BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse entities and configurable, traversable attack paths.
-
Updated
Jul 7, 2026 - Python
BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse entities and configurable, traversable attack paths.
Salesforce identity and permission graph collector for BloodHound CE. Maps users, profiles, permission sets, roles, groups, sharing rules, connected apps, and field-level security into attack-path graphs.
browser-based Active Directory attack graph tool for SharpHound and AzureHound collection data. No server. No install. No Neo4j. Upload a ZIP, get an interactive attack graph.
Offline-first threat modeling and architecture diagram editor with AI-powered security analysis, MITRE ATT&CK/NIST mapping, local Ollama support, and integrated GRC attack-path workflows.
Python CLI for offensive-focused Azure situational awareness and management-plane reconnaissance.
BloodHound for AI agents — visualize attack paths through MCP tool chains
This is local defensive security toolkit with scanner, recon, honeypots, vulnerability correlation, evidence graph, attack path ranking, and reports.
Go CLI for attack-path-focused Azure reconnaissance, pivot analysis, and management-plane cloud security workflows.
Active Directory Attack Path Discovery Mapper — LDAP enumeration, privilege escalation analysis, and MITRE ATT&CK mapped remediation
AI-Powered Active Directory Attack Path Analysis with BloodHound - By Ayi NEDJIMI
Prove whether an internet-to-database attack path exists in your Terraform — before you apply.
HarrierOps Kube - offensive-focused Kubernetes recon and chaining CLI
Context-aware vulnerability prioritization with attack-path chaining. Self-hosted, no lock-in, swap any scanner.
Real-time cloud attack path prediction and simulation
Transforms BloodHound attack paths into attacker capability analysis, privilege escalation reasoning, and operator-focused walkthroughs.
Interactive Azure identity attack-path visualizer — computes how chained permissions reach sensitive data. Real path-finding engine, runs on Azure free tier.
Automated detection of privilege escalation paths in Microsoft Entra ID
A network security tool that analyzes hosts from an Nmap scan or YAML inventory, classifies them by role and sensitivity, and generates a least-privilege segmentation plan. It creates security zones, justified firewall rules, and compares attack paths before and after segmentation to show reduced lateral movement.
AI-powered attack path synthesizer with cross-tool integration — ingest findings from 45+ tools, build knowledge graphs, and synthesize realistic attack paths with MITRE ATT&CK mappings
Automated detection of privilege escalation paths in AWS IAM
Add a description, image, and links to the attack-path topic page so that developers can more easily learn about it.
To associate your repository with the attack-path topic, visit your repo's landing page and select "manage topics."