vmware-labs / attack-surface-framework
Tool to discover external and internal network attack surface
☆196Updated 11 months ago
Alternatives and similar repositories for attack-surface-framework:
Users that are interested in attack-surface-framework are comparing it to the libraries listed below
- SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.☆221Updated 3 years ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated last month
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆106Updated 2 years ago
- Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and othe…☆177Updated 2 years ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆202Updated 2 years ago
- Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…☆140Updated 2 months ago
- Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].☆150Updated 2 years ago
- Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…☆142Updated last year
- PatrowlHears - Vulnerability Intelligence Center / Exploits☆163Updated this week
- Active C2 IoCs☆99Updated 2 years ago
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆141Updated 2 years ago
- ☆43Updated 2 years ago
- A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.☆138Updated 9 months ago
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆296Updated 2 years ago
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆166Updated 6 months ago
- A Docker container for remote penetration testing.☆135Updated 4 years ago
- HoneyCreds network credential injection to detect responder and other network poisoners.☆217Updated 3 years ago
- Shodan Monitoring integration for TheHive.☆130Updated 4 months ago
- ☆137Updated 2 years ago
- Parse .nessus file(s) and shows output in interactive UI☆150Updated last week
- A collection of intelligence about Log4Shell and its exploitation activity.☆184Updated 3 years ago
- Active Directory Lab for Penetration Testing☆51Updated 4 years ago
- An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.☆181Updated last week
- Blue Team detection lab created with Terraform and Ansible in Azure.☆152Updated 5 months ago
- Collection of created MindMaps☆150Updated last year
- Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.☆127Updated 10 months ago
- Pwnspoof repository☆261Updated last year
- An open-source self-hosted purple team management web application.☆269Updated last month
- Data visualization for blue teams☆125Updated 2 years ago
- Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…☆118Updated last month