An open-source orchestral library

A list of public penetration test reports published by several consulting firms and academic security groups.

Tool for Active Directory Certificate Services enumeration and abuse

Labs for Practical Malware Analysis & Triage

Biological evolution simulator

Resources for Students in the Practical Webapp Security and Testing course

Codebase to generate an msdt-follina payload

Monitor linux processes without root permissions

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Sysmon configuration file template with default high-quality event tracing

An informational repo about hunting for adversaries in your IT environment.

Vulnerable server used for learning software exploitation

Sample files for Control Things Platform

Scripts to gather information and format output for audit reports.

Trace Labs OSINT Linux Distribution based on Kali.

Main Sigma Rule Repository

Credential and Red Teaming Defense for Windows Environments

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

A bunch of links to blog posts, articles, videos, etc for learning Rust

Library to analyze and collect metrics on source code

Detects usage of unsafe Rust in a Rust crate and its dependencies.

Nidhogg is an all-in-one simple to use windows kernel rootkit.

Troubleshooting bash script for the TryHackMe OpenVPN connection pack

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

A collection of awesome security hardening guides, tools and other resources

Attack and defend active directory using modern post exploitation adversary tradecraft activity

CVE-2022-25636

A curated list of tools for incident response

GoAccess is a real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems or through your browser.