🛡️ Active Directory attack path collector and analyzer. Map AD, uncover privilege paths, and visualize attack surfaces. Fully offline and transparent.
A graph-first, agentic security framework for AWS that models cloud environments as attack graphs. Leverages LangGraph and Neo4j to perform recursive attack path analysis and autonomous remediation reasoning. Designed for the 'Assumed Breach' era.
Graph-based cyber attack propagation and blast radius simulator for enterprise environments. Models lateral movement, privilege escalation, and remediation impact using attack graphs.
This repository contains a vulnerability scanner mapped to the MITRE ATT&CK framework, featuring an animated, single-page web dashboard. Core Technologies: Python, Flask, Nmap (python-nmap), HTML/CSS/JS.
위협 경로 탐색기
BloodHound Attack Path Enumerator
Active Directory attack-path analysis lab simulating an internal penetration test. Includes LDAP, Kerberos, SMB enumeration, BloodHound graph analysis, privilege escalation reasoning, and professional documentation of security misconfigurations in a controlled lab environment.
SAGE - An autonomous AI-assisted application security platform that converts repositories into interactive knowledge graphs, correlates NVD CVEs with code-level reachability, performs exploitability analysis using LLMs, generates remediation patches, validates fixes through testing and Semgrep, and automatically creates GitHub pull requests
High-signal, read-only IAM analysis tool that detects privilege escalation paths via Service Account impersonation and trust overlap in Google Cloud.
Monitor your cloud assets.
PivotMap is an open-source attack path intelligence engine for offensive security teams. It ingests scan results, correlates vulnerabilities, builds a directed attack graph, and identifies realistic compromise paths. PivotMap focuses on reasoning, not scanning.
Research-preview AWS IAM reasoning tool with bounded evidence, deterministic findings, and explicit non-claims.
Defensive AD and Microsoft Entra ID exposure analyzer with identity risk detections, app permission review, Conditional Access checks, graph-based privilege paths and JSON reports.
Offline-first AWS IAM attack-path analysis engine
Add a description, image, and links to the attack-path-analysis topic page so that developers can more easily learn about it.
To associate your repository with the attack-path-analysis topic, visit your repo's landing page and select "manage topics."