243 Open source projects that are alternatives of or similar to RedTeam_BlueTeam_HW

Hourly updated database of exploit and exploitation reports

This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

整理一些内网常用渗透小工具

Collecting IOCs posted on Twitter

Test Blue Team detections without running any attack.

Purple Team Exercise Framework

Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.

Nmap and NSE command line wrapper in the style of Metasploit

Find cloud assets that no one wants exposed 🔎 ☁️

Tool to communicate with RPC services and check misconfigurations on NFS shares

Windows Hardening settings and configurations

Multi OTP Spam Amp/Paralell threads

A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会

Go library for credentials recovery

Bi-weekly hunting queries

Searches online paste sites for certain search terms which can indicate a possible data breach.

JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

A PowerShell module to deploy active directory decoy objects.

Kansas City Standard tape decoder/viewer made with discrete transistors

A collection of scripts I've written to help red and blue teams with malware persistence techniques.

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

You didn't think I'd go and leave the blue team out, right?

Yet Another PHP Shell - The most complete PHP reverse shell

E-mails, subdomains and names Harvester - OSINT

Automated Pentest Tools Designed For Parrot Linux

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

Bifrost C2. Open-source post-exploitation using Discord API

Bloodhound for Blue and Purple Teams

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

红蓝对抗跨平台远控工具

Pentesting/Bugbounty Dockerfiles.

🍓📡🍍Monitor illegal wireless network activities. (Fake Access Points), (WiFi Threats: KARMA Attacks, WiFi Pineapple, Similar SSID, OPN Network Density etc.)

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

This repository contains full code examples from the book Gray Hat C#

A Lambda-powered Security Orchestration framework for AWS GuardDuty

ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Multi source CVE/exploit parser.

Search for Unix binaries that can be exploited to bypass system security restrictions.

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

an easy pentesting tool.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

A minimalist command line knowledge base manager

This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…

红/蓝队环境自动化部署工具

Blue Team detection lab created with Terraform and Ansible in Azure.

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

Quick SQL Scanner, Dorker, Webshell injector PHP

This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.

一款适用于红蓝对抗中的仿真钓鱼系统

Designed to be installed on a fresh install of raspbian on a raspberry pi, by combining Respounder (Responder detection) and Artillery (port and service spoofing) for network deception, this tool allows you to detect an attacker on the network quickly by weeding out general noisy alerts with only those that matter.

Find and notify users in your Active Directory with weak passwords

Rustcat(rcat) - The modern Port listener and Reverse shell

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.