Alternatives and similar repositories for ttp-bench

Users that are interested in ttp-bench are comparing it to the libraries listed below

• antitree / seccomp-diff
  ☆85Updated last week
• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Updated this week
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆30Updated 10 months ago
• DataDog / workload-security-evaluator
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆37Updated last year
• Permiso-io-tools / SkyScalpel
  ☆47Updated last year
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆73Updated last year
• CrowdStrike / gofalcon
  Golang-based SDK to CrowdStrike's APIs
  ☆78Updated this week
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆119Updated 2 weeks ago
• 0x4D31 / santamon
  Lightweight macOS detection agent built on Santa’s Endpoint Security telemetry.
  ☆88Updated last month
• mercari / gcp-sa-key-checker
  A recon tool for GCP Service Account Keys that requires no permissions
  ☆25Updated 8 months ago
• ReversecLabs / IceKube
  ☆184Updated 8 months ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆19Updated 4 years ago
• KatTraxler / gcpdocs
  Repository to archive GCP Documentation for local use
  ☆16Updated 11 months ago
• madhuakula / spotter
  Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations,…
  ☆69Updated 3 months ago
• antitree / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆37Updated 2 months ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆75Updated last year
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• Aqua-Nautilus / TrailShark
  ☆53Updated last year
• nianticlabs / modron
  Modron - Cloud security compliance
  ☆34Updated last year
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆59Updated 11 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• telophasehq / go-ocsf
  ☆75Updated 2 months ago
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆74Updated 3 years ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆31Updated 2 years ago
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆44Updated 2 years ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Updated last year
• runreveal / sigmalite
  ☆52Updated 3 weeks ago
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆60Updated last year
• christophetd / aws-sso-device-code-authentication
  ☆37Updated 4 years ago
• DataDog / pathfinding.cloud
  An AWS IAM Privilege Escalation Path Library
  ☆88Updated 3 weeks ago