The pentester's Swiss knife

monitoring system

prometheus: monitoring system and time series database

Prometheus Prometheus, a Cloud Native Computing Foundation project, is a systems and service monitoring system. It collects metrics from configured targets at given intervals, evaluates rule expressions, displays the results, and can trigger alerts if some...

security scanner

trivy: A comprehensive and versatile security scanner

Trivy Trivy is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues. Targets (what Trivy can scan): Container Image Filesystem Git Repository (remote) Virtual Machine Image...

API Traffic Analyzer

kubeshark: API traffic analyzer for Kubernetes

kubeshark Kubeshark is an API Traffic Analyzer for Kubernetes providing real-time, protocol-level visibility into Kubernetes’ internal network, capturing and monitoring all traffic and payloads going in, out, and across containers, pods, nodes, and clusters.   Think TCPDump and Wireshark re-invented...

Pentest Reporting

SysReptor: Pentest Report Creator

SysReptor – Pentest Reporting Easy As Pie SysReptor is a fully customizable, offensive security reporting solution designed for pentesters, red teamers, and other security-related people alike. You can create designs based on simple HTML...

Network Execution

NetExec: The Network Execution Tool

NetExec – The Network Execution Tool This project was initially created in 2015 by @byt3bl33d3r, known as CrackMapExec. In 2019 @mpgn_x64 started maintaining the project for the next 4 years, adding a lot of...

Supply Chain Vulnerabilities

poutine: Find Supply Chain Vulnerabilities Fast

poutine Created by BoostSecurity.io, poutine is a security scanner that detects misconfigurations and vulnerabilities in the build pipelines of a repository. It supports parsing CI workflows from GitHub Actions and Gitlab CI/CD. When given an...

vulnerable Azure cloud lab

AHHHZURE: creates a vulnerable Azure cloud lab

AHHHZURE AHHHZURE is an automated vulnerable Azure deployment script designed for offensive security practitioners and enthusiasts to brush up their cloud sec skills. The lab has 5 flags in total to collect. You may...

Active Directory Security

BREADS: BREaking Active Directory Security

BREADS – BREaking Active Directory Security BREADS is a tool focused on enumerating and attacking Active Directory environments through LDAP and SMB protocols. This project is inspired by other existing tools like NetExec (CrackMapExec) and...

Linux Threat Hunting

kunai: Threat hunting tool for Linux

kunai The goal behind this project is to bring relevant events to achieve various monitoring tasks ranging from security monitoring to Threat Hunting on Linux-based systems. If you are familiar with Sysmon on Windows,...

Active Directory audit tool

AD_Miner: Active Directory audit tool

ADMiner ADMiner is an Active Directory audit tool that leverages cypher queries to crunch data from the BloodHound graph database (neo4j) and gives you a global overview of existing weaknesses through a web-based static report, including...