Lab4PurpleSec is a modular Purple Team homelab combining a vulnerable Active Directory environment (GOAD), a Docker-based web DMZ, pfSense + Suricata, and a Wazuh SIEM. It provides a realistic, open-source training environment for web exploitation, pivoting, Active Directory attacks, and Blue Team detection.
☆225Dec 31, 2025Updated 5 months ago
Alternatives and similar repositories for Lab4PurpleSec
Users that are interested in Lab4PurpleSec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- TLS fingerprint emulation upstream proxy replay any ClientHello☆50Apr 6, 2026Updated 2 months ago
- A professional Red Team / Pentest tool for assessing the external perimeter of a company in a complete "black box" mode (zero knowledge, …☆29Feb 15, 2026Updated 3 months ago
- Automagically decode DNS Exfiltration queries to convert Blind RCE into proper RCE via Burp Collaborator☆21Jan 7, 2026Updated 5 months ago
- The samples referenced in my book, Evasive Malware (No starch Press)☆61Feb 20, 2026Updated 3 months ago
- Living of the Land of Free SaaS☆76Mar 22, 2026Updated 2 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Commandline spoofing on Windows☆100Nov 25, 2025Updated 6 months ago
- Novel Windows process injection: assembles existing open handles (process & thread), natural RWX regions, and special user APC (NtQueueAp…☆75Feb 17, 2026Updated 3 months ago
- Passive JavaScript reconnaissance for penetration testers — bridging Burp Suite traffic into structured, AST-based analysis in VSCode.☆36Feb 5, 2026Updated 4 months ago
- Scanner for Log4j RCE CVE-2021-44228☆11Jul 6, 2022Updated 3 years ago
- Overview of MS Defender☆143Feb 20, 2026Updated 3 months ago
- BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.☆82Apr 11, 2026Updated 2 months ago
- AI-powered modular Active Directory red-team framework for authorized penetration testing, AD enumeration, attack-path analysis, Kerber…☆269Updated this week
- Notion C2 Profile for Mythic☆47Apr 30, 2026Updated last month
- A fast, keyboard-driven TUI for debugging Kubernetes workloads☆65Jan 15, 2026Updated 4 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- test☆108Apr 25, 2026Updated last month
- A headless MCP server for IDA Pro and Ghidra☆99Jun 4, 2026Updated last week
- Configurations to implement Wazuh☆13Nov 28, 2022Updated 3 years ago
- Opengraph-Compatible JSON Generator for BloodHound☆29Mar 30, 2026Updated 2 months ago
- PoC for distributed NTP reflection DoS (CVE-2013-5211)☆10Oct 4, 2019Updated 6 years ago
- load arbitrary dlls, call any exported function, calls execute inside g0 as normal syscalls do from the traditional route, no syscall or …☆28May 4, 2026Updated last month
- Async BOF implementation of 'Rubeus monitor' to detect and automatically extract Kerberos TGTs as they appear on a target system.☆121Jun 2, 2026Updated last week
- This C# tool sprays for admin access over the entire domain☆90Dec 7, 2025Updated 6 months ago
- PolyEngine is an evasive PE packer designed for CTF challenges and low-level Windows security education. It focuses on bypassing EDR and …☆138Jun 6, 2026Updated last week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Node js api development with Iyzico api.☆14May 16, 2021Updated 5 years ago
- Open KLara Project☆37May 18, 2026Updated 3 weeks ago
- SentinelOne Windows Installation Diagnostic☆13Apr 14, 2025Updated last year
- Production-ready PowerShell and Bash scripts for RMM platforms (SuperOps, Datto, NinjaRMM)☆28Updated this week
- Automated Password Dumper for Web Browsers☆16Mar 23, 2014Updated 12 years ago
- This is a local search engine to search for cybersecurity tools. It has 3000+ tools in it's database.☆213Oct 1, 2025Updated 8 months ago
- ☆25Sep 17, 2025Updated 8 months ago
- ClickForClickOnce - Generate configurable clickonce payloads☆95Apr 17, 2026Updated last month
- ☆28Mar 14, 2026Updated 3 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Hackers Cookbook - Tons of hacker cli recipes ready to search and use when you need them☆51Mar 12, 2026Updated 3 months ago
- C2-agnostic BOF collection, categorized by attack chain phase. Designed to be small and modular, allowing for quick execution and automat…☆307Updated this week
- This is a collection of Security Baselines that I use in my virtual lab environment.☆23Mar 11, 2020Updated 6 years ago
- Golang C2 Agent PoC utilizing web and social media paltforms to issue command and control and pasting results to PasteBin☆18Apr 23, 2020Updated 6 years ago
- .data ptr swapper for newer win32k versions. (Supports Windows 11)☆37Jan 19, 2026Updated 4 months ago
- A guide to get you started with Windows Kernel Debugging walking you through the complete setup and usage of WinDbg to trace Windows proc…☆28Nov 26, 2025Updated 6 months ago
- A Ligolo-ng JavaScript agent working inside Chrome & Chromium-based browsers by leveraging Isolated Web Applications.☆130Mar 30, 2026Updated 2 months ago