Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Go 25,356 2,936 Updated Nov 5, 2025

mitre / caldera

Automated Adversary Emulation Platform

Python 6,526 1,254 Updated Oct 30, 2025

fortra / impacket

Impacket is a collection of Python classes for working with network protocols.

Python 15,068 3,814 Updated Oct 22, 2025

MichaelGrafnetter / DSInternals

Directory Services Internals (DSInternals) PowerShell Module and Framework

C# 1,854 276 Updated Sep 24, 2025

NextronSystems / APTSimulator

A toolset to make a system look as if it was the victim of an APT attack

Batchfile 2,673 446 Updated Sep 23, 2025

mandiant / flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

PowerShell 7,964 1,044 Updated Sep 17, 2025

GhostPack / Rubeus

Trying to tame the three-headed dog.

C# 4,709 835 Updated Sep 8, 2025

SecDev-Lab / wish

Your Wish, Our Command

Python 15 1 Updated Aug 4, 2025

Ignitetechnologies / Mindmap

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

8,444 1,650 Updated Jun 22, 2025

gentilkiwi / mimikatz

A little tool to play with Windows security

C 20,958 3,989 Updated May 11, 2025

forensicanalysis / artifactcollector

🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system

Go 297 23 Updated May 7, 2025

Censys-Research / ScoutC2

public archive of the Scout C2 malware

Python 2 3 Updated Apr 28, 2025

CIRCL / PyPDNS

Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.

Python 82 16 Updated Mar 12, 2025

swisscom / ArtifactCollectionMatrix

Forensic Artifact Collection Tool Matrix

91 15 Updated Nov 9, 2024

ahmedkhlief / APT-Hunter

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover su…

Python 1,388 247 Updated Nov 7, 2024

alphasoc / flightsim

A utility to safely generate malicious network traffic patterns and evaluate controls.

Go 1,336 145 Updated Apr 4, 2024

mrh0wl / Cloudmare

Cloudflare, Sucuri, Incapsula real IP tracker.

Python 1,480 216 Updated Jul 25, 2023

rvazarkar / GMSAPasswordReader

C# 242 36 Updated Feb 17, 2023

pinksawtooth / how_to_become_a_malware_analyst

248 8 Updated Jan 11, 2023

blackberry / pe_tree

Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall to dump in-memory PE files and reconstruct imports.

Python 1,337 171 Updated Jul 9, 2022

orlikoski / CyLR

CyLR - Live Response Collection Tool

C# 693 94 Updated Jun 1, 2022

felixweyne / ProcessSpawnControl

Process Spawn Control is a Powershell tool which aims to help in the behavioral (process) analysis of malware. PsC suspends newly launched processes, and gives the analyst the option to either keep…

PowerShell 264 57 Updated Jan 15, 2022

TryCatchHCF / DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team…

Python 1,027 146 Updated May 27, 2020

crits / crits

CRITs - Collaborative Research Into Threats

JavaScript 905 258 Updated Jul 29, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

uni4

Block or report uni4

Stars

OpenCTI-Platform / opencti

rapid7 / metasploit-framework

MISP / MISP

yeti-platform / yeti

log2timeline / dftimewolf

redcanaryco / atomic-red-team

projectdiscovery / nuclei