DoOS
Department of Offensive Security
We research, build, and maintain custom tradecraft and offensive tooling for disciplined, high-fidelity simulations and assessments—scoped, documented, and aligned to your environment.
What DoOS delivers
Internal offensive security R&D that powers realistic, authorized testing—not generic tooling dropped on your network.
Custom tradecraft
Scenarios and techniques tuned to your stack and risk priorities—not generic playbooks disconnected from your environment.
Tooling & automation
Capabilities that improve repeatability, safety, and evidence quality during authorized exercises and assessments.
Sustained engineering
Ongoing maintenance as platforms, identity systems, and defenses evolve so engagements stay realistic and defensible.
Inside the department
How DoOS connects research to the engagements and training Evaluris delivers
Engineering for real operators
DoOS develops and sustains capabilities that mirror real adversary behavior while staying within strict rules of engagement—supporting red teaming, adversary simulation, purple teaming, and specialized assessments.
Research & development
DoOS turns lessons from the field and threat intelligence into controlled techniques and tooling—always within agreed rules of engagement.
Delivery alignment
Engineering works alongside engagement leads so tradecraft matches your objectives: scope, safety rails, and the evidence your stakeholders need.
Outcomes are designed for actionable evidence: clear narratives for leadership, reproduction steps for engineers, and handoff paths into remediation and detection engineering—not generic scanner output alone.
Open source from DoOS
DoOS also releases select open-source projects for the security community—utilities, references, and harnesses we believe are appropriate to share publicly, with clear documentation and scope. Not everything we build belongs in the open; what you see here is intentionally curated.
Legal use only
All DoOS open-source materials are provided for lawful, authorized security research, education, and defensive purposes only. You are responsible for complying with applicable laws, regulations, and contractual rules—including obtaining explicit written authorization before testing or using capabilities against any system you do not own or have permission to assess. Evaluris does not condone or support misuse; use at your own risk.
If you are unsure whether a use case is authorized, stop and obtain legal and stakeholder sign-off first.
Community tools
claude-active-directory
AI agent harness for Active Directory offensive security—skill domains, slash commands, and ROE-aware orchestration for authorized work.
Authorization & ethics
How we frame offensive capability at Evaluris
Authorized use only
All DoOS capabilities are developed and used only for authorized security work—under written contracts, agreed scope, and applicable law. We do not develop or distribute capabilities for unauthorized access or misuse.
If you are scoping an engagement or training program that requires deep tradecraft or custom tooling, include DoOS requirements in your request so we can align engineering effort with your objectives and constraints.
Ready to scope with DoOS?
Tell us about your environment, timelines, and objectives—we will route the right delivery and DoOS support.