Cloud-native SIEM for intelligent security analytics for your entire enterprise.

M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response capabilities.

Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling

Repository hosting a static list of Microsoft First party apps and Graph permissions that's updated daily

Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as well as a blueprint for how others can create and use cloud an…

Open Dataset of Cobalt Strike Beacon metadata (2018-2022)

Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment.

SQL powered operating system instrumentation, monitoring, and analytics.

Main Sigma Rule Repository

Splunk Security Content

A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

Small and highly portable detection tests based on MITRE's ATT&CK.

Paskto - Passive Web Scanner

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Repository of yara rules

Mostly all pictures, videos, documents taken with a smartphone, or created with a computer will have metadata associated with it.  Some of this metadata allows us to create maps and timelines of wh…