Security Scenario Generator (SecGen) is an open-source framework that creates vulnerable virtual machines, lab environments, and hacking challenges for cybersecurity education and training purposes. The tool utilizes Vagrant, Puppet, and Ruby to automatically generate randomized vulnerable VMs that can be used for penetration testing practice, security education, and capture the flag (CTF) competitions. SecGen provides pre-configured hacking challenges and vulnerable applications that allow students and security professionals to practice their skills in a controlled environment. The framework supports the creation of diverse scenarios with varying difficulty levels and vulnerability types. The tool is designed to facilitate hands-on learning experiences for computer security students and enthusiasts who need practical lab environments to develop their penetration testing and ethical hacking skills. SecGen can be used to host CTF events, create educational lab exercises, and provide standardized vulnerable targets for security training programs. The framework generates VMs that can be shared and distributed for educational purposes. A hosted version of the platform is available through Hacktivity, providing users with access to pre-built challenges without requiring local setup and configuration.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
FBCTF is a platform for hosting Jeopardy and King of the Hill style Capture the Flag competitions with support for various scales and participation models.
A Node.js Ebook by GENTILHOMME Thomas, covering Node.js development and resources
A tool for SSH server auditing with comprehensive analysis capabilities.
Bane is an automated AppArmor profile generator for Docker containers that simplifies the creation of security policies with file globbing support and Docker integration.
Web application for visualizing live GPS locations on an SVG world map using honeypot captures.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.