Kroof's Stars
kubescape/kubescape
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
zcgonvh/EfsPotato
Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
redcanaryco/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
bmarandel/Collect-Files-Via-McAfee-ePO
Collecting files from endpoints via McAfee ePolicy Orchestrator
proxycannon/proxycannon-ng
A private botnet using multiple cloud environments for pentesters and red teamers. - Built by the community during a hackathon at the WWHF 2018 security conference
mosesrenegade/tools-repo
Statically Compiled Tools that could be used in engagements
salesforce/cloud-guardrails
Rapidly apply hundreds of security controls in Azure
olafhartong/sysmon-modular
A repository of sysmon configuration modules
besimorhino/powercat
netshell features all in version 2 powershell
fortra/impacket
Impacket is a collection of Python classes for working with network protocols.
microsoft/terminal
The new Windows Terminal and the original Windows console host, all in the same place!
magnologan/awesome-k8s-security
A curated list for Awesome Kubernetes Security resources
mandiant/flare-ida
IDA Pro utilities from FLARE team
rsmudge/Malleable-C2-Profiles
Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.
CyberMonitor/APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
MichaelKoczwara/Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
initstring/cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
nyxgeek/onedrive_user_enum
onedrive user enumeration - pentest tool to enumerate valid o365 users
cncf/tag-security
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
common-fate/iamzero
Identity & Access Management simplified and secure.
nomi-sec/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
Shuffle/Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
nccgroup/whalescan
Whalescan is a vulnerability scanner for Windows containers, which performs several benchmark checks, as well as checking for CVEs/vulnerable packages on the container
neuvector/kubernetes-cis-benchmark
A set of scripts inspired by CIS Kubernetes Benchmark that checks best-practices of Kubernetes installations
secgroundzero/KQL_Reference_Manual
kevoreilly/CAPEv2
Malware Configuration And Payload Extraction
SigmaHQ/sigma
Main Sigma Rule Repository
Neo23x0/Raccine
A Simple Ransomware Vaccine
kgretzky/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Security-Onion-Solutions/securityonion
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.