Pinned Loading

1. rpcfirewall-blue-detection-block-filter-malicious-RPC-callsrpcfirewall-blue-detection-block-filter-malicious-RPC-callsPublic

   Forked from zeronetworks/rpcfirewall

   C++

2. TeamFiltration-red-ad-enum-attack-backdoor-o365-aadTeamFiltration-red-ad-enum-attack-backdoor-o365-aadPublic

   Forked from Flangvik/TeamFiltration

   TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

   C#

3. NativeBypassCredGuard-lsass-red-bypass-patch-wdigest-dllNativeBypassCredGuard-lsass-red-bypass-patch-wdigest-dllPublic

   Forked from ricardojoserf/NativeBypassCredGuard

   Bypass Credential Guard by patching WDigest.dll using only NTAPI functions

   C++

4. plaguards-blue-deobfuscator-powershellplaguards-blue-deobfuscator-powershellPublic

   Forked from baycysec/plaguards

   Plaguards: Open Source PowerShell Deobfuscation and IOC Detection Engine for Blue Teams. [Presented at Black Hat Asia 2025 Arsenal]

   Python

5. OUned-red-DACL-abuse-via-manipulating-Gplink-attack-exploit-AD-OU-units-defcon33OUned-red-DACL-abuse-via-manipulating-Gplink-attack-exploit-AD-OU-units-defcon33Public

   Forked from synacktiv/OUned

   The OUned A D Org Units ACL exploitation through gPLink poisoning

   Python 1

6. dockerscan-blue-red-ng-security-scanner-prodready-CIS-NIST-sp800-190-plus-real-work-attack-patternsdockerscan-blue-red-ng-security-scanner-prodready-CIS-NIST-sp800-190-plus-real-work-attack-patternsPublic

   Forked from cr0hn/dockerscan

   The Most Comprehensive Docker Security Scanner

   Go