Integrate SmartThings with MyQ (Obsolete)

An experimentation and research platform to investigate the interaction of automated agents in an abstract simulated network environments.

Making Docker and Kubernetes management easy.

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

The Official Hak5 Shark Jack Payload Repository

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Cortex: a Powerful Observable Analysis and Active Response Engine

Windows Templates for Packer: Windows 11, Windows 10, Windows Server 2022, 2019, 2016, also with Docker

Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.

Adversary Tactics - PowerShell Training

(⌐■_■) - Deep Reinforcement Learning instrumenting bettercap for WiFi pwning.

A repository for using osquery for incident detection and response

KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

Proofs of Concept. Just fucking around.

Covenant is a collaborative .NET C2 framework for red teamers.

Sample queries for Advanced hunting in Microsoft 365 Defender

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Slides for COISSA 2019

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Detect Tactics, Techniques & Combat Threats

The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)

A pure Unix shell script implementing ACME client protocol

APT & CyberCriminal Campaign Collection

Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs