nccgroup / whalescan

Related projects ⓘ

Alternatives and complementary repositories for whalescan

• iknowjason / AriaCloud
  A Docker container for remote penetration testing.
  ☆133Updated 3 years ago
• SygniaLabs / security-cloud-scout
  ☆133Updated last year
• vmware-labs / attack-surface-framework
  Tool to discover external and internal network attack surface
  ☆191Updated 5 months ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆133Updated 4 years ago
• WithSecureLabs / leonidas
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆485Updated 2 months ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• XMCyber / XMGoat
  ☆168Updated last year
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆109Updated 3 years ago
• NotSoSecure / udp-hunter
  Network assessment tool for various UDP Services covering both IPv4 and IPv6 protocols
  ☆115Updated 4 years ago
• browninfosecguy / ADLab
  Active Directory Lab for Penetration Testing
  ☆49Updated 3 years ago
• moloch-- / burp-multiplayer
  Burp with Friends
  ☆99Updated last year
• paranoidninja / Boomerang
  Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Mu…
  ☆216Updated 3 years ago
• dsnezhkov / racketeer
  ☆68Updated 3 years ago
• varchashva / vPrioritizer
  vPrioritizer enables us to understand the contextualized risk (vPRisk) on asset-vulnerability relationship level across the organization,…
  ☆68Updated 3 years ago
• himazawa / bento
  Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
  ☆76Updated 3 years ago
• guidepointsecurity / RedCommander
  Red Team C2 Infrastructure built in AWS using Ansible!
  ☆219Updated 4 years ago
• Ebryx / Nessus_Map
  Parse .nessus file(s) and shows output in interactive UI
  ☆146Updated 6 months ago
• mandiant / heyserial
  Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…
  ☆141Updated last year
• tothi / ad-honeypot-autodeploy
  Deploy a small, intentionally insecure, vulnerable Windows Domain for RDP Honeypot fully automatically.
  ☆251Updated 2 years ago
• nccgroup / cloud_ip_ranges
  Identify IP addresses owned by public cloud providers
  ☆112Updated 4 months ago
• Ben0xA / HoneyCreds
  HoneyCreds network credential injection to detect responder and other network poisoners.
  ☆214Updated 3 years ago
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆93Updated 5 years ago
• chryzsh / awesome-bloodhound
  A curated list of awesome BloodhoundAD resources
  ☆226Updated 2 years ago
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆87Updated last year
• christophetd / mindmaps
  Mindmaps for threat hunting - work in progress.
  ☆150Updated 2 years ago
• sbasu7241 / AWS-Threat-Simulation-and-Detection
  Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
  ☆280Updated last year
• vp777 / procrustes
  A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering
  ☆209Updated 3 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 2 years ago
• ajinabraham / aws_security_tools
  Scripts and tools for AWS Pentest
  ☆51Updated 4 years ago