SMBeagle - Fileshare auditing tool.

quicmap is a simple yet quic (!) QUIC protocol scanner

Active Directory Generator files for Movement, Pivoting, and Persistence for Pentesters and Ethical Hackers.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Web Application Firewall Testing Framework - Go version

convert GeoLite2-Country v2 DB to GeoIP v1 Country Edition .dat file

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library

A theme for Hugo designed for documentation

🎓 无需编写任何代码即可轻松创建漂亮的学术网站 Easily create a beautiful academic résumé or educational website using Hugo and GitHub. No code.

grep rough audit - source code auditing tool

Sysmon configuration file template with default high-quality event tracing

Segment's Threat Modeling training for our engineers

OWASP CRS (Official Repository)

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

An open source custom password filter DLL and userspace service to better protect / control Active Directory domain passwords.

An information security preparedness tool to do adversarial simulation.

Small and highly portable detection tests based on MITRE's ATT&CK.

Canarytokens helps track activity and actions on your network.

Traps web spiders

A Simple Ransomware Vaccine

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Bloodhound Reporting for Blue and Purple Teams

Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana

Various Payload wordlists

ShellCheck, a static analysis tool for shell scripts

Simple js based storefront demo

A simpler site generator. Transforms a directory of templates (of varying types) into HTML.