Giters
Jason Ostrom (iknowjason)

iknowjason

Geek Repo

302

followers

1

following

129

stars

Location:Phoenix, AZ

Home Page:https://jasono.io

Twitter:@securitypuck

Github PK Tool:Github PK Tool

Jason Ostrom's repositories

Awesome-CloudSec-Labs

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

Stargazers:1325Issues:23Issues:3

PurpleCloud

A little tool to play with Azure Identity - Azure Active Directory lab creation tool

Language:PythonLicense:MITStargazers:486Issues:25Issues:23

edge

Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.

Language:GoLicense:NOASSERTIONStargazers:150Issues:6Issues:13

AutomatedEmulation

An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.

Language:HCLLicense:MITStargazers:145Issues:4Issues:0

AriaCloud

A Docker container for remote penetration testing.

Language:HCLStargazers:130Issues:10Issues:0

BlueCloud

Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.

Language:HTMLLicense:MITStargazers:122Issues:7Issues:8

voiphopper

VoIP Hopper Network Penetration Testing Tool - Jumping from one VLAN to the next! A network infrastructure penetration testing security tool. A tool to test for the (in)security of VLANS. It can mimic the behavior of IP Phones to better understand business risks within an IP Telephony network infrastructure. VoIP Hopper is included in Kali Linux. This site is for up-to-date code. Documentation website:

Language:RoffLicense:GPL-3.0Stargazers:63Issues:4Issues:1

Velociraptor_Azure

A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.

Language:HCLStargazers:20Issues:6Issues:0

hammer

An example of a mis-configured Rails application release under MIT license.

Language:RubyLicense:MITStargazers:18Issues:4Issues:3

masscan_nmap

Automating masscan and nmap together.

Language:PythonStargazers:10Issues:0Issues:0

CMLab

Configuration Management (CM) Security Playground. A small enterprise security lab to practice automation + CM tooling like Ansible, Chef, Puppet, DSCv2, DSCv3, SaltStack.

Language:HCLStargazers:9Issues:3Issues:0

azrecon

Az Enum & Recon Cheat Sheet

Language:ShellStargazers:6Issues:2Issues:0

MacLab

Multi-use Terraform template to quickly spin up a Mac Lab in AWS!

Language:HCLLicense:MITStargazers:5Issues:2Issues:0

BlueTools

Stargazers:3Issues:3Issues:0

conferences

Community contributions to SANS, DEFCON, ShmooCon, and ToorCon.

Stargazers:3Issues:3Issues:0

enterprise-azure-policy-as-code

Enterprise-ready Azure Policy-as-Code (PaC) solution (includes Az DevOps pipeline)

License:MITStargazers:2Issues:0Issues:0

HELK_Azure

A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small HELK R&D lab in Azure.

Language:HCLStargazers:2Issues:3Issues:0

Spray365

Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.

Language:PythonLicense:MITStargazers:2Issues:2Issues:0

BadBlood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

Language:PowerShellLicense:GPL-3.0Stargazers:1Issues:2Issues:0

for608-dev

Language:ShellStargazers:1Issues:0Issues:0

HELK

The Hunting ELK

Language:Jupyter NotebookLicense:GPL-3.0Stargazers:1Issues:0Issues:0

AzureHound

Stargazers:0Issues:0Issues:0

caldera_tines

Samples for Caldera and Tines automation playbooks

Language:ShellStargazers:0Issues:0Issues:0

logstash-example

Demonstration logstash configuration using a docker-compose

Stargazers:0Issues:0Issues:0

ms-identity-pythonwebapp

Language:PowerShellLicense:MITStargazers:0Issues:0Issues:0

panther

Detect threats with log data and improve cloud security posture

Language:GoLicense:AGPL-3.0Stargazers:0Issues:2Issues:0

saml-pentest

Some python and ruby examples for saml xml manipulation.

Language:PythonStargazers:0Issues:0Issues:0

SANSSEC598-Resources

Rsources that are publicly available, these resources are linked to the SANS SEC598 Class

Stargazers:0Issues:0Issues:0

SlingshotCE

Language:RubyStargazers:0Issues:4Issues:0

velociraptor-to-timesketch

License:MITStargazers:0Issues:0Issues:0