DefaultCreds-cheat-sheet
awesome-honeypots
DefaultCreds-cheat-sheet | awesome-honeypots | |
---|---|---|
2 | 21 | |
5,266 | 8,040 | |
- | - | |
7.5 | 5.9 | |
8 days ago | about 1 month ago | |
Python | Python | |
MIT License | Artistic License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
DefaultCreds-cheat-sheet
- Database of default usernames and passwords?
-
Wordlists
If looking for a tool that searching default creds : https://github.com/ihebski/DefaultCreds-cheat-sheet
awesome-honeypots
- Building a Windows Honeypots?
- Covenant C2 - unrecognized connections
- Wordlists
-
I have 10 Linux VMs that I want to run a bash script on misconfiguring OS layer options. Comment your ideas! More info in post.
you're looking for a honeypot
-
How to make honeypots.
You may be interested in https://github.com/paralax/awesome-honeypots
- What is the best open source honeypot? [Need Experiences]
- Intentionally Vulnerable Website
-
Cybersecurity 101 โ What is a Honeypot?
Also you might want to check these lists here and here for deploying some more honeypots.
-
Cybersecurity Repositories
Honeypots
-
Using honeypots data to create IOCs collection
Agreed with u/Sloky, if you want catch internal adversaries you may need a lot of tweaking. There are plenty of good lists out there such as this and this and this one
What are some alternatives?
SecLists - SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
tpotce - ๐ฏ T-Pot - The All In One Honeypot Platform ๐
my-wordlists - wordlists i use for testing security/security testing or whatever you want to call it
Awesome-WAF - ๐ฅ Web-application firewalls (WAFs) from security standpoint.
swaggerHole - A python3 script searching for secret on swaggerhub
DetectionLab - Automate the creation of a lab environment complete with security tooling and logging best practices
mssql-spider - Automated exploitation of MSSQL servers at scale
hacker101 - Source code for Hacker101.com - a free online web and mobile security class.
mongoaudit - ๐ฅ A powerful MongoDB auditing and pentesting tool ๐ฅ
API-Security-Checklist - Checklist of the most important security countermeasures when designing, testing, and releasing your API
powershell_commands - Personal sheet for PowerShell ๐งข
dvws-node - Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.