Stars
OSINT tool to find breached emails, databases, pastes, and relevant information
Roo Code gives you a whole dev team of AI agents in your code editor.
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
Cloud native networking and network security
HookChain: A new perspective for Bypassing EDR Solutions
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios
Malware Configuration And Payload Extraction
Purposely vulnerable Java application to help lead secure coding workshops
Omnisci3nt is an open-source web reconnaissance and intelligence tool for extracting deep technical insights from domains, including subdomains, SSL certificates, exposed services, archived content…
An information security preparedness tool to do adversarial simulation.
Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs
Purple Team Exercise Framework
Simulating Adversary Operations
A toolset to make a system look as if it was the victim of an APT attack
Small and highly portable detection tests based on MITRE's ATT&CK.
AADInternals PowerShell module for administering Azure AD and Office 365
Work with remote images registries - retrieving information, images, signing content
Find, verify, and analyze leaked credentials
A vulnerability scanner for container images and filesystems
Autoswagger by Intruder - detect API auth weaknesses
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Open source toolkit for scraping, OSINT and more.
Phunter is an osint tool allowing you to find various information via a phone number 🔎📞