Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

game of active directory

Automation for internal Windows Penetrationtest / AD-Security

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

HardeningKitty and Windows Hardening Settings

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

Automation to assess the state of your M365 tenant against CISA's baselines

Monkey365 provides a tool for security consultants to easily conduct not only Microsoft 365, but also Azure subscriptions and Microsoft Entra ID security configuration reviews.

Tooling for assessing an Azure AD tenant state and configuration

PEN-300 collection to help you on your exam.

Red Team Attack Lab for TTP testing & research

Amsi Bypass payload that works on Windwos 11

VOYEUR's main purpose is to generate a fast (and pretty) Active Directory report. The tool is developed entirely in PowerShell (a powerful scripting language) without dependencies (just .Net Framew…

Active Directory Cheat Sheet

CONVEX is a group of CTFs that are independently deployable into participant Azure environments.

A collection of code snippets built to assist with breaking chains.

Completely Risky Active-Directory Simulation Hub

The Windows Malware Analysis Reversing Core Tools

Azure AD enumeration over MS Graph

PowerShell Reverse Shell

Microsoft Entra ID Security Assessment Tool

Repo to hold my PowerShell Scripts