💬 Telegram bot with ChatGPT, Python-based, using OpenAI's API.

A collection of agents that use Large Language Models (LLMs) to perform tasks common on our day to day jobs in cyber security.

Cross-projects Repository permissions enumeration Tool for Azure DevOps

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

Collection of Beacon Object Files (BOF) for Cobalt Strike

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Azure DevOps Python API

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

APT & CyberCriminal Campaign Collection

Tool to detect secrets in source code management systems.

A curated list of awesome resources related to Mitre ATT&CK™ Framework

Excludarr manages your libraries in Radarr/Sonarr. It keeps track of your library and checks if your movies and series are also available on a configured streaming provider. It can exclude the movi…

Lookup for interesting stuff in SMB shares

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

Project for tracking publicly disclosed DLL Hijacking opportunities.

Purple Team Exercise Framework

Everything I needed to understand what was going on with "Spring4Shell" - translated source materials, exploit, links to demo apps, and more.

Nim-based assembly packer and shellcode loader for opsec & profit

A .NET Runtime for Cobalt Strike's Beacon Object Files

ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

ATTENTION. This branch is no longer maintained. See fork by TedTolboom for the latest. Homey App to add support for MOTION Blinds. Motion products are developed by Coulisse and can be found in wind…

Python library for interfacing with Motion Blinds

The swiss army knife of LSASS dumping

A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

Password Hunter in Active Directory

Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs