PentestGPT – A Comprehensive Guide To Local And Hosted Deployment
PentestGPT provides advanced AI and integrated tools to help security teams conduct comprehensive penetration tests effortlessly. Scan, exploit, and analyze web applications, networks, and cloud environments with ease and precision, without needing expert skills. A Special Note Of Thanks Thank you so much, @fkesheh and @Fx64b, for your amazing work and dedication to this project. Thank you for being part of the HackerAI family. Important Note...
ScubaGear – Ensuring Microsoft 365 Security Compliance
ScubaGear is an assessment tool that verifies that a Microsoft 365 (M365) tenant’s configuration conforms to the policies described in the Secure Cloud Business Applications (SCuBA) Security Configuration Baseline documents. Note: This documentation can be read using GitHub Pages. Target Audience ScubaGear is for M365 administrators who want to assess their tenant environments against CISA Secure Configuration Baselines. Overview ScubaGear uses a three-step process: Step One - PowerShell...
GhostStrike – The Shadows Of Advanced Cybersecurity Operations
GhostStrike is an advanced cybersecurity tool designed for Red Team operations, featuring sophisticated techniques to evade detection and perform process hollowing on Windows systems. Features Dynamic API Resolution: Utilizes a custom hash-based method to dynamically resolve Windows APIs, avoiding detection by signature-based security tools. Base64 Encoding/Decoding: Encodes and decodes shellcode to obscure its presence in memory, making it more difficult for static analysis tools to...
Leveraging eBPF For Advanced Kubernetes Monitoring
eBPF, or Extended Berkeley Packet Filter, is a technology that lets programs run in the Linux kernel. It was first made for filtering network packets, but now it's used for monitoring systems. eBPF programs can run in the kernel without changing the source code or adding new modules, which makes it safe and efficient. The Importance Of Kubernetes Monitoring Kubernetes is...
ECS Logs Collector – Essential Tool For Amazon ECS Troubleshooting
This project was created to collect Amazon ECS log files and Operating System log files for troubleshooting Amazon ECS customer support cases. The following functions are supported: Collect Operating System logs Collect Operating System settings Collect Docker logs Collect Amazon ECS agent Logs Enable debug mode for Docker and the Amazon ECS agent (only available for Systemd init systems and Amazon Linux) Create a tar zip file in...
GOAD – A Comprehensive Guide To The Ultimate Active Directory Pentest Lab
GOAD is a pentest active directory LAB project. The purpose of this lab is to give pentesters a vulnerable Active directory environment ready to use to practice usual attack techniques. Warning This lab is extremely vulnerable, do not reuse recipe to build your environment and do not deploy this environment on internet without isolation (this is a recommendation, use it as...
Amoco – Advancing Symbolic Binary Analysis In Python
Amoco is a cutting-edge Python package designed for the symbolic analysis of binaries, streamlining the decoding process across various architectures. It provides a robust framework for instruction semantics and a flexible execution model to handle both concrete and symbolic values efficiently. Amoco's ongoing development promises to expand its capabilities, making it an indispensable tool for developers and security researchers...
Wazuh v4.9.0 – Comprehensive Overview Of Latest Enhancements And Fixes
Its latest enhancements and fixes that fortify cybersecurity measures. This version introduces significant improvements across its Manager and Agent components, boosts performance in vulnerability scanners, and expands its integration capabilities. Explore the detailed changes and new features that further elevate Wazuh's robust security framework. Added The manager now supports alert forwarding to Fluentd. (#17306) Added missing functionality for vulnerability scanner translations. (#23518) Improved...
DeadPotato – Harnessing Advanced System Tools For Security And Administration
The latest iteration of the versatile security tool designed for network administrators and cybersecurity professionals. This version adds new capabilities like domain data collection for BloodHound and enhanced compatibility with Windows 10. Learn how to leverage DeadPotato’s suite of modules for system assessment and security exploitation. This version includes the following changes: sharphound: Attempts to collect domain data for BloodHound. (NOTE:...
PromptFoo – Streamlining LLM Application Development And Security Testing
An innovative tool designed to revolutionize the testing, evaluation, and security of LLM applications. This versatile tool supports a test-driven development approach, allowing developers to optimize prompts, models, and APIs efficiently. Whether you're using CLI, integrating into CI/CD, or seeking robust security through automated red teaming, promptfoo offers a comprehensive solution to enhance the reliability and security of your...