Firefox port of Phantom Noise — decoy traffic generator to frustrate ad-tech profiling (Manifest V2, browser.* API). Ported from the original Chrome extension.

Use Claude Code as the foundation for coding infrastructure, allowing you to decide how to interact with the model while enjoying updates from Anthropic.

Bring back Clippy on Windows 10/11!

My Notes about Penetration Testing

Azure Security Resources and Notes

Building a consolidated RSS feed for articles about cyberattacks

Compiled Binaries for Ghostpack

Node graphs, OSINT data mining, and plugins. Connect unstructured and public data for transformative insights. The rewrite can be found @ osintbuddy/osintbuddy

An XSS exploitation command-line interface and payload generator.

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

Tools and Techniques for Red Team / Penetration Testing

A small shellcode loader library written in C#

The Havoc Framework

More examples using the Impacket library designed for learning purposes.

GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements

A cybersecurity game in Azure Data Explorer

Arsenal is just a quick inventory and launcher for hacking programs

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.

Data Analysis and Scripts

A cheat sheet that contains advanced queries for SQL Injection of all types.

Gather and update all available and newest CVEs with their PoC.

General purpose JavaScript deobfuscator

Some of my publicly available Malware analysis and Reverse engineering.

PeTeReport is an open-source application vulnerability reporting tool.

the transparent ransomware claim tracker 🥷🏼🧅🖥️

Collection of Cyber Threat Intelligence sources from the deep and dark web