Lists (1)
Stars
Version 2 of the Graphical Realism Framework for Industrial Control Simulation (GRFICS)
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…
🆕 The Multi-Tool Web Vulnerability Scanner.
Open Source Cloud Native Application Protection Platform (CNAPP)
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…
Sample queries for Advanced hunting in Microsoft 365 Defender
An awesome list of FREE resources for training, conferences, speaking, labs, reading, etc that are free. Originally built during COVID-19 for cybersecurity professionals with downtime can take adva…
A curated list of resources related to Industrial Control System (ICS) security.
Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
A Password Spraying tool for Active Directory Credentials by Jacob Wilkin(Greenwolf)
Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.
A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev
Saves up to 90% of AWS EC2 costs by automating the use of spot instances on existing AutoScaling groups. Installs in minutes using CloudFormation or Terraform. Convenient to deploy at scale using S…
A tool for automating cracking methodologies through Hashcat from the TrustedSec team.
A collected list of awesome security talks
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
The Old BloodHound C# Ingestor (Deprecated)
RedSnarf is a pen-testing / red-teaming tool for Windows environments
The LAZY script will make your life easier, and of course faster.
DART is a test documentation tool created by the Lockheed Martin Red Team to document and report on penetration tests, especially in isolated network environments.
Wiki to collect Red Team infrastructure hardening resources
Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.
Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.
A collection of recurring snippets and best practices to write stable and resilient containers for production
OWASP Cloud Security - Enabling conversations through threat and control stories
Toolbox for HPE iLO4 & iLO5 analysis