DumpsterFire
Security simulator
A toolset for creating and automating customized security events to simulate realistic scenarios for testing and training
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
998 stars
50 watching
146 forks
Language: Python
last commit: over 4 years ago
Linked from 3 awesome lists
automationblue-teamblue-teamshackinghacking-toolhacking-toolsinfosecpentestpentest-toolpentest-toolspentestingred-teamred-teamssecuritysecurity-tools
meirwah/awesome-incident-response
fabacab/awesome-cybersecurity-blueteam
0x4d31/awesome-threat-detectionRelated projects:
| Repository | Description | Stars |
|---|---|---|
 uber-common/metta | An adversarial simulation tool to test information security preparedness by simulating network-based attacks on various systems. | 1,103 |
 infosecn1nja/red-teaming-toolkit | A collection of tools to simulate an adversary's actions and test security controls | 9,158 |
 xiecat/goblin | A tool for simulating phishing attacks in red teaming exercises. | 1,451 |
 redcanaryco/atomic-red-team | A portable set of tests mapped to the MITRE ATT&CK framework for evaluating security environments. | 9,951 |
 pentestgeek/phishing-frenzy | A Ruby on Rails tool used to simulate phishing attacks and test email security vulnerabilities | 804 |
 n0dec/malwless | A tool designed to simulate system compromise or attack behaviors without running processes or PoCs. | 271 |
 elastic/swat | A tool designed to simulate malicious behavior against Google Workspace environments for threat research and detection rule effectiveness testing | 163 |
| trycatchhcf/cloakify | A tool for hiding data in plain sight by transforming it into innocuous-looking strings | 1,566 |
 gemgeorge/sniperphish | A web-based phishing toolkit designed to simulate real-world attacks for security testing and awareness training. | 561 |
 mushorg/glastopf | A Python-based web application honeypot that simulates common web application vulnerabilities to detect and analyze potential threats. | 564 |
 inguardians/toms_honeypot | A Python-based project simulating a decoy system to detect and analyze malicious activity in computer networks. | 26 |
 azure/simuland | A collaboration to create realistic test environments for simulating real-world attacks and improving detection strategies. | 704 |
 nccgroup/goatcasino | A platform for simulating and exploiting smart contract vulnerabilities in a controlled environment | 116 |
 lightspin-tech/red-kube | A tool for simulating and testing the security of Kubernetes clusters from an attacker's perspective. | 817 |
 redhuntlabs/redhunt-os | A virtual machine designed to emulate adversary attacks and support threat hunting efforts | 1,249 |