Run your GitHub Actions locally 🚀

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

A fast TCP/UDP tunnel over HTTP

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernet…

Adversary Emulation Framework

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

eBPF-based Security Observability and Runtime Enforcement

Kubectl plugin to ease sniffing on kubernetes pods using tcpdump and wireshark

Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy

A docker job scheduler (aka. crontab for docker)

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

A modern tool for Windows kernel exploration and tracing with a focus on security

kubeaudit helps you audit your Kubernetes clusters against common security controls

Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

go-audit is an alternative to the auditd daemon that ships with many distros

A utility to safely generate malicious network traffic patterns and evaluate controls.

Peirates - Kubernetes Penetration Testing tool

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

Kubectl plugin to interactively proxy Kubernetes Services with ease

A Kubernetes credential (exec) plugin implementing azure authentication

Kubernetes focused container assessment and context discovery tool for penetration testing

User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin

BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-…

Galah: An LLM-powered web honeypot.

The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).

Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut