RoseSecurity

Terraform, Go, and DevOps

@1898andCo

Pinned Repositories

Abusing-Roku-APIs
A fun repository on how to externally issue commands to Roku devices utilizing the External Control Protocol (ECP). The repository covers how to enumerate devices, issue commands via "curl," and designing custom scripts to mess with friends and family!
265 6 39
Anti-Virus-Evading-Payloads
During the exploitation phase of a pen test or ethical hacking engagement, you will ultimately need to try to cause code to run on target system computers. Here is a simple way to evade anti-virus software when creating backdoors!
695 26 779
DNS-Fender
A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using Shodan APIs and native Linux commands, this tool is in development to cripple web servers using spoofed DNS recursive queries.
Language:Shell60 6 311
Kuzco
Kuzco reviews your Terraform and OpenTofu resources, compares them to the provider schema to detect unused parameters, and uses AI to suggest improvements and fixes
Language:Go109 1 74
Obfusc8ted
You and the AppleLabs' Incident Response Team have been notified of a potential breach to a Human Resources' workstation. According to the Human Resources representative, they did not notice any anomalous activity while browsing the web, but the AppleLabs' system information and event management (SIEM) instance alerted on a suspicious domain. Moments later, the host-based intrusion detection system (HIDS) alerted on several malicious programs acting as potential keyloggers. While the AppleLabs' IT and Incident Response Teams struggle to find the answers, can you lend us your digital forensic experience to hunt down this threat actor?
75 3 24
Red-Teaming-TTPs
Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
1.5k 23 1187
ScrapPY
ScrapPY is a Python utility for scraping manuals, documents, and other sensitive PDFs to generate wordlists that can be utilized by offensive security tools to perform brute force, forced browsing, and dictionary attacks against targets. The tool dives deep to discover keywords and phrases leading to potential passwords or hidden directories.
Language:Python200 3 219
Terramaid
A utility for generating Mermaid diagrams from Terraform configurations
Language:Go286 2 128
WindowsKiller
Generates a flood of Router Advertisements (RA) with random source MAC addresses and IPv6 prefixes. Computers, which have stateless autoconfiguration enabled by default (every major OS), will start to compute IPv6 suffix and update their routing table to reflect the accepted announcement. This will cause 100% CPU usage on Windows and platforms, preventing to process other application requests.
Language:Lua103 3 24
WolfPack
WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
Language:HCL117 2 011

RoseSecurity's Repositories

RoseSecurity/Red-Teaming-TTPs
Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
1.5k 23 1187
RoseSecurity/Anti-Virus-Evading-Payloads
During the exploitation phase of a pen test or ethical hacking engagement, you will ultimately need to try to cause code to run on target system computers. Here is a simple way to evade anti-virus software when creating backdoors!
695 26 779
RoseSecurity/Terramaid
A utility for generating Mermaid diagrams from Terraform configurations
Language:Go286 2 128
RoseSecurity/Abusing-Roku-APIs
A fun repository on how to externally issue commands to Roku devices utilizing the External Control Protocol (ECP). The repository covers how to enumerate devices, issue commands via "curl," and designing custom scripts to mess with friends and family!
265 6 39
RoseSecurity/ScrapPY
ScrapPY is a Python utility for scraping manuals, documents, and other sensitive PDFs to generate wordlists that can be utilized by offensive security tools to perform brute force, forced browsing, and dictionary attacks against targets. The tool dives deep to discover keywords and phrases leading to potential passwords or hidden directories.
Language:Python200 3 219
RoseSecurity/WolfPack
WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
Language:HCL117 2 011
RoseSecurity/Kuzco
Kuzco reviews your Terraform and OpenTofu resources, compares them to the provider schema to detect unused parameters, and uses AI to suggest improvements and fixes
Language:Go109 1 74
RoseSecurity/WindowsKiller
Generates a flood of Router Advertisements (RA) with random source MAC addresses and IPv6 prefixes. Computers, which have stateless autoconfiguration enabled by default (every major OS), will start to compute IPv6 suffix and update their routing table to reflect the accepted announcement. This will cause 100% CPU usage on Windows and platforms, preventing to process other application requests.
Language:Lua103 3 24
RoseSecurity/Obfusc8ted
You and the AppleLabs' Incident Response Team have been notified of a potential breach to a Human Resources' workstation. According to the Human Resources representative, they did not notice any anomalous activity while browsing the web, but the AppleLabs' system information and event management (SIEM) instance alerted on a suspicious domain. Moments later, the host-based intrusion detection system (HIDS) alerted on several malicious programs acting as potential keyloggers. While the AppleLabs' IT and Incident Response Teams struggle to find the answers, can you lend us your digital forensic experience to hunt down this threat actor?
75 3 24
RoseSecurity/DNS-Fender
A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using Shodan APIs and native Linux commands, this tool is in development to cripple web servers using spoofed DNS recursive queries.
Language:Shell60 6 311
RoseSecurity/SIMATIC-SMACKDOWN
A compact and simple program targeting SIMATIC S7 Programmable Logic Controllers (PLCs) written in Go. Allowing for cross-compilation to target multiple operating systems out of the box, SIMATIC-SMACKDOWN enumerates networks for S7 devices before launching a distributed attack to STOP PLC CPUs.
Language:Go49 2 010
RoseSecurity/APOLOGEE
APOLOGEE is a Python script and Metasploit module that enumerates a hidden directory on Siemens APOGEE PXC BACnet Automation Controllers (all versions prior to V3.5) and TALON TC BACnet Automation Controllers (all versions prior to V3.5). With a 7.5 CVSS, this exploit allows for an attacker to perform an authentication bypass using an alternate path or channel to access hidden directories in the web server. This repository takes advantage of CVE-2017-9947.
Language:Python47 2 18
RoseSecurity/Enumerating-ICS-SCADA-Devices
A compilation of scripts and scans for discovering and enumerating industrial control and SCADA devices. Utilizing open-source tools, I have compiled scans and scripts for targeting Operational Technology (OT) devices and hosts!
Language:Ruby43 3 310
RoseSecurity/CloudPulse
A tool to curate compelling news on cloud technologies and cybersecurity. By aggregating information from RSS feeds and Reddit, it identifies the most noteworthy and impactful updates in the tech industry.
Language:Python33 3 01
RoseSecurity/Automator-Terminator
A Proof-of-Concept Layer 2 Denial of Service Attack that disrupts low level operations of Programmable Logic Controllers within industrial environments. Utilizing multithreaded processing, Automator-Terminator delivers a powerful wave of spoofed ethernet packets to a null MAC address.
Language:Python31 3 25
RoseSecurity/RoseSecurity
27 2 0
RoseSecurity/Enum_AzureSubdomains
A Metasploit Auxiliary module for enumerating public Azure services by locating valid subdomains through various DNS queries.
Language:Ruby13 2 02
RoseSecurity/FaviconLocator
Computes the hashes of a favicon file and provides the search syntax for Shodan, Censys and Zoomeye
Language:Python3 1 0
RoseSecurity/atmos.nvim
🚀 A lightweight, user-friendly Neovim plugin for easily navigating and managing Atmos stacks and components.
Language:Lua2
RoseSecurity/rosesecurity.github.io
A blog about development, security, and other nerdy things
Language:CSS2 1 0
RoseSecurity/terraform-aws-components
Opinionated, self-contained Terraform root modules that each solve one, specific problem
Language:HCL2 1 0
RoseSecurity/homebrew-core
🍻 Default formulae for the missing package manager for macOS (or Linux)
Language:Ruby1
RoseSecurity/terraform-provider-aws
The AWS Provider enables Terraform to manage AWS resources.
Language:Go
RoseSecurity/terraform-provider-forwardemail
Terraform Provider for Forward Email
RoseSecurity/terraform-spacelift-datadog
Terraform module providing a notification-based integration between Spacelift and Datadog

RoseSecurity

Pinned Repositories

Abusing-Roku-APIs

Anti-Virus-Evading-Payloads

DNS-Fender

Kuzco

Obfusc8ted

Red-Teaming-TTPs

ScrapPY

Terramaid

WindowsKiller

WolfPack

RoseSecurity's Repositories

RoseSecurity/Red-Teaming-TTPs

RoseSecurity/Anti-Virus-Evading-Payloads

RoseSecurity/Terramaid

RoseSecurity/Abusing-Roku-APIs

RoseSecurity/ScrapPY

RoseSecurity/WolfPack

RoseSecurity/Kuzco

RoseSecurity/WindowsKiller

RoseSecurity/Obfusc8ted

RoseSecurity/DNS-Fender

RoseSecurity/SIMATIC-SMACKDOWN

RoseSecurity/APOLOGEE

RoseSecurity/Enumerating-ICS-SCADA-Devices

RoseSecurity/CloudPulse

RoseSecurity/Automator-Terminator

RoseSecurity/RoseSecurity

RoseSecurity/Enum_AzureSubdomains

RoseSecurity/FaviconLocator

RoseSecurity/atmos.nvim

RoseSecurity/rosesecurity.github.io

RoseSecurity/terraform-aws-components

RoseSecurity/homebrew-core

RoseSecurity/terraform-provider-aws

RoseSecurity/terraform-provider-forwardemail

RoseSecurity/terraform-spacelift-datadog