Lacus is a capturing system using playwright, as a web service.

AIL framework - Analysis Information Leak framework

Automatically created C2 Feeds

This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.

Live Feed of C2 servers, tools, and botnets

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Full of public notes and Utilities

A (nearly) production ready Dockered MISP

Project for tracking publicly disclosed DLL Hijacking opportunities.

Obfuscate Python Programs

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or…

Purpleteam scripts simulation & Detection - trigger events for SOC detections

This repository is a compilation of all APT simulations that target many vital sectors,both private and governmental. The simulation includes written tools, C2 servers, backdoors, exploitation tech…

🏴‍☠️💰 Another Ransomware gang tracker

VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data exfiltration techniques used by advanced threat actors, allo…