NextGenRedTeam (NGRT) is an independent security research lab focusing on threat emulation, purple teaming, and open-source tooling. We study how AI-driven automation combined with human expertise can advance defense validation, sharing our insights and tools with the security community.
We research emerging threat group behaviors, develop open-source playbooks, and reverse-engineer devices to help organizations validate their security posture and train defense teams.
Researching and modeling advanced adversary techniques to understand how modern threats bypass detection controls. We publish our research and findings openly to help defenders build better detections.
Studying purple teaming methodologies and collaborative frameworks. We develop open-source playbook guidelines to help coordinate validation efforts between offensive and defensive teams.
We actively research emerging threats, analyze malware, reverse-engineer smart devices, and develop open-source security toolkits to benefit the cyber defense community.
At NextGen RedTeam, we believe the future of cybersecurity isn’t just built on better tools—it’s built on better people. We are deeply committed to bridging the gap between raw potential and professional mastery by providing the next generation of defenders and operators with the guidance they actually need. Through hands-on, high-impact projects alongside the Dead Pixel Sec community, we move past surface-level theory to provide real-world technical mentorship and career navigation. Our mission is to foster a collaborative environment where emerging talent can stress-test their skills, refine their offensive methodology, and gain the confidence to lead in an increasingly complex threat landscape. We aren’t just teaching hacking; we’re cultivating a community of practitioners dedicated to excellence, integrity, and the relentless pursuit of improvement. Join the community on discord.gg/deadpixelsec.
We believe in contributing back. We build and release tools for hardware hacking, API testing, and continuous orchestration, hosted in our public repository.
An open-source, zero-backend Progressive Web App (PWA) designed to control the smart features of Sobro Smart Coffee Tables. Bypasses the broken vendor application via direct Ayla Cloud API queries.
A local threat emulation environment running on custom Proxmox VE nodes. Orchestrates local VM and LXC endpoints to run continuous pentesting loops using uncensored, abliterated local LLMs.
A distributed agentic orchestration platform that decouples cognitive models from execution environments. Manages lightweight, ephemeral workers running MITRE and OWASP validation rules.
Interested in collaborating on open-source projects, discussing threat research, or booking media, podcasts, or speaking sessions? Get in touch or schedule a session below.