security

DEPRECATED, bettercap developement moved here: https://github.com/bettercap/bettercap

Cyber Security Tool For Hacking Wireless Connections Using Built-In Kali Tools. Supports All Securities (WEP, WPS, WPA, WPA2/TKIP/IES)

兜哥出品 <一本开源的NLP入门书籍>

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected"...

🦙 MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, excessive copy-pastes, spelling mistakes and security issues in your repository s...

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

一款部署于云端或本地的隧道代理池中间件，可将静态代理IP灵活运用成隧道IP，提供固定请求地址，一次部署终身使用

U2F USB token optimized for physical security, affordability, and style

A collection of smart contract vulnerabilities along with prevention methods

Adversary tradecraft detection, protection, and hunting

🕵️‍♂️ TUI for sniffing network traffic using eBPF on Linux

Semi-automatic OSINT framework and package manager

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Powerful framework for rogue access point attack.

Cross-platform desktop GUI app to clean image metadata

A Collection of Hacks in IoT Space so that we can address them (hopefully).

Fast, multi-protocol credential brute-forcer. Parses Nmap, Nessus, and Nexpose output to automatically test default and custom credentials across 30+...

🛡️ Awesome Cloud Security Resources ⚔️

A p2p, secure file storage, social network and application protocol

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata al...

Open-source tool to build your Windows script from scratch. It includes debloat, privacy, performance & app installing scripts.

Solo 1 firmware in C

The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

Automating situational awareness for cloud penetration tests.

HTTP middleware for Go that facilitates some quick security wins.

Creepy device and browser fingerprinting

A fork and successor of the Sulley Fuzzing Framework

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

XRay is a tool for recon, mapping and OSINT gathering from public networks.

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables r...

A curated list of awesome embedded and IoT security resources.

A cryptographically verifiable code review system for the cargo (Rust) package manager.

Role and Attribute based Access Control for Node.js

🖖 GoCaptcha: A high-performance, interactive behavior captcha library for Go. Supporting click, slide, drag-drop, and rotation modes to secure your a...

A simple,high performance and secure live media server in pure Rust (RTMP[cluster]/RTSP/WebRTC[whip/whep]/HTTP-FLV/HLS).🦀

OWASP API Security Project

🚀 Caido releases, wiki and roadmap

:fire: ShadowHook is an Android inline hook library which supports thumb, arm32 and arm64.

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

针对SpringBoot的开源渗透框架，以及Spring相关高危漏洞利用工具

Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

Daily feed of bad IPs (with blacklist hit scores)

A Vault swiss-army knife: A CLI tool to init, unseal and configure Vault (auth methods, secret engines).

This challenge is Inon Shkedy's 31 days API Security Tips.

iText for Java represents the next level of SDKs for developers that want to take advantage of the benefits PDF can bring. Equipped with a better docu...

🔐🌐 Privacy-respecting web frontends for popular services

Binary Analysis Platform