579 Open source projects that are alternatives of or similar to Yeti

Defanged Indicator of Compromise (IOC) Extractor.

A big list of Android Hackerone disclosed reports and other resources.

Vulnerability Dashboard

Web browser forensics for Google Chrome/Chromium

Damn Vulnerable Web Application (DVWA)

SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab

The Correlated CVE Vulnerability And Threat Intelligence Database API

Kaspersky's GReAT KLara

Most usable tools for iOS penetration testing

Semi-automatic OSINT framework and package manager

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

GPT-2 Telegram Chat bot

CIRCL system forensic tools or a jumble of tools to support forensic

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

Maintained collection of OSINT related resources. (All Free & Actionable)

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

Orwell is a RAT and Botnet designed as a trio of programs by Landon Powell.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

A collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic

Imports Alienvault OTX pulses to a MISP instance

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

Automation and Scaling of Digital Forensics Tools

Bloodhound for Blue and Purple Teams

被动式漏洞扫描系统

PowerShell framework to assess Azure security

Dradis Framework: Colllaboration and reporting for IT Security teams

📇 Digital Forensics Artifact Repository (forensicanalysis edition)

An Active Defense and EDR software to empower Blue Teams

Hershell is a simple TCP reverse shell written in Go.

Fast web fuzzer written in Go

A curated list of awesome neuroscience libraries, software and any content related to the domain.

🌰 An onion url inspector for inspecting deep web links.

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A collection of various GitHub gists for hackers, pentesters and security researchers

A curated list of tools for incident response

Intelligence tool but without API key

Educational, CTF-styled labs for individuals interested in Memory Forensics

DeimosC2 is a Golang command and control framework for post-exploitation.

Pentest Report Generator

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

Extract endpoints from APK files

Multi Tool Subdomain Enumeration

OSINT Swiss Army Knife

A collection of response templates for invalid bug bounty reports.

PHP Implementation of the VS Code Language Server Protocol 🆚↔🖥

Idiomatic nmap library for go developers

An information security preparedness tool to do adversarial simulation.

CLI tool for open source and threat intelligence

An advanced tool for email reconnaissance