Alerta – Alert Monitoring Tool
The Alerta monitoring tool was developed with the following aims in mind: distributed and de-coupled so that it is SCALABLE minimal CONFIGURATION that ...
Scanner
gosec – Golang Security Checker
Inspects source code for security problems by scanning the Go AST. Install CI Installation # binary will be $(go env GOPATH)/bin/gosec curl -sfL ...
Web Application Security
Git Scanner Framework
This tool can scan websites with open .git repositories for Bug Hunting/ Pentesting Purposes and can dump the content of the .git repositories ...
Genel
ADFSpoof – A python tool to forge AD FS security tokens
ADFSpoof has two main functions: Given the EncryptedPFX blob from the AD FS configuration database and DKM decryption key from Active Directory, produce ...
Log and Monitoring
osquery – SQL powered operating system instrumentation, monitoring, and analytics framework
osquery exposes an operating system as a high-performance relational database. This allows you to write SQL-based queries to explore operating system data. With ...
Detect Responder (LLMNR, NBT-NS, MDNS poisoner) with osquery
This repo contains a python-based extension for osquery to detect active instances of Responder or any NBT-NS and LLMNR spoofers/poisoners on the network. ...
Web Application Security
dirsearch – Web path scanner
Dirsearch is a mature command-line tool designed to brute force directories and files in webservers. With 6 years of growth, dirsearch now has ...
Web Application Security
Nuclei – Nuclei Is A Fast Tool For Configurable Targeted Scanning Based On Templates
Nuclei is used to send requests across targets based on a template leading to zero false positives and providing fast scanning on large ...
Log and Monitoring
Strafer – A Tool To Detect Potential Infections In Elasticsearch Instances
Elasticsearch infections are rising exponentially. The adversaries are exploiting open and exposed Elasticsearch interfaces to trigger infections in the cloud and non-cloud deployments. ...
Web Application Security
proxylogscan – Mass Scan for a Vulnerability on Microsoft Exchange Server
This tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the ...
Suricata Lightweight Gui
This is a simple Web UI for Suricata running on Python Flask and VueJS. It binds on the eve.json file and allows to ...
Web Application Security
XSS Catcher – Blind XSS Detection Framework
XSS Catcher is a simple application that facilitates blind Cross-Site Scripting attacks and attacks that aim to gather data (e.g. cookies, session/local storage, ...
Son Yorumlar