277 Open source projects that are alternatives of or similar to hassh-utils

Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

My simple Swiss Army knife for http/https troubleshooting and profiling.

FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic

Nmap NSE scripts

Nmap and NSE command line wrapper in the style of Metasploit

Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

My collection of nmap nse modules

Advanced vulnerability scanning with Nmap NSE

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.

PowerShell Script to facilitate the processing of SRUM data for on-the-fly forensics and if needed threat hunting

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

the fastest way to consume threat intelligence.

Scans an internal network using massscan and nmap

#ThreatHunting #DFIR #Malware #Detection Mind Maps

This tool is for detecting all what NMAP does if someone wants to hack you and expose the scanning from where by IP ADDRESS and the exact time for analysis and convert it automatically in logsfile

Detect alive host and open port .

recon-ng modules for Censys

Deanonymizing Tor or VPN users with website fingerprinting and machine learning.

Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations

A demo of how can I track you using fingerprinting and some automated lookups and stuff, using modern Javascript APIs

Bash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.

Set of SIGMA rules (>250) mapped to MITRE Att@k tactic and techniques

This repository is source code for some of the attacks defined in this paper (https://arxiv.org/pdf/1703.02874v1.pdf). Not all attacks will be available. Please read the README.md

Offensive Security recon tool

Pushes Sysmon Configs

Tracking APT IOCs

NOT SUPORTED ANYMORE -- try resource_files repository (mosquito)

REST API backend for Reconmap

A demo for the no-JavaScript fingerprinting article

A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.

Deploy and maintain Symon through the Splunk Deployment Sever

Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.

Microsoft Sentinel SOC Operations

WEB PENETRATION TESTING TOOL 💥

A simple threat hunting tool based on osquery, Salt Open and Cymon API

Consolidation of various resources related to Microsoft Sysmon & sample data/log

An nmap wrapper library for .NET

📋 Lista descrita de mis 💯 comandos favoritos ⭐ en GNU/Linux 💻

Identificador de Seguridad Web para Pentester

Browser extension to spoof timezone, geolocation, locale and user agent.

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

Repo of code for FPStalker article

Random hunting ordiented yara rules

This repository contains tools used by 401trg.

Capture passwords of login attempts on non-existent and disabled accounts.

A minimal tool that hides your online assets from online security scanners, researchers and hackers.

A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.

侦查守卫(ObserverWard)的指纹库

ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Threat Hunting with ELK Workshop (InfoSecWorld 2017)

Advanced Reconnaissance tool to enumerate attacking surface of the target.

Import Nmap scans to Cherrytree

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.

A compilation of network scanning strategies to find vulnerable devices

evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.