OID-See is an identity attack surface mapping tool that models OAuth trust, persistence, and impersonation paths in Entra using a graph-based approach.

The script and configuration files in this repository provide an easy method to customize and apply performance related settings to Windows Client and Server desktop environments.

Discover gaps in Entra Conditional Access policies before attackers do

Automated ACME SSL/TLS certificate management built around Azure Key Vault

BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.

A C# light executable that read Windows 11 Notes from TabState directory.

Microsoft Entra Agent Identity

Powershell module to get the Intune LAPS Username and Password easily from the tenant

evilwaf is a penetration testing tool designed to detect and bypass common Web Application Firewalls (WAFs).

A BloodHound OpenGraph collector that models Windows local privilege escalation as interconnected attack paths.

A BloodHound collector written in Go that discovers Linux and SSH attack paths. Outputs OpenGraph JSON and integrates with existing SharpHound and AzureHound data.

Browser extension that shows a popup and notifications when the site, product, or service you're viewing has an article on the Consumer Rights Wiki.

OpenViking is an open-source context database designed specifically for AI Agents(such as openclaw). OpenViking unifies the management of context (memory, resources, and skills) that Agents need th…

The best ChatGPT that $100 can buy.

Test your prompts, agents, and RAGs. Red teaming/pentesting/vulnerability scanning for AI. Compare performance of GPT, Claude, Gemini, Llama, and more. Simple declarative configs with command line …

π RuView: WiFi DensePose turns commodity WiFi signals into real-time human pose estimation, vital sign monitoring, and presence detection — all without a single pixel of video.

This tool is designed to assist you in analyzing issues related to Defender for Endpoint on your local endpoint. It offers a centralized view of the security configuration, log files, updates, and …

Lab content for the ExpertsLive Denmark 2026 Identity Masterclass

List of Computer Science courses with video lectures.

Zero-dependency Linux memory forensics PoC — leverages kernel-embedded BTF and kallsyms for type-aware memory analysis without external debug info.

A powershell module for working with remote files on webDAV instances

The standard Go net.Conn interface using Azure Storage services as the transport layer.

Defeating Windows User Account Control

Stop Microsoft 365 configuration drift before it becomes a breach

A PowerShell tool to identify and audit user-consented applications in Microsoft Entra ID (Azure AD), with a focus on uncovering "Shadow IT" and security risks.

Shannon Lite is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities bef…