security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
Repositories (1449)
Full Toolkit for Next-Level Domain Analysis
A Ruby framework designed to aid in the penetration testing of WordPress systems.
Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Sleepy Puppy XSS Payload Management Framework
T Wiki 云安全知识文库,可能是国内首个云安全知识文库?
Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.
Statically-linked ssh server with reverse shell functionality for CTFs and such
WebAuthn (FIDO2) server library written in Go
Pythonic WebAuthn 🐍
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easil...
Awesome PHP Security Resources 🕶🐘🔐
OpenClaw Security Vault — Atomic "claw" control: every AI reach, within your sight.
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific or...
Attify OS - Distro for pentesting IoT devices
Ultimate Javascript Object Signing and Encryption (JOSE), JSON Web Token (JWT) and Json Web Keys (JWK) Implementation for .NET and .NET Core
Cloudlist is a tool for listing Assets from multiple Cloud Providers.
🛡 Make safest code in Android. (基于libsodium实现chacha20算法,key在native中,防止被二次打包){长期维护,请star,勿fork}
Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).
A repository for ebooks, including C, C plus plus, Linux Kernel, Compiler, OS, Algorithm, Security, Database, Network, ML and DL
A modular and blazing fast runtime security tool for the IoT, powered by eBPF.
An HTTP/HTTPS intercept proxy written in Go.
Protect against malicious open source packages 🤖
PCI-DSS compliant Debian 11/12 hardening
最好用最智能最可控的目录Fuzz工具 | The most powerful, user-friendly, intelligent, and precise HTTP Fuzzer.
A Blazing fast Security Auditing tool for Kubernetes
Web Application Firewall (WAF) package for Laravel
Endo is a distributed secure JavaScript sandbox, based on SES
A task based API for taking screenshots and scraping text from websites.
A simple remote tool in C#.
RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!
vet is a command-line tool that acts as a safety net for the risky curl | bash pattern. It lets you inspect, diff against previous versions, and lint...
An intelligence gathering tool for hacking Bluetooth
A manager for ssh-agent and gpg-agent
in-toto is a framework to protect supply chain integrity.
Code-Audit-Challenges
Verify apps easily.
Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This al...
Your performance & security consultant, an artisan command away.
Username enumeration and password spraying tool aimed at Microsoft O365.
Real-time, container-based file scanning at enterprise scale
A W.I.P Android Security Ref
DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.
Collection of Linux eBPF slides/documents.
JSON Web Token Hack Toolkit
The fast and secure Load Balancer / API Gateway / Reverse Proxy with built-in service discovery, GeoIP, WAF, bot protection and much more - https://pi...
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
BCrypt.Net - Bringing updates to the original bcrypt package
The most exhaustive list of reliable DNS resolvers.
A fast, parallel test case minimization tool.
Modern Python library for HTTP security headers (CSP, HSTS, etc.) with secure defaults and presets for Shiny, FastAPI, Django, Flask, and other ASGI/W...