SYN-ACK Security LLC's repositories
cloudsploit
Cloud Security Posture Management (CSPM)
managed-kubernetes-auditing-toolkit
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
kube-hunter
Hunt for security weaknesses in Kubernetes clusters
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
metasploit-framework
Metasploit Framework
aws_public_ips
Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services
evil-winrm
The ultimate WinRM shell for hacking/pentesting
syncthing
Open Source Continuous File Synchronization
ScoutSuite
Multi-Cloud Security Auditing Tool
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
WebMap
WebMap-Nmap Web Dashboard and Reporting
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
hcxdumptool
Small tool to capture packets from wlan devices.
hcxtools
Portable solution for capturing wlan traffic and conversion to hashcat formats (recommended by hashcat) and to John the Ripper formats. hcx: h = hash, c = capture, convert and calculate candidates, x = different hashtypes
recon-ng
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
osquery
SQL powered operating system instrumentation, monitoring, and analytics.
sliver
Implant framework
metasploit-payloads
Unified repository for different Metasploit Framework payloads
cuckoo
Cuckoo Sandbox is an automated dynamic malware analysis system
BloodHound
Six Degrees of Domain Admin
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
AggressorScripts
Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
beef
The Browser Exploitation Framework Project
ptf
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B & OWA a lot quicker, less painful and more efficient