Repository navigation
purple-team
- Website
- Wikipedia
☁ ⚡ Granular, Actionable Adversary Emulation for the Cloud
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Open Adversary Exposure Validation Platform
Tool for building Kubernetes attack paths
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
AWS CloudSaga - Simulate security events in AWS
Slack enumeration and exposed secrets detection tool
M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response capabilities.
Finding exposed secrets and personal data in GitLab
ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.
Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
AutoPwnKey is a red teaming framework and testing tool using AutoHotKey (AHK), which at the time of creation proves to be quite evasive. It is our hope that this tool will be useful to red teams over the short term, while over the long term help AV/EDR vendors improve how they handle AHK scripts.
🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
ATT&CK Evaluations Library
Monitoring GitHub for sensitive data shared publicly
A simple tool designed to create Atomic Red Team tests with ease.
A cybersecurity resource library of knowledge documents, links to tools, and automation scripts.
CyberSec Resources: FRAMEWORKS & STANDARDS; Pentesting Audits & Hacking; PURPLE TEAMING, AD, API, web, clouds, CTF, OSINT, Pentest tools, Network Security, Privilege escalation, Exploiting, Reversing, Secure Code, Bug Bounty, ...