Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

An offensive security toolset for Microsoft 365 focused on Microsoft Copilot, Copilot Studio and Power Platform

DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.

Spartacus DLL/COM Hijacking Toolkit

A cheatsheet for NetExec

A collection of Powershell scripts that will help automate the build process for a Marvel domain.

tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"

BloodyAD is an Active Directory Privilege Escalation Framework

A toolset to make a system look as if it was the victim of an APT attack

Public content repo for ATA documentation in OPS

A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)

This Repo serves as a collection of shared security and penetration testing resources for the cloud.

A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4

CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code

Generate CloudFormation / Terraform / Troposphere templates from your existing AWS resources.

Reads from existing public and private cloud providers (reverse Terraform) and generates your infrastructure as code on Terraform configuration

My dotfiles and development configurations

🙃 A delightful community-driven (with 2,400+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python…

Azure Security Resources and Notes

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

game of active directory

Lord Of Active Directory - automatic vulnerable active directory on AWS