Compress tool outputs, logs, files, and RAG chunks before they reach the LLM. 60-95% fewer tokens, same answers. Library, proxy, MCP server.

This tool emulates an EMV-CAP device, to illustrate the article "Banque en ligne : à la decouverte d'EMV-CAP" published in MISC, issue #56

A lightweight PowerShell tool for assessing the security posture of Microsoft Entra ID environments. It helps identify privileged objects, risky assignments, and potential misconfigurations.

Tool to statically recompile N64 games into native executables

A C99 implementation of the Consistent Overhead Byte Stuffing ("COBS") algorithm.

DCOM in memory and fileless lateral movement techniques through .Net deserilization

Visa Vulnerability Agentic Harness

Windows mTLS proxy

Dear ImGui: Bloat-free Graphical User interface for C++ with minimal dependencies

Technical Reference to multiple relay techniques

A community-driven collection of BloodHound queries

Per-process network monitoring for your terminal with deep packet inspection. Cross-platform, sandboxed.

USB Army Knife – the ultimate close access tool for penetration testers and red teamers.

Themida 3.x research

This repo contains the results of an internal re-write of impacket I undertook at my current company. It contains some of the IoCs found within the library

claude-red is a curated library of offensive security skills designed for the Claude skills system. Each skill is a structured SKILL.md file that primes Claude with expert-level methodology for a s…

Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.

Convert OCI images into polyglot ELF+tar executables that run without Docker

DNS-Blocklists: For a better internet - keep the internet clean!

Android Wiki of Attacks, Knowledge & Exploits

A BloodHound OpenGraph collector that models Windows local privilege escalation as interconnected attack paths.

Robust Speech Recognition via Large-Scale Weak Supervision

C library for generating audio fingerprints used by AcoustID

BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055, CVE-2026-3609, CVE-2026-8501).

Generalized Wi-Fi Client Isolation Bypasses

Windows x64 indirect syscall lib for maldev with no_std supporting

Fast service fingerprinting CLI for 170+ protocols (TCP/UDP/SCTP) - built by Praetorian

Pure Python implementation of UE5 network protocol

Inter-binary control flow graphing

A collection of Azure AD/Entra tools for offensive and defensive security purposes