HackMap — a local pentest mapping tool with real-time command execution, persistent history per target, visual attack paths, and one-click PDF reporting. Run on localhost only. No auth. Pure power.

JavaScript 43 3 Updated Mar 12, 2026

wietze / lnk-it-up

Project for generating and identifying deceptive LNK files.

Python 295 42 Updated Mar 8, 2026

cisco-foundation-ai / PEAK-Assistant

An AI-backed threat hunting assistant that aligns to the PEAK framework.

Python 28 4 Updated Jan 30, 2026

matthieugras / timeline-downloader

Go 80 5 Updated Feb 4, 2026

meeb / bandcampsync

Downloads your Bandcamp purchases automatically

HTML 313 23 Updated Feb 9, 2026

Logisek / AfterShell

Fast Windows post-exploitation wins after initial access.

C# 29 1 Updated Jan 28, 2026

Macmod / flashingestor

A TUI for Active Directory collection.

Go 130 9 Updated Mar 11, 2026

Nebulock-Inc / agentic-threat-hunting-framework

ATHF is a framework for agentic threat hunting - building systems that can remember, learn, and act with increasing autonomy.

Python 205 30 Updated Mar 9, 2026

Neo23x0 / Loki-RS

🐍 High-performance, multi-threaded YARA & IOC scanner

Rust 277 21 Updated Mar 11, 2026

JumpsecLabs / TokenFlare

Serverless AITM Simulation Framework for Entra ID and M365

Python 215 30 Updated Dec 29, 2025

NateHutch365 / MDEValidator

PowerShell 40 3 Updated Mar 12, 2026

Semperis / EntraGoat

A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.

PowerShell 912 87 Updated Jan 15, 2026

caelestia-dots / caelestia

A very segsy rice

TypeScript 2,424 207 Updated Mar 11, 2026

Stewart86 / hamr

Hamr is an extensible launcher for Wayland built with rust and gtk layer shell. Extend it with plugins that can be written in any languages.

Rust 333 7 Updated Mar 11, 2026

Bert-JanP / KustoHawk

KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Microsoft Sentinel environments.

PowerShell 136 20 Updated Jan 11, 2026

Sw4mpf0x / PowerLurk

Malicious WMI Events using PowerShell

PowerShell 397 67 Updated Jul 25, 2016

0x4m4 / hexstrike-ai

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

Python 7,408 1,627 Updated Mar 6, 2026

d4rksystem / VMwareCloak

A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.

PowerShell 428 67 Updated Jan 25, 2025

R3DRUN3 / magnet

Purple-team telemetry & simulation toolkit.

Rust 110 8 Updated Dec 16, 2025

BlakeHensleyy / kql-tester

KQL Quality Assurance tests

Python 5 Updated Sep 18, 2025

trustedsec / Titanis

Windows protocol library, including SMB and RPC implementations, among others.

C# 685 72 Updated Mar 9, 2026

badsectorlabs / ludus_adaptix_c2

An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts

Jinja 179 19 Updated May 28, 2025

noodlemctwoodle / Sentinel-As-Code

An automation framework for deploying Microsoft Sentinel environments using pipelines. This project combines infrastructure-as-code (Bicep) with PowerShell automation to streamline the deployment o…

PowerShell 23 14 Updated Jul 31, 2025

tijme / dittobytes

Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.

C++ 606 68 Updated Feb 2, 2026

MHaggis / MSIXBuilder

MSIX Building Made Easy for Defenders

PowerShell 64 6 Updated Aug 25, 2025

rcegan

Lists (11)

blue

cool stuff

dangerous

deteng

funky ai garbage

IR

Obsidian

OSINT

Sentinel

splunk

Threat emulation

Stars