chaos-monkey-island Goto Github PK

0xsp-mongoose

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

365-secure-score-powershell

Script to automate setting base level MS Secure score in Office 365

3klcon

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

aclpwn.py

Active Directory ACL exploitation with BloodHound

active-directory-exploitation-cheat-sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

adape-script

Active Directory Assessment and Privilege Escalation Script

adexplorersnapshot.py

ADExplorerSnapshot.py is an AD Explorer snapshot ingestor for BloodHound.

advanced-sql-injection-cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

aggressiveproxy

Project to enumerate proxy configurations and generate shellcode from CobaltStrike

airgeddon

This is a multi-use bash script for Linux systems to audit wireless networks.

amass-1

In-depth Attack Surface Mapping and Asset Discovery

anchore-engine

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

anonx

An Encrypted File transfer via AES-256-CBC

ansible

Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy. Avoid writing scripts or custom code to deploy and update your applications — automate in a language that approaches plain English, using SSH, with no agents to install on remote systems. https://docs.ansible.com/ansible/

aquatone

A Tool for Domain Flyovers

aquatone-docker

Aquatone (go version) docker image

argos

Terraform stack to deploy ELK Threat Hunting on Amazon AWS.

arjun

HTTP parameter discovery suite.

asst

OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.

astra

Automated Security Testing For REST API's

atlas

Quick SQLMap Tamper Suggester

ator-burp

attack-control-framework-mappings

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process.

attack-guardduty-navigator

A MITRE ATT&CK Navigator export for AWS GuardDuty Findings

attack_range

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

attackdatamap

A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework

attacking-and-auditing-docker-containers-and-kubernetes-clusters

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

attacksurfaceanalyzer

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

attacksurfacemapper

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

audit2rbac

Autogenerate RBAC policies based on Kubernetes audit logs