Alternatives and similar repositories for XMGoat

Users that are interested in XMGoat are comparing it to the libraries listed below

• iknowjason / edge
  Whois for the Cloud: Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆174Updated last week
• SygniaLabs / security-cloud-scout
  ☆139Updated 2 years ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆96Updated last year
• joswr1ght / basicblobfinder
  Identify Azure blobs using a wordlist of account name and container name strings
  ☆43Updated 6 months ago
• gladstomych / AHHHZURE
  AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…
  ☆105Updated last year
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆248Updated 10 months ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆137Updated 2 years ago
• sbasu7241 / AWS-Threat-Simulation-and-Detection
  Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
  ☆299Updated 2 years ago
• Littlehack3r / awesome-gcp-pentesting
  Tools and blogs I use to perform GCP red teams
  ☆126Updated last year
• cyberark / BlobHunter
  Find exposed data in Azure with this public blob scanner
  ☆340Updated last year
• Frichetten / SneakyEndpoints
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆122Updated 2 months ago
• ralphte / build_a_phish
  Ansible playbook to deploy a phishing engagement in the cloud.
  ☆221Updated 3 years ago
• NetSPI / gcpwn
  Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…
  ☆263Updated 4 months ago
• microsoft / Azure-Threat-Research-Matrix
  ☆76Updated last year
• iknowjason / AriaCloud
  A Docker container for remote penetration testing.
  ☆140Updated 4 years ago
• iknowjason / AutomatedEmulation
  An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
  ☆196Updated last year
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆120Updated 2 years ago
• SikretaLabs / BlueMap
  A Azure Exploitation Toolkit for Red Team & Pentesters
  ☆164Updated 2 years ago
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆112Updated 2 years ago
• lutzenfried / OffensiveCloud
  Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
  ☆342Updated 7 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆102Updated last year
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆118Updated 2 years ago
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆122Updated 2 years ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆83Updated last year
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆117Updated last year
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆311Updated last month
• elastic / SWAT
  ☆163Updated this week
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆162Updated 10 months ago
• carlospolop / aws_iam_review
  ☆38Updated last week
• mvelazc0 / BadZure
  BadZure orchestrates the setup of Azure AD tenants, populating them with diverse entities while also introducing common security misconfi…
  ☆467Updated 3 months ago