PowerShell 1,242 153 Updated Jul 22, 2025

rvrsh3ll / TokenTactics

Azure JWT Token Manipulation Toolset

PowerShell 707 109 Updated Dec 6, 2024

TakSec / google-dorks-bug-bounty

A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting

1,740 246 Updated Sep 29, 2025

mitmproxy / mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Python 41,982 4,427 Updated Jan 12, 2026

nikitastupin / pwnhub

How GitHub Actions workflows can be hacked

Shell 174 17 Updated Aug 23, 2024

cider-security-research / top-10-cicd-security-risks

422 65 Updated Jan 18, 2023

xpn / WAMBam

Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post

C# 129 22 Updated Jan 14, 2023

Rob--W / cors-anywhere

CORS Anywhere is a NodeJS reverse proxy which adds CORS headers to the proxied request.

JavaScript 9,340 6,555 Updated Aug 16, 2024

RedByte1337 / GraphSpy

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

HTML 1,015 120 Updated Dec 31, 2025

OWASP / www-project-ai-testing-guide

OWASP Foundation web repository

Python 630 120 Updated Dec 23, 2025

secureworks / family-of-client-ids-research

Research into Undocumented Behavior of Azure AD Refresh Tokens

Python 332 41 Updated Feb 23, 2024

tbhaxor / CARTX

Collection of powershell scripts I used to complete my CARTP and CARTE courses.

PowerShell 47 6 Updated Aug 20, 2025

x1xhlol / system-prompts-and-models-of-ai-tools

FULL Augment Code, Claude Code, Cluely, CodeBuddy, Comet, Cursor, Devin AI, Junie, Kiro, Leap.new, Lovable, Manus, NotionAI, Orchids.app, Perplexity, Poke, Qoder, Replit, Same.dev, Trae, Traycer AI…

109,661 28,683 Updated Jan 17, 2026

asgeirtj / system_prompts_leaks

Collection of extracted System Prompts from popular chatbots like ChatGPT, Claude & Gemini

JavaScript 25,191 3,867 Updated Jan 16, 2026

jhaddix / system_prompts_leaks

Forked from asgeirtj/system_prompts_leaks

Collection of extracted System Prompts from popular chatbots like ChatGPT, Claude & Gemini

JavaScript 26 5 Updated Jun 1, 2025

nccgroup / ScoutSuite

Multi-Cloud Security Auditing Tool

Python 7,511 1,178 Updated Sep 23, 2025

dafthack / MFASweep

A tool for checking if MFA is enabled on multiple Microsoft Services

PowerShell 1,620 224 Updated Mar 4, 2025

dafthack / CloudPentestCheatsheets

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

2,788 554 Updated Sep 17, 2024

dafthack / DomainPasswordSpray

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAR…

PowerShell 1,998 410 Updated Jul 11, 2024

dafthack / MSOLSpray

A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, i…

PowerShell 1,067 183 Updated Mar 19, 2024

hausec / PowerZure

PowerShell framework to assess Azure security

PowerShell 1,252 179 Updated Oct 18, 2025

Offensive-Panda / ShadowDumper

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

C++ 567 90 Updated May 22, 2025

NetSPI / MicroBurst

A collection of scripts for assessing Microsoft Azure security

PowerShell 2,294 334 Updated Oct 29, 2025
Next