TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events in AWS.

🔎 Static code analysis engine to find security issues in code.

Run Arch Linux ARM on Your Chromebook

Build mindmaps with plain text

RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and add reviewers. RedFlag's flexible configuration makes it va…

An Open-source Framework for Human Understanding, Meaning, and Progress.

Multi-Cloud Security Auditing Tool

A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfvenom) by performing on-the-fly decryption of individual encry…

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

Multimodal LLM agent for HPO

Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging

Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it wi…

An offensive security password spraying tool

Dump cookies and credentials directly from Chrome/Edge process memory

Because AV evasion should be easy.

DomainCheck is designed to assist operators with monitoring changes related to their domain names. This includes negative changes in categorization, VirusTotal detections, and appearances on malwar…

BloodyAD is an Active Directory Privilege Escalation Framework

macOS Offensive Tools

Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.

Rust Weaponization for Red Team Engagements.

A BOF that runs unmanaged PEs inline

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

A curated list of awesome AI Red Teaming resources and tools.

SSHD Based implant supporting tunneling mecanisms to reach the C2 (DNS, ICMP, HTTP Encapsulation, HTTP/Socks Proxies, UDP...)

TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.

Tools and blogs I use to perform GCP red teams

GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments

Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.