Portable file server with accelerated resumable uploads, dedup, WebDAV, FTP, TFTP, zeroconf, media indexer, thumbnails++ all in one file, no deps

SDLC evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more

An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN

Cryptomator for Windows, macOS, and Linux: Secure client-side encryption for your cloud storage, ensuring privacy and control over your data.

Systemd Hardening Helper - Automatic systemd service hardening guided by strace profiling

Adversary Emulation Framework

A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Integrates with LLM agents via MCP for enhanced analysis capabil…

A example deliberately vulnerable Go application and container for verifying container scanning on offsec engagements

Payloads for AI Red Teaming and beyond

Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection

3D rendering and animation engine for multifaceted displays on microcontrollers

A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29

Labs for Threat Modelling training delivered by ControlPlane

Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)

Container introspection tool. Find out what container runtime is being used as well as features available.

Lena's repo of Malware Monsters aka Malmons.

Leaked pentesting manuals given to Conti ransomware crooks

A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control poli…

Obfuscate Go binaries and packages

Obfuscate Go builds

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Track Progress on your books

A Stock Trading Transaction Web Game