Stars
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Policies for Security Agent - compliance and runtime checks
A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
Bare minimum AWS Security Alerting and Secure by default Configuration
AADInternals PowerShell module for administering Azure AD and Office 365
Official Black Hat Arsenal Security Tools Repository
Fully featured and community-driven hacking environment
Opensource assets and vulnerability scanning tool
Infect Shared Files In Memory for Lateral Movement
HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain …
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Forbid untrusted webs to access localhost or LAN. An anti-scan protection 🛡️🏡
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Scan publicly accessible assets on your AWS cloud environment
Zed Attack Proxy Scripts for finding CVEs and Secrets.
The most powerful CRLF injection (HTTP Response Splitting) scanner.
Awesome Trainings from Cloud Native Computing Foundation Projects and Kubernetes related software
BlueHound - pinpoint the security issues that actually matter
Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploitability (runtime execution, configuration, permissions, exi…
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …