Stars
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive …
PowerSploit - A PowerShell Post-Exploitation Framework
General stuff for pentesting - password cracking, phishing, automation, Kali, etc.
OSINT Tool: Generate username lists for companies on LinkedIn
Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords
lgandx / Responder
Forked from SpiderLabs/ResponderResponder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…
The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.
A wanna be swiss army knife for data encryption, exfiltration and covert communication.
OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
An informational repo about hunting for adversaries in your IT environment.
The Old BloodHound C# Ingestor (Deprecated)
A post-exploitation OS X/Linux agent written in Python 2.7
Empire is a PowerShell and Python post-exploitation agent.
A curated list of tools for incident response
A curated list of Awesome Threat Intelligence resources
Generic Plotter that serves as the background work for FlowPlotter and BroPlotter. Test Purposes and Archive.
Analyst tool for creating pivot maps of data sources
Sysmon configuration file template with default high-quality event tracing