The open source coding agent.

Browse and diff ETW provider snapshots across Windows builds. Backed by ETWInspector.

A POC tool for exploring dev-tunnels

Browser extension blocking scam and phishing pages https://chromewebstore.google.com/detail/nehboro/ljgklnaofelbcnegjniagpmjknkmaiom

Open platform for sharing confirmed Malware samples

Open platform for sharing malware distribution sites

FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.

Browser extension for full HTTP header spoofing. 1000+ User-Agent presets, Client Hints stripping, screen/network/IP geo-spoofing, per-site profile routing, and a fingerprint consistency checker th…

ThreatCheck - Select any indicator of compromise on any web page - or highlight an entire paragraph from a threat report - and instantly extract and look up every IOC across multiple platforms. No …

A native browser extension that detects and block malicious extensions using the ExtSentry community threat feed

Customer feedback and issue tracker repository for Visual Studio Marketplace

The most comprehensive and up-to-date TOR node intelligence feed available. Every IP that has ever operated as a TOR relay is indexed with full historical timeline

Browser Extension Threat Intelligence feed - extsentry.github.io

Living of the Land of Free SaaS

TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE ATT&CK®.

Living off the land Data Exfiltration methods

Docs and samples for privileged identity and access management in Microsoft Azure and Microsoft Entra.

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Red team tool for abusing Commvault to achieve lateral movement, persistence, and file collection.

This project aims to be a drop-in replacement for the certstream server by Calidog. This tool aggregates, parses, and streams certificate data from multiple certificate transparency logs via websoc…

A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

Public repository of Sigma and YARA rules created by Synacktiv

Sublime rules for email attack detection, prevention, and threat hunting.

Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology

Stakeholder-Specific Vulnerability Categorization