GUAC represents Graph for Understanding Artifact Composition. Note: GUAC is under active development - if you are interested in contributing,…
Get-AppLockerEventlog script will parse all the channels of events from the win-event log to extract all the log relatives to…
Lateral movement analyzer (LATMA) collects authentication logs from the domain and searches for potential lateral movement attacks and suspicious activity.…
PowerHuntShares is design to automatically inventory, analyze, and report excessive privilege assigned to SMB shares on Active Directory domain joined…
KRIe is a research project that aims to detect Linux Kernel exploits with eBPF. KRIe is far from being a…
Bkcrack is a Crack legacy zip encryption with Biham and Kocher's known plaintext attack. A ZIP archive may contain many…
SQLiDetector is a simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by…
Popeye is a utility that scans live Kubernetes cluster and reports potential issues with deployed resources and configurations. It sanitizes…
Tai-e (Chinese: 太阿; pronunciation: [ˈtaɪə:]) is a new static analysis framework for Java (please see our technical report for details),…
DragonCastle is a PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process. Description…