security

Multi-Cloud Security Auditing Tool

A tool which is uses to remove Windows Defender in Windows 8.x, Windows 10 (every version) and Windows 11.

A guide to smart contract security best practices

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Tuta is an email service with a strong focus on security and privacy that lets you encrypt emails, contacts and calendar entries on all your devices.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnera...

Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

A static analysis security vulnerability scanner for Ruby on Rails applications

Cyber Security ALL-IN-ONE Platform

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it i...

Cloud native networking and network security

Performant type-checking for python.

WiFi security auditing tools suite

Docker image to run an IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2. Auto-generates server config and supports VPN client setup on Linux,...

⚠️ Browser fingerprinting via favicon!

Tfsec is now part of Trivy

Securely and anonymously share files, host websites, and chat with friends using the Tor network

A curated list of resources for learning about application security

A list of web application security

The slightly more awesome standard unix password manager for teams

All about bug bounty (bypasses, payloads, and etc)

Ultimate DevSecOps library

Transmits AM radio on computers without radio transmitting hardware.

Open Source, Google Zanzibar-inspired database for scalably storing and querying fine-grained authorization data

CTFs as you need them

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Superagent protects your AI applications against prompt injections, data leaks, and harmful outputs. Embed safety directly into your app and prove com...

Next generation web scanner

To fix the Docker and UFW security flaw without disabling iptables

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, M...

An adversarial example library for constructing attacks, building defenses, and benchmarking both

A list of interesting payloads, tips and tricks for bug bounty hunters.

A collection of links related to Linux kernel security and exploitation

8 Lessons, Kick-start Your Cybersecurity Learning.

Data pipelines for cloud config and security data. Build cloud asset inventory, CSPM, FinOps, and vulnerability management solutions. Extract from AWS...

Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to r...

Open Source Vulnerability Management Platform

Top 100 Hacking & Security E-Books (Free Download)

Open device management

Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

A collection of awesome security hardening guides, tools and other resources

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Bromite is a Chromium fork with ad blocking and privacy enhancements; take back your browser!

Centralized network visibility and continuous asset discovery. Monitor devices, detect change, and stay aware across distributed networks.

A Modern Orchestration Engine for Security

Light LDAP implementation