243 Open source projects that are alternatives of or similar to RedTeam_BlueTeam_HW

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

集漏洞验证和任务运行的一个框架

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

Provides various Windows Server Active Directory (AD) security-focused reports.

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Web Application Secure Coding Handbook resource.

This powershell script has got to run in remote hacked windows host, even for pivoting

Python Script to help/automate the WiFi hacking exercises.

🌒 Shell command obfuscation to avoid detection systems

These are some of the commands which I use frequently during Malware Analysis and DFIR.

a fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool written in pure safe Rust

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

Emulate and Dissect MSF and *other* attacks

👻Behold3r -- 收集指定网站的子域名，并可监控指定网站的子域名更新情况，发送变更报告至指定邮箱

wifi attacks suite

PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.

🔑 ftpknocker is a multi-threaded scanner for finding anonymous FTP servers

A tool for fuzzing for ports that allow outgoing connections

Anti keylogger, anti screen logger... Strategy to protect with hookings or improve your sandbox with spyware detection... - Demo

Dumain Bruteforcer - a fast and flexible domain bruteforcer

A tool for generating reverse shell payloads on the fly.

./kumasia php simple backdoor

OSINT Bookmarks for Firefox / Chrome / Edge / Safari

🚀 Takes minutes to explore the topology of all routable /24 prefixes in IPv4 address space. Now supports IPv6 scan!

Monitoring GitHub for sensitive data shared publicly

🔑 Hash type identifier (CLI & lib)

This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

Collecting IOCs posted on Twitter

Purple Team Exercise Framework

Nmap and NSE command line wrapper in the style of Metasploit

Tool to communicate with RPC services and check misconfigurations on NFS shares

Multi OTP Spam Amp/Paralell threads

Go library for credentials recovery

Searches online paste sites for certain search terms which can indicate a possible data breach.

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

Kansas City Standard tape decoder/viewer made with discrete transistors

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

You didn't think I'd go and leave the blue team out, right?

Yet Another PHP Shell - The most complete PHP reverse shell

Automated Pentest Tools Designed For Parrot Linux

Bifrost C2. Open-source post-exploitation using Discord API

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

Pentesting/Bugbounty Dockerfiles.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

A Lambda-powered Security Orchestration framework for AWS GuardDuty

Multi source CVE/exploit parser.

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…

Blue Team detection lab created with Terraform and Ansible in Azure.

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.

一款适用于红蓝对抗中的仿真钓鱼系统

Designed to be installed on a fresh install of raspbian on a raspberry pi, by combining Respounder (Responder detection) and Artillery (port and service spoofing) for network deception, this tool allows you to detect an attacker on the network quickly by weeding out general noisy alerts with only those that matter.

Find and notify users in your Active Directory with weak passwords

🐝 A highly scalable, safe, free enterprise honeypots 一款高可扩展、安全、免费的企业级蜜罐系统