334 Open source projects that are alternatives of or similar to Attack Website

OpenCTI connectors

ATT&CK Evaluations website (DEPRECATED)

⚔️MITRE ATT&CK Machinations in R

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation.

Scripts and a (future) library to improve users' interactions with the ATT&CK content

Automated Adversary Emulation Platform

CyCAT.org API back-end server including crawlers

MITRE Shield website

A python module for working with ATT&CK

Web app that provides basic navigation and annotation of ATT&CK matrices

Shuffle: A general purpose security automation platform platform. We focus on accessibility for all.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process.

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

WIFI Client Detection - Identify people by assigning a name to a device performing a wireless probe request.

Enine boyuna siber güvenlik

PyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>

The platform used to run picoCTF. A great framework to host any CTF.

A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.

A dashboard for a real-time overview of threat intelligence from MISP instances

A place where I can create, collect and share tooling, resources and knowledge about information security.

PCAP Samples for Different Post Exploitation Techniques

JavaScript library for building web-based applications that employ secure multi-party computation (MPC).

A Python library and command line tools to provide interactive log visualization.

Automated Tactics Techniques & Procedures

A backdoor with a multitude of features.

MagicPad is an encryption suite for beginners. It is designed to be run standalone via the browser or executable (Electron).

👺 A Backdoor For Apache HTTP Server Written in C

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

Discover internet-wide misconfigurations while drinking coffee

An anti-ARP-spoofing application software that use active and passive scanning methods to detect and remove any ARP-spoofer from the network.

Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.

Як не стати кібер-жертвою

The all-in-one Red Team extension for Web Pentester 🛠

Authors

Test Blue Team detections without running any attack.

🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021

Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.

Distributed malware processing framework based on Python, Redis and MinIO.

List of the most common French passwords

Wireshark Cheat Sheet

Advanced buffer overflow and memory corruption security challenges

A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]

Let's track phishing kits to give to research community raw material to study !

🔐 Docker Container for Penetration Testing & Security

Monitoring GitLab for sensitive data shared publicly

WALKOFF-enabled applications. #nsacyber

Lockphish it's the first tool (07/04/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link.

🛡️ Make your web services secure by default !

This repository contains a list of all web sites I come across that are either hacked with or purposefully hosting malware, ransomware, viruses or trojans.

Malware repository component for samples & static configuration with REST API interface.

Python library and CLI for the Bug Bounty Recon API

GUI based offensive penetration testing tool (Open Source)

internet monitoring osint telegram bot for windows

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

easy-to-use payload hosting

备考 OSCP 的各种干货资料/渗透测试干货资料

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️