4 个仓库
Identification of potential attack routes using graph-based analysis of assets and configurations.
Distinct from Attack Surface Mapping: Focuses on internal traversal paths between assets rather than the discovery of the external perimeter surface.
Explore 4 awesome GitHub repositories matching security & cryptography · Attack Path Analysis. Refine with filters or upvote what's useful.
This project is a comprehensive security suite and knowledge base focused on the engineering and construction of trustworthy digital and physical systems. It provides a systematic framework for security engineering design, covering the establishment of high-assurance architectures and the implementation of security models that govern how a system achieves its safety goals. The project is distinguished by its focus on formal assurance and adversarial deterrence. It includes methodologies for creating security assurance cases and proofs to verify system trustworthiness, alongside economic and t
Provides methodologies for analyzing potential attack routes through graph-based visualization of assets and configurations.
Cartography 是一个基于图的架构可视化和安全分析框架。它从各种云、身份和软件即服务(SaaS)提供商处提取数据,在中央图数据库中建模资源、用户和安全发现之间的复杂关系。通过映射这些相互依赖关系,该平台使组织能够获得对其环境的可见性,并通过图遍历查询识别潜在的安全风险。 该平台以其基于本体的规范化和跨平台实体关联而著称,将来自多个来源的异构数据映射到一个统一、一致的模型中。它采用模块化摄取管道和基于模式的过滤来维护此图,通过对陈旧节点的自动状态修剪确保架构数据保持准确。这种方法允许发现跨越不同云、设备和身份管理系统的复杂攻击路径和安全配置错误。 除了核心建模外,该系统还为资产清单、身份治理和软件供应链分析提供了广泛的功能。它支持广泛的集成,包括云原生计算和网络资源、端点管理遥测以及开发生命周期元数据。用户可以通过定义自定义安全规则、添加专门的数据分析作业或通过其模块化框架集成新的情报来源来扩展平台的功能。 该项目使用 Python 实现,并提供了用于配置摄取模块和定义自定义图查询的文档。
Identifies risky infrastructure patterns and potential attack vectors using graph-based queries.
FalkorDB is a high-performance graph database management system and vector graph database. It serves as a knowledge graph construction tool and a GraphRAG knowledge store, integrating structured property graphs with vector search to provide grounded context for large language models. The engine is designed as a multi-tenant graph engine, capable of hosting thousands of isolated datasets within a single instance. The system distinguishes itself by using linear algebra for query execution, treating relationship tensors as matrix multiplications to achieve low-latency multi-hop traversals. It ut
Organizes security data as connected nodes to identify potential attack paths in real-time.
BloodHound is an identity risk management platform and graph-based attack path analyzer used to map identity relationships and permissions in Active Directory. It functions as a security tool for auditing directory services, uncovering unintended privilege relationships, and visualizing sequences of permissions that can lead to domain compromise. The project differentiates itself as a comprehensive adversary emulation framework that coordinates remote agents and executes post-exploitation commands. It includes a reverse proxy for bypassing multi-factor authentication via real-time session hij
Visualizes privilege escalation routes and hidden identity relationships using graph-based analysis.