a tool to help operate in EDRs' blind spots

A simple page to generate TOTP for peer authentication in the post-truth world

.NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS

This repo is about Active Directory Advanced Threat Hunting

SwiftUI gatekeeper configuration GUI

DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!

cryptgeon is a secure, open source note / file sharing service inspired by PrivNote written in rust & svelte.

A web honeypot library to create vulnerable-looking endpoints to detect and mislead attackers

TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of t…

S.U.P.E.R.M.A.N. optimizes the macOS software update experience.

A tool for encouraging the installation of macOS security updates.

Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.

This repository contains a comprehensive set of Conditional Access (CA) policies and PowerShell management tools for Microsoft Entra ID (formerly Azure AD), designed to enhance your organization's …

A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities

CVE Alerting Platform

C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.

ObjectiveC CLI tool for interacting with macOS Keychain

Prompt, run, edit, and deploy full-stack web applications using any LLM you want!

Developer Cockpit

Simple & Powerful PowerShell Script Obfuscator

A user-friendly solution to transfer files through a physical diode using the Lidi utility, complete with data retention, file history, user accounts and admin management. Provides a scriptable API…

A binary authorization and monitoring system for macOS

Manage your macOS startup items.

Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system. By default, Vanir pulls up-to-date CVEs from Open Source V…

macOS app to create standard or customized configuration profiles.

Interact with Chromium-based browsers' debug port to view open tabs, installed extensions, and cookies

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

macOS Initial Access Payload Generator