security

Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.

Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of co...

Automatic SQL injection with Charles and sqlmap api

Kubernetes RBAC static analysis & visualisation tool

Security Bulletins that relate to Netflix Open Source

Kubernetes security notes and best practices

The source code for webauthn.io, a demonstration of WebAuthn.

Lilith - Foundational reverse engineering resource for cybersecurity entrepreneurs in C++

Blind WAF identification tool

OpenID Connect Code Flow PKCE / Implicit Flow with Angular and ASP.NET Core 6 IdentityServer4

Visualize your aws security groups.

opmsg message encryption

Remote administration service which uses twitter as a command and control server

Create and validate signed URLs with a limited lifetime

Sign, verify, encrypt and decrypt using the Secure Enclave

Multi Tool Subdomain Enumeration

Robber is open source tool for finding executables prone to DLL hijacking

Linux audit userspace repository

Python implementation of Dropbox's realistic password strength estimator

:lock: Chromium's HSTS preload list submission website.

framework to rapidly implement custom droppers for all three major operating systems

DevSec Linux Baseline - InSpec Profile

Bluetooth experimentation framework for Broadcom and Cypress chips.

kernel privilege escalation enumeration and exploitation framework

Mendmix定位是一站式分布式开发架构开源解决方案及云原生架构技术底座。Mendmix提供了数据库、缓存、消息中间件、分布式定时任务、安全框架、网关以及主流产商云...

🔪Browser logic vulnerabilities :skull_and_crossbones:

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security as...

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

Quick and simple security for Flask applications

Web application acceleration, advanced DDoS protection and web security

历经开发周期多年，并且应用过千万级别项目的工具箱

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Automatic and platform-independent unpacker for Windows binaries based on emulation

python script for Google Dorking

Easy automated vulnerability scanning, reporting and analysis

FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic

fireELF - Fileless Linux Malware Framework

A Graphql query cost analyzer.

五合一收款码在线生成,40个模板 支持微信支付、支付宝支付、手机QQ支付、京东钱包、百度钱包,PayPal五合一收款，将其二维码合并为一个二维码，无需手续费,支持qq...

Captcha Gem for Rails, which generates captcha image by Rust.

Scirius is a web application for Suricata ruleset management and threat hunting.

A decentralized threshold cryptography network focused on proxy reencryption.

Open source pre-operation C2 server based on python and powershell

Adds extra security-related features in your Symfony application

Python 3.5+ DNS asynchronous brute force utility

OSINT Swiss Army Knife

WireGuard VPN server installer

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

Avast JavaScript Interactive Shell

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code