intercake

croc

Easily and securely send things from one computer to another :crocodile: :package:

GHunt

🕵️‍♂️ Offensive Google framework.

fq

jq for binary formats - tool, language and decoders for working with binary and text formats

Havoc

The Havoc Framework.

dim

Dim, a media manager fueled by dark forces.

yaade

Yaade is an open-source, self-hosted, collaborative API development environment.

PowerSharpPack

Harden-Windows-Security

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Personal, Enterprise, Government and Military security levels | Read The Rationale https://github.com/HotCakeX/Harden-Windows-Security/blob/main/Rationale.md

APT-Hunter

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

untitledgoosetool

Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azure Active Directory (AzureAD), Azure, and M365 environments.

o365recon

retrieve information via O365 and AzureAD with a valid cred

Mandiant-Azure-AD-Investigator

onedrive_user_enum

onedrive user enumeration - pentest tool to enumerate valid o365 users

EnableWindowsLogSettings

Documentation and scripts to properly enable Windows event logs.

KQL

Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.

MAAD-AF

MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

LightsOut

Generate an obfuscated DLL that will disable AMSI & ETW

steam-lancache-prefill

CLI tool to automatically prime a Lancache with Steam games

ScrapingKit

Scraping Kit is made up of several tools for scraping services for keywords, useful for initial enumeration of Domain Controllers or if you have popped a user's desktop and their outlook client.

PurpleKeep

Providing Azure pipelines to create an infrastructure and run Atomic tests.

AzureADRoleMonitor

gogrow

The GoGrow planning, homesteading, and image annotation app

DeveLanCacheUI_Backend

A UI for Lan Cache

ThreatSim

Threat Simulator for Enterprise Networks

canarytokendetector

Detect and remove the presence of canary tokens

AzureLogLibrary

AzureLogLibrary - repository used for Azure logging with ARM-templates, scripts, documentation to deploy DCRs, extensions, etc

splunk-downloader

A tiny script to help you download Splunk installers.

lsi-sas92xx-m1015-flash-firmware

The full bootable filesystem needed to reset & flash an LSI SAS92xx M1015 SAS controller card (eg, to IT mode), bootable in both DOS & UEFI

Groppy

Facilitating regex creation and deploying custom grok patterns in an ELK environment 🦌📜

MicrosoftSentinel

Bits of knowledge related to MS Sentinel