ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

A repository of Security Engineering exercises: these exercises are designed to prepare you for interviews.

Multi-Stage Supply-Chain Malware Scanner & Code Forensics

MITRE ATT&CK-based adversary simulation framework for automated attack scenarios, red team workflows, and security validation.

End-to-end supply chain security demo using Flask, Syft (SBOM), Cosign (image signing), and GitHub Actions.

🛡️ Professional vulnerability scanner using OSV.dev API | Interview demonstration project showcasing API integration, security engineering, and Docker deployment | Visit maxrenke.com for more projects

Intern-realistic threat hunting & detection engineering lab using Linux host and network telemetry. Builds explainable detections for credential access, persistence, and suspicious outbound activity with auditable outputs.

A Flask-based attack surface visibility and risk assessment tool with multithreaded port scanning and threat simulation.

Software supply-chain security domain repository delivering modular components for artifact signing, build attestation, provenance tracking, SBOM generation, policy enforcement, and runtime integrity — designed to enable verifiable, tamper-resistant delivery pipelines.

Model Context Protocol (MCP) server for AWS Network Engineering. Uses NetworkX to build a directed graph of VPC infrastructure (SGs, NACLs, Route Tables), enabling deterministic reachability reasoning and 'shadow path' detection for AI agents.

Toy governance CLI demo: deny-by-default “danger actions” gated by signed, expiring capability leases (global revoke-all + nonce revoke) plus guarded memory quarantine. Simulation-only: no real network/shell/files. Includes tripwire + tests to prevent misuse.

A Python tool that analyzes a local Linux system to identify privilege escalation risks by correlating misconfigurations, without exploitation.

Adaptive threat detection backend with behavioral trust modeling, MITRE ATT&CK mapping, and automated SOC-style triage.

A pure-Python, educational implementation of a 128-bit symmetric block cipher based on the Feistel Network architecture. Features mathematically derived S-boxes, CBC/CTR modes, and robust Type hinting.

🎯 Simulate real-world cyber attacks using a modular framework aligned with MITRE ATT&CK to test defenses and improve security strategies.

SOC - style Python log analyzer with brute force and password spraying detection

Bayesian-inspired Impact Forecast Algorithm (IFA) for quantifying material impact risk