Mohin Paramasivam's repositories
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
aws-recon
Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
AzureHound
Azure Data Exporter for BloodHound
CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
Certify
Active Directory certificate (ADCS) abuse.
Certipy
Python implementation for Active Directory certificate (ADCS) abuse Better than Certify
clipboard-cli
Access the system clipboard (copy/paste)
clipboardy
Access the system clipboard (copy/paste)
cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
gocheck
DefenderCheck but blazingly fast™
godropit
Purple Team Dropper generator using open source templates.
HardeningKitty
HardeningKitty - Checks and hardens your Windows configuration (Build Review)
hashgrab
generate payloads that force authentication against an attacker machine
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
KubeHound
Kubernetes Attack Graph
ldapdomaindump
Active Directory information dumper via LDAP
localstack
💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline
lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional. Linux Build Reviw
Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
pdns
PowerDNS Authoritative, PowerDNS Recursor, dnsdist
PolarDNS
PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.
prowler
Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
Pyrebase
A simple python wrapper for the Firebase API.
recon-ng
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation (Red Team) for the Cloud
sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
Win11-OneDrive-DLL-injection-vulnerability
OneDrive, operating on Microsoft Windows 11 Pro is vulnerable to DLL hijacking.