pingcastle
akto
pingcastle | akto | |
---|---|---|
16 | 2 | |
2,129 | 836 | |
- | 4.6% | |
5.6 | 9.9 | |
2 months ago | about 19 hours ago | |
C# | Java | |
GNU General Public License v3.0 or later | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pingcastle
-
Open source vulnerability scanner
I use OpenVas (on Kali) and PingCastle (on Windows).
-
PingCastle and Active Directory hardening
Hi! I just ran PingCastle and I got two major issues:
-
Server 2016 - Enterprise Key Admins GPO linking delegation at the domain level & the domain controller OU level
You can also run these types of assessments yourself using tools such as - https://www.purple-knight.com/ - and - https://www.pingcastle.com - both will provide very detailed reports and steps for remediation.
- Specific user account breaks any computers domain connection is logs into... Stumped!
-
AD security post ransomware :(
https://www.pingcastle.com/ (free open source tool)
-
Active Directory Security Tools
PingCastle - the OG AD hygiene scanner - https://www.pingcastle.com/
-
Resetting Password permissions
Create a security group and delegate permissions to that. I suggest you get a copy of Ping Castle and do an AD scan and figure out what else is misconfigured. https://www.pingcastle.com/
-
Azure AD auditing tools
Try PingCastle ! The easiest and gives you lot of info + remmediation
- Domain Admin Security Training
- Best solutions to check rights, access and general security
akto
-
Open source vulnerability scanner
Qualys is good. For open source vulnerability scanner for APIs - you can also try https://github.com/akto-api-security/akto
- FLaNK Stack Weekly for 27 November 2023
What are some alternatives?
BloodHound - Six Degrees of Domain Admin
LLaVA - [NeurIPS'23 Oral] Visual Instruction Tuning (LLaVA) built towards GPT-4V level capabilities and beyond.
access-manager - Access Manager provides web-based access to local admin (LAPS) passwords, BitLocker recovery keys, and just-in-time administrative access to Windows computers in a modern, secure, and user-friendly way.
vlite - fast vector database made in numpy
GOAD - game of active directory
CogVLM - a state-of-the-art-level open visual language model | 多模态预训练模型
Kerberos.NET - A Kerberos implementation built entirely in managed code.
Admin-Panel_Finder - A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
Adalanche - Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
surge - Synthesizer plug-in (previously released as Vember Audio Surge)
11Bchecker
llama_index - LlamaIndex is a data framework for your LLM applications