michal-miziolek-fiedorczuk

Michał Miziołek-Fiedorczuk's starred repositories

OSINT

Collections of tools and methods created to aid in OSINT collection

Language:Python269600

cloud-custodian

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

Language:PythonApache-2.0529100

ScoutSuite

Multi-Cloud Security Auditing Tool

Language:PythonGPL-2.0632000

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

Language:PythonApache-2.0994300

awesome-cloud-security

🛡️ Awesome Cloud Security Resources ⚔️

197200

lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Language:ShellGPL-3.01278100

azurenum

Enumerate Microsoft Entra ID (Azure AD) fast

Language:PythonMIT8100

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoMIT1826900

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Language:JavaScriptMIT859800

CloudGrappler

Language:PythonApache-2.021400

gram

Gram is Klarna's own threat model diagramming tool

Language:TypeScriptApache-2.025700

puter

🌐 The Web OS! Free, Open-Source, and Self-Hostable.

Language:JavaScriptAGPL-3.02097200

Damn-Vulnerable-RESTaurant-API-Game

Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.

Language:PythonGPL-3.039200

NTHW

Not The Hidden Wiki - The largest repository of links related to cybersecurity

40100

Incident-Response-Powershell

PowerShell Digital Forensics & Incident Response Scripts.

Language:PowerShellBSD-3-Clause43500

aws-security-reference-architecture-examples

Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.

Language:PythonNOASSERTION94600

cvemap

Navigate the CVE jungle with ease.

Language:GoMIT153300

BloodHound

Six Degrees of Domain Admin

Language:GoApache-2.089300

BARK

BloodHound Attack Research Kit

Language:PowerShellGPL-3.038300

ROADtools

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Language:PythonMIT174500

ssh3

SSH3: faster and rich secure shell using HTTP/3, checkout our article here: https://arxiv.org/abs/2312.08396 and our Internet-Draft: https://datatracker.ietf.org/doc/draft-michel-ssh3/

Language:GoApache-2.0318700

obsidian-tokyonight

Tokyo Night theme for Obsidian

Language:CSSMIT9400

MasterParser

MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs

Language:PowerShellMIT54600

cloudflared

Cloudflare Tunnel client (formerly Argo Tunnel)

Language:GoApache-2.0844800

ADOKit

Azure DevOps Services Attack Toolkit

Language:C#Apache-2.023000

Awesome-Azure-Pentest

A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

GPL-3.096000

awesome-soc

A collection of sources of documentation, as well as field best practices, to build/run a SOC

CC0-1.0107600

sentinel-attack

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Language:HCLMIT104800