Alternatives and similar repositories for XMGoat:

Users that are interested in XMGoat are comparing it to the libraries listed below

• iknowjason / edge
  Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆165Updated 4 months ago
• SygniaLabs / security-cloud-scout
  ☆134Updated last year
• gladstomych / AHHHZURE
  AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…
  ☆102Updated 11 months ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆130Updated 2 years ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆91Updated last year
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Attack Platform
  ☆251Updated 2 weeks ago
• iknowjason / AutomatedEmulation
  An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
  ☆183Updated 8 months ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆90Updated last year
• lutzenfried / OffensiveCloud
  Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
  ☆324Updated 2 weeks ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆156Updated 2 months ago
• joswr1ght / basicblobfinder
  Identify Azure blobs using a wordlist of account name and container name strings
  ☆39Updated last week
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆69Updated 10 months ago
• Littlehack3r / awesome-gcp-pentesting
  Tools and blogs I use to perform GCP red teams
  ☆107Updated 8 months ago
• SikretaLabs / BlueMap
  A Azure Exploitation Toolkit for Red Team & Pentesters
  ☆167Updated last year
• mvelazc0 / BadZure
  BadZure orchestrates the setup of Azure AD tenants, populating them with diverse entities while also introducing common security misconfi…
  ☆447Updated last month
• bvoris / mitreattackthreatmodeling
  This provides a guided step by step walkthrough for threat modeling with MITRE ATT&CK Framework
  ☆27Updated last month
• SySS-Research / azurenum
  Enumerate Microsoft Entra ID (Azure AD) fast
  ☆91Updated 2 months ago
• microsoft / Azure-Threat-Research-Matrix
  ☆73Updated 9 months ago
• LuemmelSec / Custom-BloodHound-Queries
  ☆178Updated 3 months ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆149Updated 4 months ago
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Updated 4 months ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆137Updated 10 months ago
• NetSPI / gcpwn
  Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…
  ☆235Updated 2 weeks ago
• ralphte / build_a_phish
  Ansible playbook to deploy a phishing engagement in the cloud.
  ☆218Updated 2 years ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆250Updated last year
• cyberark / BlobHunter
  Find exposed data in Azure with this public blob scanner
  ☆329Updated 8 months ago
• Azure / CONVEX
  CONVEX is a group of CTFs that are independently deployable into participant Azure environments.
  ☆138Updated 2 years ago
• malwarejake-public / conference-presentations
  Conference presentations
  ☆47Updated last year
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆112Updated last year
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆106Updated last year