iknowjason
Curious to learn. Husband and father. SANS Certified Instructor. Automation for InfoSec.
Phoenix, AZ
Pinned Repositories
AriaCloud
A Docker container for remote penetration testing.
AutomatedEmulation
An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
Awesome-CloudSec-Labs
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
BlueCloud
Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
CMLab
Configuration Management (CM) Security Playground. A small enterprise security lab to practice automation + CM tooling like Ansible, Chef, Puppet, SaltStack, DSCv2, DSCv3.
edge
Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
GHOSTSPlayground
A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.
hammer
An example of a mis-configured Rails application release under MIT license.
PurpleCloud
A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4
voiphopper
VoIP Hopper Network Penetration Testing Tool - Jumping from one VLAN to the next! A network infrastructure penetration testing security tool. A tool to test for the (in)security of VLANS. It can mimic the behavior of IP Phones to better understand business risks within an IP Telephony network infrastructure. VoIP Hopper is included in Kali Linux. This site is for up-to-date code. Documentation website:
iknowjason's Repositories
iknowjason/Awesome-CloudSec-Labs
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
iknowjason/PurpleCloud
A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4
iknowjason/AutomatedEmulation
An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
iknowjason/edge
Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
iknowjason/BlueCloud
Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
iknowjason/voiphopper
VoIP Hopper Network Penetration Testing Tool - Jumping from one VLAN to the next! A network infrastructure penetration testing security tool. A tool to test for the (in)security of VLANS. It can mimic the behavior of IP Phones to better understand business risks within an IP Telephony network infrastructure. VoIP Hopper is included in Kali Linux. This site is for up-to-date code. Documentation website:
iknowjason/hammer
An example of a mis-configured Rails application release under MIT license.
iknowjason/Velociraptor_Azure
A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.
iknowjason/GHOSTSPlayground
A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.
iknowjason/CMLab
Configuration Management (CM) Security Playground. A small enterprise security lab to practice automation + CM tooling like Ansible, Chef, Puppet, SaltStack, DSCv2, DSCv3.
iknowjason/azrecon
Az Enum & Recon Cheat Sheet
iknowjason/MacLab
Multi-use Terraform template to quickly spin up a Mac Lab in AWS!
iknowjason/conferences
Community contributions to SANS, DEFCON, ShmooCon, and ToorCon.
iknowjason/enterprise-azure-policy-as-code
Enterprise-ready Azure Policy-as-Code (PaC) solution (includes Az DevOps pipeline)
iknowjason/Spray365
Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.
iknowjason/for608-dev
iknowjason/HELK
The Hunting ELK
iknowjason/Nebula
Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components.
iknowjason/AzureHound
iknowjason/caldera_tines
Samples for Caldera and Tines automation playbooks
iknowjason/Invoke-Mimidogz
Simple AV testing
iknowjason/ioc-scan-pwsh-yara
IOC Yara scan over powershell remoting using Yara.
iknowjason/ms-identity-pythonwebapp
iknowjason/payloads
Caldera Operations Payloads
iknowjason/saml-pentest
Some python and ruby examples for saml xml manipulation.
iknowjason/SANSSEC598-Resources
Rsources that are publicly available, these resources are linked to the SANS SEC598 Class
iknowjason/SlingshotCE
iknowjason/tracecat
The open source Tines / Splunk SOAR alternative.
iknowjason/velociraptor-to-timesketch
iknowjason/Velociraptorbbc
A velociraptor with Timesketch automation lab for DFIR acquisition, triage, analysis.