Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
awesome-cyber-range-list
A curated list of tools and technologies that support building Cyber Ranges
https://github.com/thomas-mckanna/awesome-cyber-range-list
Last synced: 3 days ago
JSON representation
-
Infrastructure Tooling
- Ansible - source automation tool for configuration management, application deployment, and task automation across multiple systems.
- Packer
- Terraform
- OpenTofu - source alternative to Terraform, providing similar infrastructure provisioning capabilities.
- Molecule
- Chocolatey
- Boxstarter
- Apache Guacamole
- noVNC - based VNC client that allows remote desktop access directly through a browser without additional plugins.
- Fail2Ban
- stress-ng
- Serverless Framework - source framework for building and deploying serverless applications across various cloud providers.
- AWS SAM (Serverless Application Model)
- Ansible - source automation tool for configuration management, application deployment, and task automation across multiple systems.
- Packer
- OpenTofu - source alternative to Terraform, providing similar infrastructure provisioning capabilities.
- Molecule
- Chocolatey
- Terraform
- Boxstarter
- Apache Guacamole
- noVNC - based VNC client that allows remote desktop access directly through a browser without additional plugins.
- Fail2Ban
- stress-ng
- Serverless Framework - source framework for building and deploying serverless applications across various cloud providers.
- AWS SAM (Serverless Application Model)
- LocalStack
- Lambda Powertools
- Code Server
- Undo WinRMConfig
- Docker OSX - specific testing environments.
- Puppeteer - level API to control headless Chrome or Chromium browsers for automated testing and scraping.
- Undo WinRMConfig
- Docker OSX - specific testing environments.
- Puppeteer - level API to control headless Chrome or Chromium browsers for automated testing and scraping.
- Playwright - to-end testing framework supporting multiple browsers, enabling reliable and fast browser automation.
- GHOSTS NPC Framework - player characters (NPCs) in simulation environments, enhancing the realism and interactivity of cyber range scenarios.
- Greybox
- LocalStack
- Lambda Powertools
- Code Server
- Multi Juicer
- Authentik - source Identity Provider that emphasizes flexibility and versatility, with support for a wide set of protocols.
- Playwright - to-end testing framework supporting multiple browsers, enabling reliable and fast browser automation.
- Kathara - based network emulation system that allows the creation of complex network topologies for testing and training.
- GHOSTS NPC Framework - player characters (NPCs) in simulation environments, enhancing the realism and interactivity of cyber range scenarios.
- Greybox
- Multi Juicer
- Authentik - source Identity Provider that emphasizes flexibility and versatility, with support for a wide set of protocols.
-
Educational Aides
- Kathara - based network emulation system that allows the creation of complex network topologies for testing and training.
- containerlab - based networking labs, supporting scalable and reproducible network environments.
- Arkime - source, large-scale packet capturing, indexing, and database system for network traffic analysis and security monitoring.
- TrailShark
- EdgeShark - container communications.
- Insomnia - source tool for testing and debugging web APIs, supporting REST, GraphQL, and other protocols.
- Web Check - in-one Open Source Intelligence (OSINT) tool for analyzing websites, assisting in reconnaissance and information gathering tasks.
- BOAST - source out-of-band testing tool that integrates with the ZAP web application scanner to enhance security assessments.
- Evil noVPC
- containerlab - based networking labs, supporting scalable and reproducible network environments.
- Web Check - in-one Open Source Intelligence (OSINT) tool for analyzing websites, assisting in reconnaissance and information gathering tasks.
- BOAST - source out-of-band testing tool that integrates with the ZAP web application scanner to enhance security assessments.
- Evil noVPC
- Arkime - source, large-scale packet capturing, indexing, and database system for network traffic analysis and security monitoring.
- TrailShark
- EdgeShark - container communications.
- Insomnia - source tool for testing and debugging web APIs, supporting REST, GraphQL, and other protocols.
-
White Zone Tooling
- CTFd - source platform for hosting Capture The Flag (CTF) competitions, featuring team management, scoring, and challenge integration.
- Terraform AWS CTFd
- CTFd Plugins - developed plugins that extend the functionality of the CTFd platform.
- Monitoror
- CTFd - source platform for hosting Capture The Flag (CTF) competitions, featuring team management, scoring, and challenge integration.
- Terraform AWS CTFd
- CTFd Plugins - developed plugins that extend the functionality of the CTFd platform.
- Monitoror
-
CTF Content Creation
- Draw-a-UI - drawn UI mockups using large language models (LLMs), streamlining the design-to-development process.
- Screenshot to Code
- Screenshot to Code
- Draw-a-UI - drawn UI mockups using large language models (LLMs), streamlining the design-to-development process.
-
Intentionally Vulnerable Challenges
- Juice Shop
- Damn Vulnerable Web Application (DVWA)
- CloudGoat
- AWSGoat
- Cloudfoxable - by-design AWS penetration testing playgrounds, allowing for realistic cloud security assessments.
- Juice Shop
- Damn Vulnerable Web Application (DVWA)
- CloudGoat
- AWSGoat
- Cloudfoxable - by-design AWS penetration testing playgrounds, allowing for realistic cloud security assessments.
- AHHHZURE
- GOAD
- Simulator - based security training platform that simulates various attack scenarios for hands-on learning.
- XMGoat
- CNAPPgoat - native application protection platform (CNAPP) infrastructures for security training and testing.
- CI/CD Goat
- Damn Vulnerable Restaurant
- AHHHZURE
- GOAD
- Simulator - based security training platform that simulates various attack scenarios for hands-on learning.
- XMGoat
- CNAPPgoat - native application protection platform (CNAPP) infrastructures for security training and testing.
- CI/CD Goat
- Damn Vulnerable Restaurant
-
Pre-built Cyber Range Environments and Content
- Attack Range
- BadBlood
- Vulnhub - built vulnerable environments using Docker-Compose, suitable for penetration testing practice and training.
- Awesome Mobile CTF
- DetectionLab
- Attack Range
- BadBlood
- Facebook CTF
- Vulnhub - built vulnerable environments using Docker-Compose, suitable for penetration testing practice and training.
- Awesome Mobile CTF
- DetectionLab
- Facebook CTF
-
Learning Management Systems (LMS)
- Moodle - source LMS that provides a customizable platform for creating online courses, assessments, and collaborative learning environments.
- Canvas
- edX Platform - source platform developed by edX for delivering massive open online courses (MOOCs) and other educational content.
- Moodle - source LMS that provides a customizable platform for creating online courses, assessments, and collaborative learning environments.
- Canvas
- edX Platform - source platform developed by edX for delivering massive open online courses (MOOCs) and other educational content.
-
Tools for LMS Content Creation
- Whisper
- stable-ts - precision transcripts for videos by aligning text with timestamps, enhancing the accessibility and usability of video content.
- yt-dlp - line program to download videos from YouTube and other platforms, enabling offline access to educational video content.
- Whisper
- stable-ts - precision transcripts for videos by aligning text with timestamps, enhancing the accessibility and usability of video content.
- yt-dlp - line program to download videos from YouTube and other platforms, enabling offline access to educational video content.
- VHS - quality recordings and GIFs of terminal sessions, useful for demonstrations and tutorials.
- VHS - quality recordings and GIFs of terminal sessions, useful for demonstrations and tutorials.
-
Security Operations Tools
-
AI and Simulation Tools
- Open WebUI - source user interface for interacting with Large Language Models (LLMs), similar to ChatGPT, facilitating conversational AI integrations.
- Tabby - source text editor interface for interacting with and managing machine learning models, providing a user-friendly environment for AI-driven tasks.
- Open WebUI - source user interface for interacting with Large Language Models (LLMs), similar to ChatGPT, facilitating conversational AI integrations.
- Tabby - source text editor interface for interacting with and managing machine learning models, providing a user-friendly environment for AI-driven tasks.
Programming Languages
Categories
Infrastructure Tooling
49
Intentionally Vulnerable Challenges
24
Educational Aides
17
Pre-built Cyber Range Environments and Content
12
Tools for LMS Content Creation
8
White Zone Tooling
8
Learning Management Systems (LMS)
6
CTF Content Creation
4
AI and Simulation Tools
4
Security Operations Tools
2
Sub Categories
Keywords
security
20
python
14
docker
12
javascript
8
ctf
8
aws
8
kubernetes
6
appsec
6
developer-tools
6
terraform
6
hacking
6
testing
6
serverless
6
chromium
6
security-tools
6
ai
6
containers
4
openai
4
infosec
4
detection
4
linux
4
macos
4
monitoring
4
c
4
lambda
4
automation
4
chrome
4
firefox
4
powershell
4
owasp
4
aws-lambda
4
vagrant
4
web
4
llms
4
ctfd
4
training
4
novnc
4
websockets
4
simulation
4
ide
4
ansible
4
dns-server
2
k8s
2
netkit
2
computer-networks
2
bgp
2
webkit
2
testing-tools
2
test-automation
2
test
2