Windows inside a Docker container.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Testing TLS/SSL encryption anywhere on any port

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

Security automation content in SCAP, Bash, Ansible, and other formats

Network flow analytics (Netflow, sFlow and IPFIX) with the Elastic Stack

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

grep rough audit - source code auditing tool

A Suricata based NDR distribution

the Crypto Undertaker

Linux Malware Detection (LMD)

Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting, helping small to medium-sized organizations se…

UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of U…

Customizable Linux Persistence Tool for Security Research and Detection Engineering.

The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbitrary binaries and scripts using any of our nine supported cl…

Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engine

Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana

🧰 Multi Tool Kubernetes Pentest Image

Operating System Hardening Scripts

STIG-Partitioned Enterprise Linux (spel)

System for network traffic analysis and anomaly detection.

Useful scripts for those administering Wazuh

Framework for generating audit commands for Unix security audits

Repository for SPEED SIEM Use Case Framework

Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.

DNS Safety is simple and fast DNS filtering server for your local network

Set of tools and documentation for leveraging private APNs for mobile network traffic analysis

Tool to automate corporate network segmentation test

Utility to extend any bash command

a pack of bash script to grabbing blacklisted domains for bind9 response policy zone