DCEPT
A honeytoken-based tripwire for Microsoft's Active Directory to detect privilege escalation attempts
PCAPdroid is a privacy-friendly open source app that allows you to track, analyze, and block connections made by other apps on your device. It enables you to export a PCAP dump of the traffic, inspect HTTP, decrypt TLS traffic, and more. Features include logging and examining connections made by user and system apps, extracting SNI, DNS query, HTTP URL, and remote IP address, inspecting HTTP requests and replies, decrypting HTTPS/TLS traffic, exporting SSLKEYLOGFILE, dumping traffic to a PCAP file, creating rules to filter traffic, identifying country and ASN of remote servers, and on rooted devices, capturing traffic while other VPN apps are running. Paid features include firewall creation and malware detection.
A honeytoken-based tripwire for Microsoft's Active Directory to detect privilege escalation attempts
hpfeeds is a lightweight authenticated publish-subscribe protocol with Python 3 compatible broker and client.
A honeypot that logs NTP packets into a Redis database to detect DDoS attempts.
A Digital Bond research project to enumerate ICS applications and devices
Bluetooth experimentation framework for Broadcom chips firmware interaction and update.
A tool for discovering open S3 Buckets starting from a domain using various techniques such as crawling and DNS crawling.