377 Open source projects that are alternatives of or similar to sandfly-setup

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Official Black Hat Arsenal Security Tools Repository

Web Scan Lazy Tools - Python Package

Automation and Scaling of Digital Forensics Tools

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Web application vulnerability scanner

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Whenever founds internet connectivity confirms is it you, if not log you off and send you image of intruder.

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

⚡️ Docker official image for Wallarm Node. API security platform agent.

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

🔎 shodansploit > v1.3.0

Secure, Unified, Powerful and Extensible Rust Android Analyzer

A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.

Improve your code security by running different security checks/validation in a simple way.

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

tamper resistant audit log

Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack

No description or website provided.

Live system forensic collector

The scalable, auditable and high-performance tamper-evident log project

LID-DS is an intrusion detection data simulation framework.

An Incident Response tool to extract console command history and screen output buffer

The goal of this program is to quickly pull and install repos from its list

[archived] 一款实验性质的主机入侵检测系统

Ninjaberry: Raspberry Pi UI for @bettercap

The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.

Tool to sort large collections of files according to common typologies

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

CoRA Docs

A program and toolset to analyze iDevice USB sessions

A Python library for the MythX smart contract security analysis platform

No description or website provided.

Ansible role for Ubuntu 2004 CIS Baseline

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

This is the new version of dirb in python

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

Timeline of Active Directory changes with replication metadata

inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques

Vulnogram is a tool for creating and editing CVE information in CVE JSON format

UNIX-like reverse engineering framework and command-line toolset

Examine, create and interact with remote objects in other .NET processes.

This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices

Install Kali Linux Tools & Others on your Linux.

Open Source SIEM (Security Information and Event Management system).

Query and report user logons relations from MS Windows Security Events

A collection of tools for forensic analysis

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

FAT filesystems explore, extract, repair, and forensic tool

Extract WhatsApp private key from any non-rooted Android device (Android 7+ supported)

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common misconfigurations and security holes.

Python script to decode common encoded PowerShell scripts