The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems.

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data exfiltration techniques used by advanced threat actors, allo…

An open-source self-hosted purple team management web application.

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

the LLM vulnerability scanner

game of active directory

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

A broken-by-design Azure environment to practice and train security skills in the cloud domain.

An Ansible collection that installs an ADFS deployment with optional configurations.

Sleep obfuscation

Agentic LLM Vulnerability Scanner / AI red teaming kit

DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Automation for internal Windows Penetrationtest / AD-Security

Automation to assess the state of your M365 tenant against CISA's baselines

Nuke It From Orbit - remove AV/EDR with physical access

Peirates - Kubernetes Penetration Testing tool

Azure Data Exporter for BloodHound

GrimoireLab: platform for software development analytics and insights

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

An offensive security toolset for Microsoft 365 focused on Microsoft Copilot, Copilot Studio and Power Platform

Generate datasets of cloud audit logs for common attacks

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps C…