运维
========================================
流量
----------------------------------------
- `Bro `_
- `Moloch `_ Large scale, open source, indexed packet capture and search
- `TCPFlow `_
- `TCPDump `_
- `WireShark `_
- `Argus `_
- `PcapPlusPlus `_
- `ngrep `_
- `cisco joy `_ A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
- `impacket `_ is a collection of Python classes for working with network protocols
- `NFStream `_ a Flexible Network Data Analysis Framework
- `BruteShark `_ Network Analysis Tool
堡垒机
----------------------------------------
- `jumpserver `_
- `CrazyEye `_
- `GateOne `_
蜜罐
----------------------------------------
- `Dionaea `_
- `Modern Honey Network `_
- `Cowrie `_ SSH/Telnet蜜罐
- `honeything `_ IoT蜜罐
- `ConPot `_ 工控设施蜜罐
- `MongoDB HoneyProxy `_
- `ElasticHoney `_
- `DCEPT `_
- `Canarytokens `_
- `Honeydrive `_
- `T-Pot `_ The All In One Honeypot Platform
- `opencanary `_
- `HFish `_
- `kippo `_ SSH Honeypot
- `Ehoney `_ 欺骗防御系统
VPN Install
----------------------------------------
- `pptp `_
- `ipsec `_
- `openvpn `_
隧道 / 代理
----------------------------------------
- `ngrok `_
- `rtcp `_
- `Tunna `_
- `reDuh `_ Create a TCP circuit through validly formed HTTP requests
- `reGeorg `_ pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn
- `Neo-reGeorg `_ Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
- `ABPTTS `_ TCP tunneling over HTTP/HTTPS for web application servers
- `frp `_ A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet
- `lanproxy `_ 内网穿透工具
- `ligolo `_ Reverse Tunneling made easy for pentesters
- `EarthWorm `_ 是一款用于开启 SOCKS v5 代理服务的工具,基于标准 C 开发,可提供多平台间的转接通讯,用于复杂网络环境下的数据转发。
- `Tunna `_ is a set of tools which will wrap and tunnel any TCP communication over HTTP
- `mssqlproxy `_ is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse
- `nps `_ a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal
代理链
----------------------------------------
- `Netch `_ Support Socks5, Shadowsocks, ShadowsocksR, V2Ray, Trojan proxies. UDP NAT FullCone
- `proxychains `_ a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy
- `gost `_ GO Simple Tunnel
资产管理
----------------------------------------
- `BlueKing CMDB `_ 面向资产及应用的企业级配置管理平台
- `ARL `_ 资产侦察灯塔系统
合规
----------------------------------------
- `bombus `_ 合规审计平台
风控
----------------------------------------
- `nebula `_
- `Liudao `_ “六道”实时业务风控系统
- `aswan `_ 陌陌风控系统静态规则引擎
SIEM
----------------------------------------
- `metron `_
- `MozDef `_
安全运维
----------------------------------------
- `Scout `_ URL 监控系统
- `OpenDnsdb `_ 基于Python的DNS管理系统
系统监控
----------------------------------------
- `netdata `_ Real-time performance monitoring
- `bcc `_ Tools for BPF-based Linux IO analysis, networking, monitoring, and more
Windows
----------------------------------------
- `Windows Sysinternals `_
网络测试
----------------------------------------
- `Toxiproxy `_ A TCP proxy to simulate network and system conditions for chaos and resiliency testing
红队模拟
----------------------------------------
- `CALDERA `_ Scalable Automated Adversary Emulation Platform
网络模拟
----------------------------------------
- `Internet Emulator `_ A Python framework for creating emulation of the Internet