Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

Some scripts useful for red team activities

An introduction to Active Directory security

Azure JWT Token Manipulation Toolset

Testimo is a PowerShell module for running health checks for Active Directory against a bunch of different tests

Create fake certs for binaries using windows binaries and the power of bat files

NetSPI PowerShell Scripts

Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories, installed services, the registry and running drivers for th…

Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant

CONVEX is a group of CTFs that are independently deployable into participant Azure environments.