thinkst / canarytokens
Canarytokens helps track activity and actions on your network.
☆1,757Updated this week
Related projects ⓘ
Alternatives and complementary repositories for canarytokens
- Docker configuration to quickly setup your own Canarytokens.☆602Updated 5 months ago
- Modular and decentralised honeypot☆2,328Updated last week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,508Updated 4 months ago
- Wiki to collect Red Team infrastructure hardening resources☆4,152Updated 7 months ago
- Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…☆2,384Updated 2 months ago
- Automate the creation of a lab environment complete with security tooling and logging best practices��☆4,648Updated 4 months ago
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,262Updated 7 months ago
- Digging Deeper....☆2,984Updated this week
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆4,996Updated 3 weeks ago
- DNS Enumeration Script☆2,641Updated this week
- A list of cyber-chef recipes and curated links☆2,030Updated 5 months ago
- A curated list of awesome YARA rules, tools, and people.☆3,565Updated this week
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,490Updated 2 weeks ago
- Automated Adversary Emulation Platform☆5,660Updated this week
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,525Updated 4 years ago
- Loki - Simple IOC and YARA Scanner☆3,404Updated 3 weeks ago
- Six Degrees of Domain Admin☆9,909Updated 4 months ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,471Updated last year
- PingCastle - Get Active Directory Security at 80% in 20% of the time☆2,351Updated last month
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆1,968Updated this week
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,472Updated last month
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆2,934Updated 3 months ago
- Your Everyday Threat Intelligence☆1,751Updated this week
- A collaborative, multi-platform, red teaming framework☆3,270Updated this week
- Open Source Vulnerability Management Platform☆5,053Updated 3 weeks ago
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,346Updated 3 weeks ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,738Updated 5 months ago
- ☆3,454Updated 8 months ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,029Updated 9 months ago
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,450Updated last year