Name: CiscoCXSecurityLabs
Type: Organization
Bio: Cisco CX Security Labs is the security R&D arm of @Cisco's professional services CX organisation including combined output of @portcullislabs and @Neohapsis
Twitter: CiscoCXSecurity
Location: US, EMEAR, APJC
CiscoCXSecurityLabs's Projects
PowerShell PoC for detecting horizontal user brute force attacks
Block and activate a Duo user in SecureX Orchestration
enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts
A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
FreeRDP-pth is a slightly modified version of FreeRDP that tries to authenticate using a password hash instead of a password
Character and Diagraph Frequency Analysis Tool
GeoIP plotting script written in Python to help security teams draw visualized reports from IP addresses
get-dhcp-opts is a tool to discover DHCP/BOOTP servers on your LAN, and dump the DHCP/BOOTP options
pyATS Getting Started guide sources, URL: https://developer.cisco.com/docs/pyats-getting-started/
HeaderCheck is a Python script used to check the security settings of various headers returned by web servers
hoppy is a Python script to probe HTTP options and perform scanning for information disclosure issues
http-dir-enum is a tool for finding content that is not linked on a website. Its main use is for finding directories that exist on a server. Simply provide a dictionary file and a URL.
iker is a Python script to analyse the security of the key exchange phase in IPsec based VPNs
Cisco Umbrella Investigate threat hunting scripts
This is a simple script that converts default Policy XML file obtained from ISE to JSON format for better visualization.
Python tool for converting from joy format to JA3 format SSL/TLS hashes
A tool to check which keychain items are available to an attacker once an iOS device has been jailbroken
Lab Simulator for SecureX Lab
lab_simulator-002 for XDR Demos
linikatz is a tool to attack AD on UNIX
Tracking interesting Linux (and UNIX) malware. Send PRs
Detection rules to look for Log4J usage and exploitation
Loki Scanner with output redirected to windows event log for easy incident response
Public repository for ManySecured documents under development. Its purpose is to enable discussion across the IoT security community.
ManySSL is a Perl script to enumerate supported SSL cipher suites supported by network services (principally HTTPS)