533 Open source projects that are alternatives of or similar to Bluespawn

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

A repository of sysmon configuration modules

S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator

Windows Events Attack Samples

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

Tool to predict attacker groups from the techniques and software used

JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.

A Linux Auditd rule set mapped to MITRE's Attack Framework

⌨️ Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

Explore Indicators of Compromise Automatically

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Recon Hunt Queries

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Set of SIGMA rules (>250) mapped to MITRE Att@k tactic and techniques

PCAP Samples for Different Post Exploitation Techniques

A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Extract and aggregate threat intelligence.

kube-scan: Octarine k8s cluster risk assessment tool

Awesome PHP Security Resources 🕶🐘🔐

Most usable tools for iOS penetration testing

a javascript static security analysis tool

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Open source incident management and response platform.

Infection Monkey - An automated pentest tool

A cross-platform note-taking & target-tracking app for penetration testers.

Kaspersky's GReAT KLara

Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.

🔒 Anti DDOS | Bash Script Project 🔒

Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.

C2/post-exploitation framework

Exploit Pack -The next generation exploit framework

SIPVicious OSS is a set of security tools that can be used to audit SIP based VoIP systems.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

Hardening Ubuntu. Systemd edition.

[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

🎖safely* install packages with npm or yarn by auditing them as part of your install process

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Hacking Toolkit

Open Source Tripwire®

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A static analysis security vulnerability scanner for Ruby on Rails applications

InQL - A Burp Extension for GraphQL Security Testing

r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems

A collection of awesome security hardening guides, tools and other resources

👻Stowaway -- Multi-hop Proxy Tool for pentesters

mXtract - Memory Extractor & Analyzer

Penetrum LLC opensource security tool list.

FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic

红队综合渗透框架

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.

emba - An analyzer for Linux-based firmware of embedded devices.

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

Small and highly portable detection tests based on MITRE's ATT&CK.

📚Translate the distinct technical blogs. Please star or watch. Welcome to join me.

Drone pentesting framework console