majimenez76 Goto Github PK

adhdproject.github.io

apt-lab-terraform

Purple Teaming Attack & Hunt Lab - Terraform

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

atomicpurpleteam

Atomic Purple Team Framework and Lifecycle

badblood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

bloodhound

Six Degrees of Domain Admin

cloudlabsad

Terraform + Ansible deployment scripts for an Active Directory lab environment.

credsniper

CredSniper is a phishing framework written with the Python micro-framework Flask and Jinja2 templating which supports capturing 2FA tokens.

deepbluecli

detectionlab

Automate the creation of a lab environment complete with security tooling and logging best practices

domainpasswordspray

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!

dpat

Domain Password Audit Tool for Pentesters

edr-testing-script

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

eyewitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

foca

Tool to find metadata and hidden information in the documents.

grr

GRR Rapid Response: remote live forensics for incident response

hashcat

World's fastest and most advanced password recovery utility

hostrecon

This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase. It gathers information about the local system, users, and domain information. It does not use any 'net', 'ipconfig', 'whoami', 'netstat', or other system commands to help avoid detection.

kansa

A Powershell incident response framework

logontracer

Investigate malicious Windows logon by visualizing and analyzing Windows event log

lolbas

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

microsoft-365-defender-hunting-queries

Sample queries for Advanced hunting in Microsoft 365 Defender

password_cracking_rules

One rule to crack all passwords. or atleast we hope so.

plumhound

Bloodhound for Blue and Purple Teams

powershell

powersploit

PowerSploit - A PowerShell Post-Exploitation Framework

raccine

A Simple Ransomware Vaccine

recon-ng

Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

seclists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

sigma

Generic Signature Format for SIEM Systems