Tam M. Quan's repositories
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
attack-navigator
Web app that provides basic navigation and annotation of ATT&CK matrices
azure-powershell
Microsoft Azure PowerShell
C2-Tool-Collection
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
cnn-rtlsdr
Deep learning signal classification using rtl-sdr dongle
Empire
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
Flipper
Playground (and dump) of stuff I make or modify for the Flipper Zero
FYI
My last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.
Havoc
The Havoc Framework.
Internal-Pentest-Playbook
Internal Network Penetration Test Playbook
malicious_models
using ML models for red teaming
Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Osmedeus
Fully automated offensive security framework for reconnaissance and vulnerability scanning
owasp-masvs
The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.
pentest-reports
Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.
pwndoc
Pentest Report Generator
pwndoc-ng
Pentest Report Generator
random_c2_profile
Cobalt Strike random C2 Profile generator
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
rootAVD
Script to root AVDs running with QEMU Emulator from Android Studio
SharPyShell
SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
sheye
Opensource assets and vulnerability scanning tool
telive
Tetra live monitor
the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.