security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
Repositories (1451)
A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
Supply-chain Levels for Software Artifacts
:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highligh...
书籍《Java 开发坑点解析:从根因分析到最佳实践》 & 极客时间专栏《Java业务开发常见错误100例》源码
Ctf solutions from p4 team
Multi-architecture assembler for IDA Pro. Powered by Keystone Engine.
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
Security Scanner for Agent Skills
A curated list of Graph/Transformer-based fraud, anomaly, and outlier detection papers & resources
Run PowerShell with rundll32. Bypass software restrictions.
HACL*, a formally verified cryptographic library written in F*
Golang for Security Professionals
Checklist of security precautions for Ruby on Rails applications.
Extract URLs, paths, secrets, and other interesting bits from JavaScript
Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dyna...
Sandboxes for every agent. Embeddable, stateful, snapshots, and hardware isolation.
PHP Captcha library
🚀 Try the Learn EVM Explorer we just launched!!!
A curated list of awesome Security Hardening techniques for Windows.
:package: :fire: Python project management. Manage packages: convert between formats, lock, install, resolve, isolate, test, build graph, show outdate...
linuxprivchecker.py -- a Linux Privilege Escalation Check Script
A framework for secure and scalable network traffic analysis - https://netcap.io
WireGuard VPN server installer for Ubuntu, Debian, AlmaLinux, Rocky Linux, CentOS, Fedora, openSUSE and Raspberry Pi OS. Includes interactive setup an...
An easy-to-learn/use static analysis framework for Java
Kubernetes networking based on Open vSwitch
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
Security-focused static analysis for the Phoenix Framework
Symfony Security Component - CSRF Library
Metlo is an open-source API security platform.
Librefox: Firefox with privacy enhancements
DOM fuzzer
Repository for the Lemur Certificate Manager
A browser extension for OSINT search
Here we collect and discuss the best DeFi, Blockchain and crypto-related OpSec researches and data terminals - contributions are welcome.
RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
安全场景、基于AI的安全算法和安全数据分析业界实践
HardeningKitty - Checks and hardens your Windows configuration
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
Github Sensitive Information Leakage Monitor(Github信息泄漏监控系统)
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode target...
Generate sandboxes for C/C++ libraries automatically
OpenVPN GUI is a graphical frontend for OpenVPN running on Windows (10 and 11). It creates an icon in the notification area from which you can control...
Real-world infosec wordlists, updated regularly
Better privacy without special software
CSRF protection middleware for Go.
Privacy and security enhanced releases of Chromium for GrapheneOS. Vanadium provides the WebView and standard user-facing browser on GrapheneOS. It de...
😸一个快速开发脚手架,快速搭建企业级后台管理系统,并提供多种便捷starter进行功能扩展。主要功能包括前后台用户分离,菜单权限,数据权限,定时任务,访问日...
An easy to set up and use SSH honeypot, a fake SSH server that lets anyone in and logs their activity
ToolHive is an enterprise-grade platform for running and managing Model Context Protocol (MCP) servers.
Security auditing tool for AWS environments