iknowjason

Curious to learn. Husband and father. SANS Certified Instructor. DevOps automation for InfoSec.

Phoenix, AZ

Pinned Repositories

AriaCloud
A Docker container for remote penetration testing.
Language:HCL132 10 027
AutomatedEmulation
An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
Language:HCL154 5 428
Awesome-CloudSec-Labs
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
1.4k 24 3182
BlueCloud
Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
Language:HTML122 7 829
CMLab
Configuration Management (CM) Security Playground. A small enterprise security lab to practice automation + CM tooling like Ansible, Chef, Puppet, SaltStack, DSCv2, DSCv3.
Language:HCL10 3 03
edge
Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
Language:Go157 6 1418
GHOSTSPlayground
A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.
Language:Smarty11 2 01
hammer
An example of a mis-configured Rails application release under MIT license.
Language:Ruby20 4 314
PurpleCloud
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
Language:Python498 25 2386
voiphopper
VoIP Hopper Network Penetration Testing Tool - Jumping from one VLAN to the next! A network infrastructure penetration testing security tool. A tool to test for the (in)security of VLANS. It can mimic the behavior of IP Phones to better understand business risks within an IP Telephony network infrastructure. VoIP Hopper is included in Kali Linux. This site is for up-to-date code. Documentation website:
Language:Roff66 4 111

iknowjason's Repositories

iknowjason/Awesome-CloudSec-Labs
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
1.4k 24 3182
iknowjason/PurpleCloud
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
Language:Python498 25 2386
iknowjason/edge
Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
Language:Go157 6 1418
iknowjason/AutomatedEmulation
An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
Language:HCL154 5 428
iknowjason/BlueCloud
Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
Language:HTML122 7 829
iknowjason/voiphopper
VoIP Hopper Network Penetration Testing Tool - Jumping from one VLAN to the next! A network infrastructure penetration testing security tool. A tool to test for the (in)security of VLANS. It can mimic the behavior of IP Phones to better understand business risks within an IP Telephony network infrastructure. VoIP Hopper is included in Kali Linux. This site is for up-to-date code. Documentation website:
Language:Roff66 4 111
iknowjason/hammer
An example of a mis-configured Rails application release under MIT license.
Language:Ruby20 4 314
iknowjason/Velociraptor_Azure
A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.
Language:HCL20 6 04
iknowjason/GHOSTSPlayground
A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.
Language:Smarty11 2 01
iknowjason/CMLab
Configuration Management (CM) Security Playground. A small enterprise security lab to practice automation + CM tooling like Ansible, Chef, Puppet, SaltStack, DSCv2, DSCv3.
Language:HCL10 3 03
iknowjason/MacLab
Multi-use Terraform template to quickly spin up a Mac Lab in AWS!
Language:HCL7 2 00
iknowjason/azrecon
Az Enum & Recon Cheat Sheet
Language:Shell6 2 04
iknowjason/BlueTools
3 3 0
iknowjason/conferences
Community contributions to SANS, DEFCON, ShmooCon, and ToorCon.
3 3 0
iknowjason/enterprise-azure-policy-as-code
Enterprise-ready Azure Policy-as-Code (PaC) solution (includes Az DevOps pipeline)
Language:PowerShell2 1 0
iknowjason/HELK_Azure
A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small HELK R&D lab in Azure.
Language:HCL2 3 01
iknowjason/Spray365
Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.
Language:Python2 2 01
iknowjason/for608-dev
Language:Shell1 3 0
iknowjason/HELK
The Hunting ELK
Language:Jupyter Notebook1 2 01
iknowjason/AzureHound
iknowjason/caldera_tines
Samples for Caldera and Tines automation playbooks
Language:Shell1
iknowjason/ioc-scan-pwsh-yara
IOC Yara scan over powershell remoting using Yara.
Language:PowerShell
iknowjason/ms-identity-pythonwebapp
Language:PowerShell
iknowjason/payloads
Caldera Operations Payloads
1 0
iknowjason/saml-pentest
Some python and ruby examples for saml xml manipulation.
Language:Python3 0
iknowjason/SANSSEC598-Resources
Rsources that are publicly available, these resources are linked to the SANS SEC598 Class
1
iknowjason/SlingshotCE
Language:Ruby4 0
iknowjason/tracecat
The open source Tines / Splunk SOAR alternative.
Language:TypeScript
iknowjason/velociraptor-to-timesketch
Language:Shell0 0
iknowjason/Velociraptorbbc
A velociraptor with Timesketch automation lab for DFIR acquisition, triage, analysis.
Language:Smarty1 0