Alternatives and similar repositories for nord-stream

Users that are interested in nord-stream are comparing it to the libraries listed below

• boostsecurityio / lotp

  View on GitHub
  boostsecurityio/lotp
  ☆138Jan 25, 2026Updated 2 weeks ago
• praetorian-inc / gato

  View on GitHub
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆726Sep 17, 2025Updated 4 months ago
• synacktiv / gh-hijack-runner

  View on GitHub
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆27Oct 13, 2024Updated last year
• AdnaneKhan / gato-x

  View on GitHub
  GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.
  ☆480Jan 5, 2026Updated last month
• DataDog / KubeHound

  View on GitHub
  Tool for building Kubernetes attack paths
  ☆940Jan 16, 2026Updated 3 weeks ago
• werdhaihai / AtlasReaper

  View on GitHub
  A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.
  ☆272Sep 14, 2023Updated 2 years ago
• MythicAgents / leviathan

  View on GitHub
  ☆22Dec 30, 2025Updated last month
• AdnaneKhan / Cacheract

  View on GitHub
  GitHub Actions Cache Native Malware - for Educational and Research Purposes only.
  ☆92Jan 28, 2026Updated 2 weeks ago
• daddycocoaman / azbelt

  View on GitHub
  AAD related enumeration in Nim
  ☆132Sep 7, 2023Updated 2 years ago
• slemire / WSPCoerce

  View on GitHub
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆300Sep 7, 2023Updated 2 years ago
• synacktiv / GPOddity

  View on GitHub
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆358Dec 13, 2025Updated 2 months ago
• synacktiv / octoscan

  View on GitHub
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆243Dec 8, 2025Updated 2 months ago
• synacktiv / DepFuzzer

  View on GitHub
  ☆94Dec 15, 2025Updated last month
• TupleType / awesome-cicd-attacks

  View on GitHub
  Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
  ☆570Jan 28, 2026Updated 2 weeks ago
• ncc-erik-steringer / Aerides

  View on GitHub
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Jan 18, 2022Updated 4 years ago
• ly4k / PassTheChallenge

  View on GitHub
  Recovering NTLM hashes from Credential Guard
  ☆374Dec 26, 2022Updated 3 years ago
• Legit-Labs / legitify

  View on GitHub
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆829Mar 28, 2025Updated 10 months ago
• xpn / OktaPostExToolkit

  View on GitHub
  ☆190Nov 21, 2024Updated last year
• boostsecurityio / poutine

  View on GitHub
  boostsecurityio/poutine
  ☆361Feb 2, 2026Updated last week
• usdAG / FlowMate

  View on GitHub
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆165Oct 28, 2025Updated 3 months ago
• nccgroup / DroppedConnection

  View on GitHub
  ☆129Mar 1, 2023Updated 2 years ago
• sahadnk72 / jecretz

  View on GitHub
  Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets
  ☆50Dec 8, 2022Updated 3 years ago
• xpn / CloudInject

  View on GitHub
  ☆118Nov 21, 2024Updated last year
• RoseSecurity / WolfPack

  View on GitHub
  WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
  ☆150Jun 5, 2025Updated 8 months ago
• EspressoCake / BOF_Development_Docker

  View on GitHub
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆50Jul 10, 2023Updated 2 years ago
• Rolix44 / Kubestroyer

  View on GitHub
  Kubernetes exploitation tool
  ☆364Jul 26, 2024Updated last year
• zyn3rgy / ClickonceHunter

  View on GitHub
  Golang search engine scraper intended for identification of published ClickOnce deployments
  ☆93Nov 19, 2024Updated last year
• warhorse / warhorse

  View on GitHub
  Infrastructure Automation
  ☆359Apr 12, 2024Updated last year
• FalconForceTeam / FalconHound

  View on GitHub
  FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is de…
  ☆817Feb 17, 2025Updated 11 months ago
• RedTeamPentesting / pretender

  View on GitHub
  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
  ☆1,256Dec 9, 2025Updated 2 months ago
• blackarrowsec / Handly

  View on GitHub
  Abuse leaked token handles.
  ☆134Dec 14, 2023Updated 2 years ago
• avito-tech / deepsecrets

  View on GitHub
  Secrets scanner that understands code
  ☆193Nov 2, 2023Updated 2 years ago
• garrettfoster13 / sccmhunter

  View on GitHub
  SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
  ☆882Feb 5, 2026Updated last week
• fin3ss3g0d / NativeThreadpool

  View on GitHub
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Feb 11, 2024Updated 2 years ago
• hupe1980 / awsrecon

  View on GitHub
  Tool for reconnaissance of AWS cloud environments
  ☆16Oct 9, 2023Updated 2 years ago
• synacktiv / ntdissector

  View on GitHub
  ☆166Jun 20, 2025Updated 7 months ago
• zblurx / dploot

  View on GitHub
  DPAPI looting remotely and locally in Python
  ☆540Oct 7, 2025Updated 4 months ago
• TinderSec / gh-workflow-auditor

  View on GitHub
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆153Aug 28, 2024Updated last year
• SpecterOps / Nemesis

  View on GitHub
  An offensive data enrichment pipeline
  ☆914Updated this week