#
Starred repositories
Collection of incidents resulting from caching issues
Add your HDD, SSD and NVMe drives to your Synology's compatible drive database and a lot more
Runs checks to see if an EKS cluster follows EKS Best Practices.
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Automation to assess the state of your M365 tenant against CISA's baselines
A crowd sourced list of phishing training simulators and their signatures
Unauthenticated enumeration of AWS, Azure, and GCP Principals
A repository of breaches of AWS customers
Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
Hardening a sketchy containerized application one step at a time
A PowerShell script for performing a build review of a Windows host
This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS weaknesses you will be verse enough to provide the correct coun…
Code signing and transparency for containers and binaries
🚧 Under evaluation - Crystal Domain Name System Resolver
Selenium alternative for Crystal. Browser manipulation without the Java overhead.
zoph-io / MAMIP
Forked from SummitRoute/aws_managed_policies[MAMIP] Monitor AWS Managed IAM Policies Changes
Crystal shard wrapping the rbsec/sslscan utility
NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewall, just by anyone on the victim's network visiting a website
Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
A vulnerability scanner for container images and filesystems
