javierrprada Goto Github PK

autotriagebot

AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.

awesome-azure-security

A curated list of awesome Microsoft Azure Security tools, guides, blogs, and other resources.

awesome-hacking

Awesome hacking is an awesome collection of hacking tools.

awesome-malware-analysis

Defund the Police.

azure-sentinel-notebooks

Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.

azuread-attack-defense

This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected.

azurehound

azurehunter

A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365

badblood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

bark

BloodHound Attack Research Kit

bloodhound

Six Degrees of Domain Admin

capa

The FLARE team's open-source tool to identify capabilities in executable files.

certgraph

An open source intelligence tool to crawl the graph of certificate Alternate Names

certi

ADCS abuser

certify

Active Directory certificate abuse.

certipy

Tool for Active Directory Certificate Services enumeration and abuse

crowdstrike-rtr-scripts

crt

Contact: [email protected]

ct-exposer

An OSINT tool that discovers sub-domains by searching Certificate Transparency logs

cuckoo

Cuckoo Sandbox is an automated dynamic malware analysis system

cuckoo3

Cuckoo 3 is a Python 3 open source automated malware analysis system.

deps.dev

Resources for the deps.dev API

didierstevenssuite

Please no pull requests for this repository. Thanks!

diffie-hellman-primes

A collection of Diffie-Hellman primes generated by random people, no idea if they are legitimate or not.

django-defectdojo

DefectDojo is an open-source DevSecOps and vulnerability management tool.

faraday

Collaborative Penetration Test and Vulnerability Management Platform

hardentools

Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.

hawk

Powershell Based tool for gathering information related to O365 intrusions and potential Breaches

impacket

Impacket is a collection of Python classes for working with network protocols.

incident-playbook

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]