security

nono - a capability-based, multiplexing sandbox tool, built for developers , seamless path to prod. Run agents securely without needing any additional...

Guide to privacy settings for most major software and services.

书籍《Java 开发坑点解析：从根因分析到最佳实践》 & 极客时间专栏《Java业务开发常见错误100例》源码

Ctf solutions from p4 team

Multi-architecture assembler for IDA Pro. Powered by Keystone Engine.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Run PowerShell with rundll32. Bypass software restrictions.

Golang for Security Professionals

HACL*, a formally verified cryptographic library written in F*

Checklist of security precautions for Ruby on Rails applications.

A curated list of Graph/Transformer-based fraud, anomaly, and outlier detection papers & resources

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dyna...

PHP Captcha library

🚀 Try the Learn EVM Explorer we just launched!!!

:package: :fire: Python project management. Manage packages: convert between formats, lock, install, resolve, isolate, test, build graph, show outdate...

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

A curated list of awesome Security Hardening techniques for Windows.

A framework for secure and scalable network traffic analysis - https://netcap.io

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

Security-focused static analysis for the Phoenix Framework

Kubernetes networking based on Open vSwitch

Metlo is an open-source API security platform.

Symfony Security Component - CSRF Library

Librefox: Firefox with privacy enhancements

An easy-to-learn/use static analysis framework for Java

DOM fuzzer

Repository for the Lemur Certificate Manager

WireGuard VPN server installer for Ubuntu, Debian, AlmaLinux, Rocky Linux, CentOS, Fedora, openSUSE and Raspberry Pi OS

Here we collect and discuss the best DeFi, Blockchain and crypto-related OpSec researches and data terminals - contributions are welcome.

RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact

安全场景、基于AI的安全算法和安全数据分析业界实践

A browser extension for OSINT search

An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全，具备专业的软件成分分析（SCA）、漏洞检测、专业漏洞库。

Sandboxes for every agent. Embeddable, stateful, snapshots, and hardware isolation.

HardeningKitty - Checks and hardens your Windows configuration

Github Sensitive Information Leakage Monitor(Github信息泄漏监控系统)

wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode target...

Generate sandboxes for C/C++ libraries automatically

Open-source credential vault, give your AI agents access to services without exposing keys.

Security Scanner for Agent Skills

Better privacy without special software

Real-world infosec wordlists, updated regularly

CSRF protection middleware for Go.

OpenVPN GUI is a graphical frontend for OpenVPN running on Windows (10 and 11). It creates an icon in the notification area from which you can control...

😸一个快速开发脚手架，快速搭建企业级后台管理系统，并提供多种便捷starter进行功能扩展。主要功能包括前后台用户分离，菜单权限，数据权限，定时任务，访问日...

Security auditing tool for AWS environments

:video_camera: Complete HomeKit integration for all UniFi Protect device types with full support for most features including HomeKit Secure Video, and...

An easy to set up and use SSH honeypot, a fake SSH server that lets anyone in and logs their activity

The best way to build Electron apps with security in mind.