Advanced Windows PE Injector (x86/x64, C++17, MSVC 19+). Manual mapping of DLLs (Run export call) + full EXE injection into svchost.exe. Direct syscall stubs, PPID spoofing (explorer.exe), randomiz…

Marlowe AI Governance Application

This repo is specifically created for NullCon 2026 Goa - workshop on Building & Breaking MCP servers!

Please no pull requests for this repository. Thanks!

Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!

Rust Security Engineering and Offensive Tooling

A tool used to obfuscate python scripts, bind obfuscated scripts to fixed machine or expire obfuscated scripts.

EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.

Add any Program in any language you like or add a hello world Program ❣️ if you like give us ⭐

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

PowerShell for CrowdStrike's OAuth2 APIs

Darklaf - A themeable swing Look and Feel based on Darcula-Laf

Automated Android custom unpacker generator

Adversary Emulation Framework

Wiki to collect Red Team infrastructure hardening resources

Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

CrowdStrike Falcon Queries For Advanced Threat Detection

kadimus is a tool to check and exploit lfi vulnerability.

ZAP Add-ons

Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

A critical security vulnerability, identified as CVE-2023-50164 (CVE: 9.8) was found in Apache Struts, allowing attackers to manipulate file upload parameters that can potentially lead to unauthori…

Reverse engineering focusing on x64 Windows.

An OOB interaction gathering server and client library

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Multi Vagrant environment with Active Directory

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️