Ralph is an autonomous AI agent loop that runs repeatedly until all PRD items are complete.

Daemon to ban hosts that cause multiple authentication errors

Resources to learn AI

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log ag…

The Systems Thinker's Deterministic Claude Code Control Plane

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

A curated list of annual cyber security reports

OID-See is an identity attack surface mapping tool that models OAuth trust, persistence, and impersonation paths in Entra using a graph-based approach.

A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat intelligence.

Azure Red Team tool for graphing Azure and Azure Active Directory objects

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Azure Data Exporter for BloodHound

Find, verify, and analyze leaked credentials

Experience macOS just like before

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

No longer maintained. Please refer to Google Threat Intelligence / Virus Total collections.

A resource containing all the tools each ransomware gangs uses

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Tool to spray AWS Console IAM Logins

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Canarytokens helps track activity and actions on your network

Modular and decentralised honeypot

A Post-exploitation Toolset for Interacting with the Microsoft Graph API

Detect leaked secrets + live validation. Map blast radius across your stack. Revoke fast. 950+ rules.

🐬 Feature-rich, stable and customizable Flipper Firmware

Bundle of external apps tweaked for Momentum Firmware

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud