GoodHound
SlackPirate
Our great sponsors
GoodHound | SlackPirate | |
---|---|---|
2 | 1 | |
438 | 711 | |
- | - | |
0.0 | 0.0 | |
about 2 years ago | almost 3 years ago | |
Python | Python | |
- | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
GoodHound
-
Dealing with large BloodHound datasets
Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/
- GoodHound - Using Bloodhound as a defender - prioritise which attack paths to fix first.
SlackPirate
-
What are some interesting free APIs to pull data from or sites that do allow you to scrape them?
Free but unethical? Slack workspace API. The Legacy Token system isn't exactly gone, it's just more complicated to request the tokens with limited scope, but I only scrape user data so you basically still get full scopes for scraping user data as the Legacy. I was able to scrape 500 Slack workspaces using this method.
What are some alternatives?
Keylogger - Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
boobsnail - BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.
APT-Hunter - APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
slack-watchman - Slack enumeration and exposed secrets detection tool
UltimateAppLockerByPassList - The goal of this repository is to document the most common techniques to bypass AppLocker.
MurMurHash - This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
ansible-ad-inventory - Ansible Active Directory Inventory script
fantasy-football-metrics-weekly-report - Command line application to create weekly reports (containing stats, metrics, and rankings) for Fantasy Football leagues on the following platforms: Yahoo, Fleaflicker, Sleeper, ESPN.
LOLBAS - Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
public-apis - A collective list of free APIs
chophound - Some scripts to support with importing large datasets into BloodHound
WorkflowBuddy - The missing pieces of Slack Workflow Builder.