361 Open source projects that are alternatives of or similar to security-guidance

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

Asynchronous Python implementation of SlowLoris DoS attack

a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

🎯 XML External Entity (XXE) Injection Payload List

Wireshark Cheat Sheet

A concise, directive, specific, flexible, and free incident response plan template

OPCDE Cybersecurity Conference Materials

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

Execute any command in other's computer using a trojan horse coded and compiled in C. Just for educational purpose.

A tool that automates the process of enumeration

Version 2 of the Graphical Realism Framework for Industrial Control Simulation (GRFICS)

A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).

Cisco Press CCNA Cyber Ops Books and Video Courses supplemental information and additional study materials.

Project dedicated to fight Layer 7 DDoS with proof of work, featuring an additional WAF. Completed with full set of features and containerized for rapid and lightweight deployment.

A platform to develop, run and administer CTF competitions. The online echoCTF.RED platform user interfaces and codebase

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

STIX data representing MITRE ATT&CK

A Lambda-powered Security Orchestration framework for AWS GuardDuty

Malware Machine Learning

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

script hack fb

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

A distributed peer to peer list of bad actor IP addresses and phone numbers collected via a SIP Honeypot.

OpenCTI connectors

Stop half-done API specifications! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by validating your API specifications.

This repository is used to store answers when resolving ctf challanges, how i came to that answer and the line of thought used to reach it.

SIKE for Java is a software library that implements experimental supersingular isogeny cryptographic schemes that aim to provide protection against attackers running a large-scale quantum computer.

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Dorothy is a tool to test security monitoring and detection for Okta environments

Cyber Incident Response Team Playbook Battle Cards

🛡️ Awesome Cloud Security Resources ⚔️

Captive wifi hotspot bypass tool for Linux

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

Argus Advanced Remote & Local Keylogger For macOS and Windows

Malware similarity platform with modularity in mind.

基于Threathunting-book基础上完善的狩猎视角红队handbook

澳門網絡安全暨奪旗競賽協會(Macau Cyber Security and Capture The Flag Association)MOCSCTF/MOCTF

Hacking, pen-testing, and cyber-security related tools built with Python.

Browser extension that uses intelligence to combat malicious websites by blocking them in real-time.

This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…

⚔️MITRE ATT&CK Machinations in R

Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)

CSN09112 Module

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

CyCAT.org API back-end server including crawlers

Python Program to obfuscate URLs to make Phishing attacks more difficult to detect. Uses Active open redirect list and other URL obfuscation techniques.

A humble, and fast, security-oriented HTTP headers analyzer

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Offensive Reverse Shell (Cheat Sheet)

Domain availbility checker

MITRE Shield website

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Threat Hunting queries for various attacks

Stamp your code with a trackable digital copyright

ATT&CK Evaluations website (DEPRECATED)