375 Open source projects that are alternatives of or similar to Windows Ad Environment Related

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Tools for Bug Hunting

Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper uses the awesome Capstone Framework.

Blind Attacking Framework

🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

VOIP Security Audit Framework

Exploitation and Mitigation Slides

A PowerShell module to deploy active directory decoy objects.

Automation for internal Windows Penetrationtest / AD-Security

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Linux命令转发记录

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Collection of resources for my preparation to take the OSEE certification.

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

A documentation about how to hack Minecraft servers

HackSys Extreme Vulnerable Windows Driver

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

Audit Windows Security with best Practice

IotShark - Monitoring and Analyzing IoT Traffic

OpenLdap port for DotNet Core (Linux\OSX\Windows)

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, dat…

iOS/macOS/Linux Remote Administration Tool

Security tool to trace URL's jumps across the rel links to obtain the last URL

Good to know, easy to forget information about binaries and their exploitation!

Collection of the most common vulnerabilities found in iOS applications

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

My solutions to some CTF challenges and a list of interesting resources about pwning stuff

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

Automatic SSRF fuzzer and exploitation tool

Responsive Command and Control System

Send encrypted PGP messages with one click

🐞 Primitive Erlang Security Tool

Cloud Security Posture Management (CSPM)

AD Health Check, Send HTML Email, Ping machines, Encrypt Password,Bulk Password,Microsoft Teams,Monitor Certificate expiry, Monitor cert expiry, AD attributes, IP to Hostname, Export AD group, CSV to SQL,Shutdown, Restart, Local Admin, Disk Space, Account expiry,Restore Permissions, Backup permissions, Delete Files Older Than X-Days, export DHCP options,Read Registry,Distribution group AD attributes,Monitor Windows Services,Export Reverse DNS,Task Monitor,Monitor and alert, Exchange Health check,Get Network Info, Export AD Attributes,AD group members, Office 365 Group member, SQL to CSV, Outlook save send attachments, Upload files to FTP,Exchange – Total Messages Sent Received, Set Teams Only Mode, Intune Duplicate Device,Intune Cleanup Not Evaluated, Ownership and Grant Permissions, Write Create Modify Registry , Organization Hierarchy from AD,Azure AD Privileged Identity Management,Intune – Export MAM Devices,Intune Marking devices as Corporate, Dynamic to Static Distribution Group,Monitor Alert Office 365 services,Group Member Count,Bulk Addition external users sharepoint, ADD to Exchange online License Group,All in One Office 365 Powershell,Bulk Addition of Secondary Email, Automate move mailboxes to o365, Addition Modification Termination Exchange users, Monitoring Unified Messaging port,Unified Messaging Extensions Report, Set Default Quota for SharePoint,Bulk Contact Creation and Forwarding, Uploading and Downloading files sftp, Monitoring Sftp file and download, Office 365 groups Write back, CSV parser, Email address update, Email address modify, MDM enrollment, Welcome Email, Intune Welcome Email, remove messages, remove email, SKOB to AD, SKOB to group, PowerApps report, Powerautomate Report, Flow report, Server QA, Server Check List, O365 IP range, IP range Monitor, o365 Admin Roles, memberof extraction, CSV to Excel, Skype Policy, UPN Flip, Rooms Report, License Reconciliation,Intune Bulk Device Removal, Device Removal, Clear Activesync, Lync Account Termination,Lync Account Removal, Enable office 365 services, Enable o365 Services, Export PST, Site collection Report, Office 365 Group Sites, System Admin,ActiveSync Report,White Space,Active Directory attributes, outlook automation, Intune Detect App, Distribution list Fix, Legacy DN, start service, stop service, disable service, Message tracking, Distribution lists report,Distribution groups report,Quota Report, Auto reply, out of office, robocopy multi session, Home Folder, local admin, Database, UPN SIP Mismatch, Recoverable deleted, teams number, Number assignment, teams phone, AD Group Hierarchy, Hierarchy membership, Sync Groups

Kubernetes Common Configuration Scoring System

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

Find leaked secrets via github search

All-in-one tool for managing vulnerability reports from AppSec pipelines

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Security Evaluation of Dynamic Binary Instrumentation Engines

A collection of manifests that will create pods with elevated privileges.

A command line security audit tool for Amazon Web Services

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

This ansible role gets information from an AWS VPC and generate a graphical representation of security groups

Scripts to gather system configuration information for offline/remote auditing

A toolkit of AD specific health checks that you can run in your environment to ensure your Active Directory is running optimally.

pentest framework

Unit testing framework for test driven security of AWS, GCP, Heroku and more.

A Python SDK for Tufin Orchestration Suite

📚 VoidHack CTF write-ups

The Offensive Manual Web Application Penetration Testing Framework.

How to prepare for OSCP complete guide

Set of tools to audit SIP based VoIP Systems

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a large application, with an emphasis on identifying development anti-patterns and footguns.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)