Burp Suite Pro
Primary interception proxy for web exploitation with custom extender arsenal.
DocumentationOperational Tools & Frameworks
A curated arsenal of offensive and defensive tooling engineered for precision, stealth, and resilience.
Web Penetration Testing
Assess application security posture with advanced automation and manual exploitation workflows.
OWASP ZAP
Open-source DAST scanner integrated in CI/CD to detect regression vulnerabilities.
DocumentationGraphQL-Map
Playbook-driven exploitation for GraphQL APIs focusing on introspection hardening.
RepositoryNetwork Penetration Testing
Discover, enumerate, and exploit networked assets with stealth and precision.
Nmap + NSE
Advanced reconnaissance & exploitation with tailored NSE scripts for rapid situational awareness.
DocumentationCrackMapExec
Post-compromise Swiss-army knife for Active Directory enumeration and exploitation.
RepositoryResponder
Rogue authentication server to coerce hash leakage across enterprise networks.
RepositoryThreat Hunting
Behavioral detection and anomaly analytics platforms powering continuous hunting operations.
Velociraptor
Endpoint telemetry collection with VQL-driven hunts across hybrid infrastructure.
DocumentationElastic Security
SIEM + EDR with custom detection rules aligning to MITRE ATT&CK tactics.
DocumentationSysmon DeepTrace
Hunting pack leveraging Sysmon telemetry for living-off-the-land detection.
RepositoryIncident Response
Rapid response toolkits to contain, investigate, and eradicate adversaries.
Timesketch
Collaborative forensic timeline analysis accelerating root cause investigations.
DocumentationGRR Rapid Response
Remote live forensics and triage across distributed endpoints with granular control.
DocumentationCyber Triage
Automated evidence scoring prioritizing compromised systems for accelerated containment.
Documentation