Windows hypervisor for Intel x64: defensive host hypervisor for Windows designed to mitigate kernel-level attacks including BYOVD, compatible with VMware and Hyper-V.

Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.

Venom is a library that meant to perform evasive communication using stolen browser socket

PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.

Sandman is a NTP based backdoor for hardened networks.

Windows rootkit for Intel x64 with 25+ features, demonstrating rootkit techniques compatible with all Windows 10 and Windows 11 versions.

Moxy is an open-source DAST tool designed for modern web application security testing. It provides an easy-to-use interface with agentic capabilities to assist and automate pentesting workflows.

Asclepius validates backup integrity by restoring files and actively testing their recoverability. Instead of trusting metadata, it attempts to parse real file formats (documents, images, archives,…

OsDevil is a lightweight AI agent that converts natural language into operating system commands, enabling automation across development, operations, and DevSecOps workflows

LLM-as-a-Judge security layer for Microsoft Copilot Studio agents

End-to-end, code-first tutorials for building production-grade GenAI agents. From prototype to enterprise deployment.

This repository contains Cursor Security Rules designed to improve the security of both development workflows and AI agent usage within the Cursor environment. These rules aim to enforce safe codin…

ClamAV MCP Server to scan files for viruses

A2A Flask easy to use client