Information Security
OffensivePipeline OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises. OffensivePipeline downloads the tool from the git repository then compiles it with msbuild and finally obfuscates it with ConfuserEx. Supported...
DefectDojo is an open-source application vulnerability correlation and security orchestration application. It allows you to manage your application security program, maintain product and application information, schedule scans, triage vulnerabilities, and push findings into defect...
zynix-fusion zynix-Fusion is a framework that aims to centralize, standardize and simplify the use of various security tools for pentest professionals. zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which...
Ghostwriter is a part of your team. It helps you manage clients, projects, reports, and infrastructure in one application. It does not replace some of the more common or traditional project management tools, such...
SIPVicious security tools The 5 tools that you should be looking at are: svmap – this is a sip scanner. When launched against ranges of ip address space, it will identify any SIP servers which it...
HubbleStack (Hubble for short) is a modular, open-source, security & compliance auditing framework which is built in python, using SaltStack as a library. It provides on-demand profile-based auditing, real-time security event notifications, alerting and...
Sliver Sliver is a Command and Control (C2) system made for penetration testers, red teams, and advanced persistent threats. It generates implants (slivers) that can run on virtually every architecture out there, and securely...
apkLeaks Scanning APK file for URIs, endpoints & secrets. Installation Linux $ sudo apt-get install libssl-dev swig -y OSX $ brew install openssl swig Windows You need to install: OpenSSL, and swig-win. To install apkLeaks,...
DynamicLabs If you are after red-team training, there are multiple excellent courses and online resources for practicing adversary simulation. That’s not the primary motivation behind Alfa labs. Alfa labs allows: – Blue/red teamers to...
ssh-mitm – intercept ssh traffic ssh-mitm is an intercepting (mitm) proxy server for security audits. Redirect/mirror Shell to another ssh client supported in 0.2.8 Replace File in SCP supported in 0.2.6 Replace File in SFTP...
Suggested Reading