Tam M. Quan's Projects
Attack and defend active directory using modern post exploitation adversary tradecraft activity
All Shell In One. Generate Reverse Shells and/or generate single code that runs all the payloads.
Small and highly portable detection tests based on MITRE's ATT&CK.
Web app that provides basic navigation and annotation of ATT&CK matrices
cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources
A curated list of resources related to Industrial Control System (ICS) security.
List of Awesome Red Teaming Resources
Microsoft Azure PowerShell
BloodHound with a twist of cloud
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
Deep learning signal classification using rtl-sdr dongle
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
[Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Open Source Image Module for docxtemplater
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
Playground (and dump) of stuff I make or modify for the Flipper Zero
My last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.
Version 2 of the Graphical Realism Framework for Industrial Control Simulation (GRFICS)
The Havoc Framework.
Internal Network Penetration Test Playbook
OpenCL, SDR, TDD/FDD LTE cell scanner, full stack from A/D samples to SIB ASN1 messages decoded in PDSCH, (optimized for RTL-SDR HACKRF and BladeRF board)
Build Alpine Linux images for LXD
using ML models for red teaming
A helper to run OSINT queries & manage results continuously
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
Basics on commands/tools/info on how to assess the security of mobile applications