AAPP‑MART (AI-Autonomous Attack Path Prediction & Multi‑Agent Red Team Simulation Engine) is designed for attack simulation, automated threat modeling, adversary emulation, attack graph analysis, risk scoring, and enterprise‑grade cybersecurity validation, intelligence aligned with MITRE ATT&CK and cyber resilience.

🛡️ Active Directory attack path collector and analyzer. Map AD, uncover privilege paths, and visualize attack surfaces. Fully offline and transparent.

Cloud Identity Security Engineering — Go-based security research and tooling for AWS IAM attack-path analysis, privilege escalation detection, and CloudTrail-based detection engineering.

A graph-first, agentic security framework for AWS that models cloud environments as attack graphs. Leverages LangGraph and Neo4j to perform recursive attack path analysis and autonomous remediation reasoning. Designed for the 'Assumed Breach' era.

Cloud Security Posture Management (CSPM) platform that maps AWS misconfigurations to MITRE ATT&CK techniques, attack paths, blast radius risk, and CIS/NIST/SOC2/PCI compliance controls.

Graph-based cyber attack propagation and blast radius simulator for enterprise environments. Models lateral movement, privilege escalation, and remediation impact using attack graphs.

This repository contains a vulnerability scanner mapped to the MITRE ATT&CK framework, featuring an animated, single-page web dashboard. Core Technologies: Python, Flask, Nmap (python-nmap), HTML/CSS/JS.

Research-preview AWS IAM reasoning tool with bounded evidence, deterministic findings, and explicit non-claims.

SAGE - An autonomous AI-assisted application security platform that converts repositories into interactive knowledge graphs, correlates NVD CVEs with code-level reachability, performs exploitability analysis using LLMs, generates remediation patches, validates fixes through testing and Semgrep, and automatically creates GitHub pull requests

BloodHound Attack Path Enumerator

Context-aware vulnerability prioritization with attack-path chaining. Self-hosted, no lock-in, swap any scanner.

위협 경로 탐색기

High-signal, read-only IAM analysis tool that detects privilege escalation paths via Service Account impersonation and trust overlap in Google Cloud.

Monitor your cloud assets.

PivotMap is an open-source attack path intelligence engine for offensive security teams. It ingests scan results, correlates vulnerabilities, builds a directed attack graph, and identifies realistic compromise paths. PivotMap focuses on reasoning, not scanning.

Active Directory attack-path analysis lab simulating an internal penetration test. Includes LDAP, Kerberos, SMB enumeration, BloodHound graph analysis, privilege escalation reasoning, and professional documentation of security misconfigurations in a controlled lab environment.

Defensive AD and Microsoft Entra ID exposure analyzer with identity risk detections, app permission review, Conditional Access checks, graph-based privilege paths and JSON reports.

Offline-first AWS IAM attack-path analysis engine