Top 307 cybersecurity open source projects

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

Materials for a course based on the Practical Malware Analysis text by Andrew Honig and Michael Sikorski

An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.

Know Your IP: Get location, blacklist status, shodan and censys results, and more.

Extract all employees from LinkedIn. Especially useful for companies with thousands of employees.

Collection of several DDos tools.

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

学习安全运营的记录 | The knowledge base of security operation

A Highly Accessible and Automated Virtualization Platform for Security Education

recon-ng modules for Censys

网络安全课本

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

PassLock is a medium-security password manager that encrypts passwords using Advanced Encryption Standards (AES)

Information Security Library

You didn't think I'd go and leave the blue team out, right?

网络信息安全从业者面试指南

Malware Sample Sources

Who and what to follow in the world of cyber security

a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.

Additional Resources For Securing The Stack Tutorials

A tool for generating reverse shell payloads on the fly.

The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation.

ThePhish: an automated phishing email analysis tool

A collaborative platform for creating, editing and sharing JSON objects.

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

Automated Deployment of Lab Environments System (ADLES)

A curated list of awesome resources related to executable packing

A python module for working with ATT&CK

Spin up new Windows qubes quickly, effortlessly and securely on Qubes OS

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

Search a filesystem for indicators of compromise (IoC).

Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations

网络安全 · 攻防对抗 · 蓝队清单，中文版

💀 A bash hacking and scanning framework.

Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

OSINT Bookmarks for Firefox / Chrome / Edge / Safari

These are the notes i have been taking since i started learning about ethical hacking and cybersecurity

Hashes of infamous malware

No description or website provided.

Monitoring GitHub for sensitive data shared publicly

CyTrONE: Integrated Cybersecurity Training Framework

Game of Thrones hacking CTF (Capture the flag)

Backend logic implementation for Vulnerability Management System

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

个人教学 Wiki

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

This repository contains links to awesome security articles.

JerseyCTF 2021

Ultimate DevSecOps library

Ethical Hacking Toolkit is a collection of tools, cheat sheets, and resources for Ethical hackers, Penetration Tester, and Security Researchers etc. It contains almost all tools mentioned in CEH, OSCP, eCPPT and PNPT

Leaked pentesting manuals given to Conti ransomware crooks

Labtainers: A Docker-based cyber lab framework

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

phishEye is an ultimate phishing tool in python. Includes popular websites like Facebook, Twitter, Instagram, LinkedIn, GitHub, Dropbox, and many others. Created with Flask, custom templates, and tunneled with ngrok and localhost.run.

Query compiler for secure multi-party computation.