jorgeorchilles's Stars
cedowens/Terraform_DigitalOcean_Scripts
Scripts to automate standing up C2 infra with firewall settings inside of DigitalOcean.
PlumHound/PlumHound
Bloodhound Reporting for Blue and Purple Teams
fierytermite/attack-navigator
Web app that provides basic navigation and annotation of ATT&CK matrices
fierytermite/tram-1
Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.
intelforge/tmc
Threat Mapping Catalogue
center-for-threat-informed-defense/adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
iknowjason/AriaCloud
A Docker container for remote penetration testing.
iknowjason/PurpleCloud
A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4
Haydz/Emulate.GO
A tool to abstract away the complexity of executing command line indicators in adversary emulation.
mlgualtieri/PennyScythe
D4stiny/spectre
A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.
s0lst1c3/dropengine
DropEngine provides a malleable framework for creating shellcode runners, allowing operators to choose from a selection of components and combine them to create highly sophisticated payloads within seconds.
natlas/natlas
Attack Surface Management since before Attack Surface Management was a thing
IncideDigital/Mistica
An open source swiss army knife for arbitrary communication over application protocols
JoelGMSec/AutoRDPwn
The Shadow Attack Framework
brompwnie/botb
A container analysis and exploitation tool for pentesters and engineers.
dsnezhkov/deepsea
DeepSea Phishing Gear
cyberark/KubiScan
A tool to scan Kubernetes cluster for risky permissions
Telefonica/ATTPwn
ATTPwn
qsecure-labs/overlord
Overlord - Red Teaming Infrastructure Automation
scythe-io/purple-team-exercise-framework
Purple Team Exercise Framework