3121 Open source projects that are alternatives of or similar to Patrowlhears

Consolidation of various resources related to Microsoft Sysmon & sample data/log

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

ThePhish: an automated phishing email analysis tool

Standard-Format Threat Intelligence Feeds

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Best practices in threat intelligence

⚔️MITRE ATT&CK Machinations in R

Microsoft Sentinel SOC Operations

Capture passwords of login attempts on non-existent and disabled accounts.

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

Hourly updated database of exploit and exploitation reports

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

Python bindings for Yeti's API

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Python library using the MISP Rest API

The Ultimate OSINT and Threat Hunting Framework

异步漏洞利用框架

Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Phishing catcher using Certstream

OpenCTI connectors

A Lambda-powered Security Orchestration framework for AWS GuardDuty

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Sysmon configuration file template with default high-quality event tracing

快速搭建各种漏洞环境(Various vulnerability environment)

Vulners Python API wrapper

WebMap-Nmap Web Dashboard and Reporting

BootStomp: a bootloader vulnerability finder

Defanged Indicator of Compromise (IOC) Extractor.

Advisories, proof of concept files and exploits that have been made public by @pedrib.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

CVE Alerting Platform

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Shuffle: A general purpose security automation platform platform. We focus on accessibility for all.

A collection of curated Java Deserialization Exploits

Kaspersky's GReAT KLara

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

kernel privilege escalation enumeration and exploitation framework

Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

CLI tool for open source and threat intelligence

💥 Test REST, GraphQL APIs

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

A community-developed, free, open source, microservices API automation and load testing framework built using JUnit core runners for Http REST, SOAP, Security, Database, Kafka and much more. Zerocode Open Source enables you to create, change, orchestrate and maintain your automated test cases declaratively with absolute ease.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

🆕 The Multi-Tool Web Vulnerability Scanner.

CertCenter API Go Implementation

Signature base for my scanner tools

📹 Data-driven render automation for After Effects

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Export all folders and documents from Quip

Unofficial api for cve.mitre.org

🌴Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file

Your Everyday Threat Intelligence

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.