defcon27_csharp_workshop. Writing custom backdoor payloads with C# - Defcon 27 Workshop
1.2kPurpleSharp. PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
847BadZure. BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse entities and configurable, traversable attack paths.
511msInvader. M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response capabilities.
329Oriana. Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
174PurpleTeamPlaybook. Active Directory Purple Team Playbook
116attack2jira. attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
115PurpleSpray. PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpose of generating attack telemetry in properly monitored Windows enterprise environments
51SharpShareFinder. SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveraging .NET parallelism.
36Talks-Presentations. Resource links (video, slides & code) for my conference talks | presentations | workshops
20Invoke-SMBLogin. Validates username & password combination(s) across a host or group of hosts using the SMB protocol.
15Simplant. Command & Control Implant Simulator
3mvelazc0.
1