SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Automation to assess the state of your M365 tenant against CISA's baselines

Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and eviction.

A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.

Main Sigma Rule Repository

A Starter Kit for Obsidian with all essential elements to build up your own Zettelkasten system.

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems.

Scripts for management and task automation in Proxmox VE

An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains an Angular-based web application providing the user in…

Code included as part of the MustLearnKQL blog series

A python module for working with ATT&CK

Small and highly portable detection tests based on MITRE's ATT&CK.

Build effective agents using Model Context Protocol and simple workflow patterns

A project designed to make the operationalization of open-source cyber threat intelligence more efficient.

A resource containing all the tools each ransomware gangs uses

The Measure, Maximize, and Mature Threat-Informed Defense (M3TID) project defines what Threat-Informed Defense (TID) is and the key activities associated with its practice.

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

The CrowdStrike Falcon SDK for Python

SysAdmin scripts for you to use.

A collection of sources of documentation, as well as field best practices, to build/run a SOC

SIEM Tactics, Techiques, and Procedures

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

Detect Tactics, Techniques & Combat Threats

This contain my personal config files. Here you'll find configs, customizations, themes, and whatever I need to customize my OS experience.

The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders in the IT environment. It will establish an Insider Threat …

n8n workflows for n8n Master browser extension

The Self-hosted AI Starter Kit is an open-source template that quickly sets up a local AI environment. Curated by n8n, it provides essential tools for creating secure, self-hosted AI workflows.

Web app that provides basic navigation and annotation of ATT&CK matrices