watsoninfosec's Stars
qeeqbox/social-analyzer
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
rapid7/metasploitable3
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
ngalongc/bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
mandiant/red_team_tool_countermeasures
NextronSystems/APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
elastic/detection-rules
iknowjason/Awesome-CloudSec-Labs
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
zidansec/CloudPeler
CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting information is certainly very useful for conducting further penetration testing, and analyzing websites with the same server.
mandiant/ThreatPursuit-VM
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
dfir-iris/iris-web
Collaborative Incident Response platform
vdohney/keepass-password-dumper
Original PoC for CVE-2023-32784
bluecapesecurity/PWF
Practical Windows Forensics Training
Chudry/Xerror
fully automated pentesting tool
defenxor/dsiem
Security event correlation engine for ELK stack
pownjs/recon
A powerful target reconnaissance framework powered by graph theory.
rasta-mouse/SharpC2
Command and Control Framework written in C#
CERTCC/CVE-2021-44228_scanner
Scanners for Jar files that may be vulnerable to CVE-2021-44228
BishopFox/cloudfoxable
Create your own vulnerable by design AWS penetration testing playground
FrenchCisco/RATel
RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.
smokeme/payloadGenerator
Generate obfuscated meterpreter shells
mandiant/Vulnerability-Disclosures
SafeBreach-Labs/DoubleDrive
A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
Security-Onion-Solutions/securityonion-docs
netspooky/dissectors
random dissectors
Security-Onion-Solutions/securityonion-image
Security-Onion-Solutions/securityonion-soc
spcnvdr/tracemail
A simple Python e-mail header analyzer
SieDoesTech/SieDoesTech