Andy Allan's repositories
ansible-osx-command-line-tools
An Ansible role for installing OS X Command Line Tools
auditd
Best Practice Auditd Configuration
auditd-attack
A Linux Auditd rule set mapped to MITRE's Attack Framework
blue-team-wiki
Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
cheat.sh
the only cheat sheet you need
Cloakify
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
consoleme
A Central Control Plane for AWS Permissions and Access
CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
dispatch
All of the ad-hoc things you're doing to manage incidents today, done for you, and much more!
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
flan
A pretty sweet vulnerability scanner
kubernetes-the-hard-way
Bootstrap Kubernetes the hard way on Google Cloud Platform. No scripts.
mediumish-theme-jekyll
Jekyll Template - Mediumish
multi-git-status
Show uncommitted, untracked and unpushed changes for multiple Git repos
response
Monzo's real-time incident response and reporting tool ⚡️
ssh-audit
SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
testssl.sh
Testing TLS/SSL encryption anywhere on any port
trape
People tracker on the Internet: OSINT analysis and research tool by Jose Pino
webXray
webxray is a tool for analyzing third-party content on webpages and identifying the companies which collect user data.