BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse entities and configurable, traversable attack paths.
-
Updated
Jul 7, 2026 - Python
BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse entities and configurable, traversable attack paths.
Salesforce identity and permission graph collector for BloodHound CE. Maps users, profiles, permission sets, roles, groups, sharing rules, connected apps, and field-level security into attack-path graphs.
browser-based Active Directory attack graph tool for SharpHound and AzureHound collection data. No server. No install. No Neo4j. Upload a ZIP, get an interactive attack graph.
Offline-first threat modeling and architecture diagram editor with AI-powered security analysis, MITRE ATT&CK/NIST mapping, local Ollama support, and integrated GRC attack-path workflows.
Python CLI for offensive-focused Azure situational awareness and management-plane reconnaissance.
This is local defensive security toolkit with scanner, recon, honeypots, vulnerability correlation, evidence graph, attack path ranking, and reports.
BloodHound for AI agents — visualize attack paths through MCP tool chains
Go CLI for attack-path-focused Azure reconnaissance, pivot analysis, and management-plane cloud security workflows.
Active Directory Attack Path Discovery Mapper — LDAP enumeration, privilege escalation analysis, and MITRE ATT&CK mapped remediation
AI-Powered Active Directory Attack Path Analysis with BloodHound - By Ayi NEDJIMI
HarrierOps Kube - offensive-focused Kubernetes recon and chaining CLI
Prove whether an internet-to-database attack path exists in your Terraform — before you apply.
Transforms BloodHound attack paths into attacker capability analysis, privilege escalation reasoning, and operator-focused walkthroughs.
Context-aware vulnerability prioritization with attack-path chaining. Self-hosted, no lock-in, swap any scanner.
Real-time cloud attack path prediction and simulation
Automated detection of privilege escalation paths in Microsoft Entra ID
Interactive Azure identity attack-path visualizer — computes how chained permissions reach sensitive data. Real path-finding engine, runs on Azure free tier.
Defensive Active Directory attack path analysis lab with BloodHound Cypher queries and reporting.
Automated detection of privilege escalation paths in AWS IAM
A network security tool that analyzes hosts from an Nmap scan or YAML inventory, classifies them by role and sensitivity, and generates a least-privilege segmentation plan. It creates security zones, justified firewall rules, and compares attack paths before and after segmentation to show reduced lateral movement.
Add a description, image, and links to the attack-path topic page so that developers can more easily learn about it.
To associate your repository with the attack-path topic, visit your repo's landing page and select "manage topics."