dyetto's repositories
CloudConsoleCartographer
Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. CloudTrail logs) and mapping them to the original user input actions in the management console UI for simplified analysis and explainability.
Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
DevSecOps
Ultimate DevSecOps library
aws-stepfunctions-examples
AWS Step Functions is an orchestration service for reliably executing multi-step processes using visual workflows. This repository includes detailed examples that will help you unlock the power of serverless workflow.
aws-arsenal
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
awesome-incident-response
A curated list of tools for incident response
evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
awesome-malware-analysis
Defund the Police.
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
opencve
CVE Alerting Platform
TypoSquat-Domain-Comparison
Comparison of the current free tools available to detect potential typos squatting domains and a feature/algorithm overview.
dnstwist
A tool to monitor for potential spear phishing domains and send to Slack.
onetimesecret
Keep passwords and other sensitive information out of your inboxes and chat logs.
aws-security-reference-architecture-examples
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation and Customizations for AWS Control Tower.
service-screener
A tool that allows AWS customers to automate checks on their environment and services based on AWS best practices and provide recommendations on how to improve.
DevSecOpsGuideline
The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
opensquat
The openSquat project is an open-source solution for detecting phishing domains and domain squatting. It searches for newly registered domains that impersonate legitimate domains on a daily basis. This project aims to help protect individuals and organizations from cyber threats by identifying and alerting them to potentially malicious domains.
gantt
GPL version of Javascript Gantt Chart
WIN-FOR
Windows Forensics Environment Builder
Falcon-Toolkit
Unleash the power of the Falcon Platform at the CLI
amazon-cloudwatch-user-guide
The open source version of the Amazon CloudWatch User Guide
pretender
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
h8mail
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
mop
Stock market tracker for hackers.
PentestTools
Awesome Pentest Tools Collection
infoooze
Infoooze is an Open-source intelligence (OSINT) tool in NodeJs. It provides various modules that allow efficient searches.