Pinned Repositories
attack2jira
attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
BadZure
BadZure orchestrates the setup of Azure AD tenants, populating them with diverse entities while also introducing common security misconfigurations to create vulnerable tenants with multiple attack paths.
defcon27_csharp_workshop
Writing custom backdoor payloads with C# - Defcon 27 Workshop
msInvader
M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.
Oriana
Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
PurpleSharp
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
PurpleSpray
PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpose of generating attack telemetry in properly monitored Windows enterprise environments
PurpleTeamPlaybook
Active Directory Purple Team Playbook
Talks-Presentations
Resource links (video, slides & code) for my conference talks | presentations | workshops
mvelazc0's Repositories
mvelazc0/defcon27_csharp_workshop
Writing custom backdoor payloads with C# - Defcon 27 Workshop
mvelazc0/PurpleSharp
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
mvelazc0/BadZure
BadZure orchestrates the setup of Azure AD tenants, populating them with diverse entities while also introducing common security misconfigurations to create vulnerable tenants with multiple attack paths.
mvelazc0/Oriana
Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
mvelazc0/attack2jira
attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
mvelazc0/PurpleTeamPlaybook
Active Directory Purple Team Playbook
mvelazc0/msInvader
M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.
mvelazc0/PurpleSpray
PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpose of generating attack telemetry in properly monitored Windows enterprise environments
mvelazc0/SharpShareFinder
SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveraging .NET parallelism.
mvelazc0/Invoke-SMBLogin
Validates username & password combination(s) across a host or group of hosts using the SMB protocol.
mvelazc0/Talks-Presentations
Resource links (video, slides & code) for my conference talks | presentations | workshops
mvelazc0/mvelazc0
mvelazc0/Simplant
Command & Control Implant Simulator