Pinned Repositories
Admin-Scanner
This tool is design to find admin panel of any website by using custom wordlist or default wordlist easily and allow you to find admin panel trough a proxy server
AdminLTE
AdminLTE - Free admin dashboard template based on Bootstrap 4 & 3
aftermath
Aftermath is a free macOS IR framework
anchore-engine
A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Anomaly-Detection
Allstate Project: Anomaly Detection in Cybersecurity Data, Specifically Within DNS Logs
APKHunt
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
APT-Hunter
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
DSAT-DNSSecurityAnalysisTool
The DNS Security Analysis Tool is a Python-based utility designed to conduct an in-depth security analysis of DNS configurations for multiple domains.
HELK
The Hunting ELK
Loki
Loki - Simple IOC and Incident Response Scanner
shamimrezasohag's Repositories
shamimrezasohag/DSAT-DNSSecurityAnalysisTool
The DNS Security Analysis Tool is a Python-based utility designed to conduct an in-depth security analysis of DNS configurations for multiple domains.
shamimrezasohag/aftermath
Aftermath is a free macOS IR framework
shamimrezasohag/Loki
Loki - Simple IOC and Incident Response Scanner
shamimrezasohag/Auto-Penetration-AI-Supported-Mechanism
AI modular structure that provides automation-based attack and penetration
shamimrezasohag/autospec
RPM packaging automation tool
shamimrezasohag/AWSAttacks
This repo contains IOC, malware and malware analysis associated with AWS cloud
shamimrezasohag/beszel
A lightweight server monitoring hub with historical data, docker stats, and alerts.
shamimrezasohag/BloodHound
Six Degrees of Domain Admin
shamimrezasohag/chainloop
Chainloop is an Open Source Metadata Vault for your Software Supply Chain metadata, SBOMs, VEX, SARIF files, QA reports, and more.
shamimrezasohag/dep-scan
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
shamimrezasohag/Digital-Forensics-Script-for-Linux
Advanced Bash script designed for conducting digital forensics on Linux systems
shamimrezasohag/flare-fakenet-ng
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
shamimrezasohag/ForensicMiner
A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
shamimrezasohag/FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to DM if you find some bugs :)
shamimrezasohag/grafana-stack
We're going to provide various examples to set up and work with the Grafana LGTM stack including Loki, Grafana, Tempo and Mimir on a kubernetes cluster
shamimrezasohag/HavocC2-Forensics
A set of tools and resources for analysis of Havoc C2
shamimrezasohag/hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
shamimrezasohag/jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
shamimrezasohag/keep
The open-source alert management and AIOps platform
shamimrezasohag/matano
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
shamimrezasohag/OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
shamimrezasohag/OffSec-Reporting
Offensive Security OSCP, OSWP, OSEP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA Exam and Lab Reporting / Note-Taking Tool
shamimrezasohag/raven
RAVEN (Risk Analysis and Vulnerability Enumeration for CI/CD)
shamimrezasohag/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
shamimrezasohag/Sn1per
Attack Surface Management Platform
shamimrezasohag/triageX
TriageX - Linux Triage Tool Is a BASH shell script designed to collect evidences in an incident with Linux machines. The script uses native Linux commands to run.
shamimrezasohag/trippy
A network diagnostic tool
shamimrezasohag/Web-Attack-Cheat-Sheet
Web Attack Cheat Sheet
shamimrezasohag/yakit
Cyber Security ALL-IN-ONE Platform
shamimrezasohag/Zeek-Intelligence-Feeds
Zeek-Formatted Threat Intelligence Feeds