Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...

Curated list of project-based tutorials

Cybersecurity oriented awesome list

Lab content for the ExpertsLive Denmark 2026 Identity Masterclass

Python tool for converting files and office documents to Markdown.

Intune Remediations On-Demand with PowerShell. Script execution with a modern WPF GUI and Microsoft Graph API integration.

The Azure Execution Tool

Watcher - Open Source AI-powered Cyber Threat Intelligence & Hunting Platform. Developed with Django & React JS.

C4-PlantUML combines the benefits of PlantUML and the C4 model for providing a simple way of describing and communicate software architectures

Main repository for my technical blog

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect malicious behavior

Curated cyber security resources for blue team, red team, DFIR, OSINT, AppSec, cloud security, security logging, and training.

This is a step-by-step guide to implementing a DevSecOps program for any size organization

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Verizon Burp Extensions: AI Suite

🔒 Keycloak Authentication Provider implementation to get a two factor authentication with a OTP/code/token send via Email (through SMTP)

Keycloak Authenticator for Duo's new Universal Prompt

Different scripts to test Azure technologies using the Azure CLI

Docker image for Phase Two Keycloak distribution

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]

These are the labs for my Intro class. Yes, this is public. Yes, this is intentional.

Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting, helping small to medium-sized organizations se…

Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features from the Office 365 Audit Log.

The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)

Web app that provides basic navigation and annotation of ATT&CK matrices

All Labs of the Security for Developers Training

ThePhish: an automated phishing email analysis tool

The main repository for all the Code Maze guides