security

Advanced dork Search & Mass Exploit Scanner

获取微信4.0版本以上数据库密钥和图片密钥的工具 | A tool for obtaining database keys and image keys for WeChat versions 4.0 and above

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

CLOSE ACCESS DENIAL.

What's in your data? Extract schema, statistics and entities from datasets

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

Toolkit to emulate firmware and analyse it for security vulnerabilities

Concrete: TFHE Compiler that converts python programs into FHE equivalent

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

一款适用于红蓝对抗中的仿真钓鱼系统

The Most Comprehensive Docker Security Scanner

Asset inventory of over 800 public bug bounty programs.

Asp.Net 7.0 & Angular 15 SPA Fullstack application with plenty of examples. Live demo:

A framework agnostic authentication & authorization system.

Occlum is a memory-safe, multi-process library OS for Intel SGX

If you have any good suggestions or comments during the search process, please feedback some index experience in issues. Thank you for your participat...

Heimdall is an advanced EVM smart contract toolkit specializing in bytecode analysis and extracting information from unverified contracts.

:vulcan_salute: Fast, modern, easy-to-use network scanner

AI Native platform to get companies compliant - Vanta & Drata Alternative

HummerRisk 是云原生安全平台，包括混合云安全治理和云原生安全检测。

OSINT tools and more but without API key

Attack surface mapping

A default credential scanner.

A very small, very simple, yet very secure encryption tool.

白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目

Secure-by-default HTTP servers in Go.

ScopeSentry-Cyberspace mapping, subdomain enumeration, port scanning, sensitive information discovery, vulnerability scanning, distributed nodes

GUAC aggregates software security metadata into a high fidelity graph database.

OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-u...

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

A curated list of awesome Ethereum security references

Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, ho...

IBM Fully Homomorphic Encryption Toolkit For Linux. This toolkit is a Linux based Docker container that demonstrates computing on encrypted data witho...

LibreSSL Portable itself. This includes the build scaffold and compatibility layer that builds portable LibreSSL from the OpenBSD source code. Pull re...

A php.ini scanner for best security practices

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

GlobaLeaks is a free and open-source whistleblowing software enabling anyone to easily set up and maintain a secure reporting platform.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Build...

Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitiv...

ChipWhisperer - the complete open-source toolchain for side-channel power analysis and glitching attacks

ICS/SCADA honeypot

LLM Prompt Injection Detector

This repository has a new home: https://git.synz.io/Synzvato/decentraleyes

Infra provides authentication and access management to servers and Kubernetes clusters.

OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure

Perform a MitM attack and extract clear text credentials from RDP connections

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

Security risk analysis for Kubernetes resources

铜锁/Tongsuo is a Modern Cryptographic Primitives and Protocols Library

One Time Password (HOTP/TOTP) library for Node.js, Deno, Bun and browsers.