Cyber Security Foundation's repositories
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
assetfinder
Find domains and subdomains related to a given domain
Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
aws-enumerator
The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud review in case the security researcher compromised AWS Account Credentials.
AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected.
AzureC2Relay
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.
BlackMamba
C2/post-exploitation framework
bucketbunny
AWS S3 open bucket poc automated script.
dfirtrack
DFIRTrack - The Incident Response Tracking Application
drakvuf-sandbox
DRAKVUF Sandbox - automated hypervisor-level malware analysis system
lazyrecon
This script is intended to automate your reconnaissance process in an organized fashion
linux-smart-enumeration
Linux enumeration tool for pentesting and CTFs with verbosity levels
netz
Discover internet-wide misconfigurations while drinking coffee
osrframework
OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.
prisma
Next-generation ORM for Node.js & TypeScript | PostgreSQL, MySQL, MariaDB, SQL Server & SQLite
RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops
retoolkit
Reverse Engineer's Toolkit
Starkiller
Starkiller is a Frontend for PowerShell Empire.
state-of-cloud-security
A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.
Storm-Breaker
Tool social engineering [Access Webcam & Microphone & Os Password Grabber & Location Finder] With Ngrok
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
tenet
A Trace Explorer for Reverse Engineers
terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
VulnWhisperer
Create actionable data from your Vulnerability Scans