Top 654 security-tools open source projects

Origin-sensitive Control Flow Integrity (OS-CFI) - USENIX Security 2019

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

Visualize your project security vulnerabilities as a pie chart in the terminal

An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.

A simple threat hunting tool based on osquery, Salt Open and Cymon API

Discover vulnerabilities and container image misconfiguration in production environments.

The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens

Bash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.

Little Bug Bounty & Hacking Tools⚔️

安全总是无处不在...

Pentesting Framework is a bundle of penetration testing tools, Includes - security, pentesting, hacking and many more.

Employee App is used for initialize transactions, user management, authorise flow so that enteripise digital assets can be managed by stakeholders and partners.

wifi attacks suite

Custom security distro for remote penetration testing

Collection of several DDos tools.

Python API bindings for FireEye Products

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

A framework for automating penetration testing using a plugin based architecture

Tools for parsing rulesets using the exact grammar as YARA. Written in Go.

Helm Charts For Installing Aqua Security Components

A simple, extensible C&C beaconing system.

Scan installed EDRs and AVs on Windows

CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Ethereum Smart Contracts Security Monitoring

client-side AES-encrypted Markdown pastebin clone

Not Yet Another Password Manager written in Go using libsodium

unix wildcard attacks

No description or website provided.

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Reverse shell auto generator used for Hackthebox/OSCP/Pentest/LABExp

Repository for the Open Security Reference Architecture

The knife of the Admin & Security auditor

Zeek network security monitor plugin that enables parsing of the S7 protocol

Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.

Memory modification tool for re-signed ipa supports iOS apps running on iPhone and Apple Silicon Mac without jailbreaking.

Ethereum Static Vulnerability Detector for Gas-Focussed Vulnerabilities

用于检测maven项目的第三方依赖组件是否存在安全漏洞。

Gets in the way of your victim's traffic and out of yours

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

Grep Web pages with extra features like JS deobfuscation and OCR

My Material for the HITB presentation

A (nearly) production ready Dockered MISP

Find endpoints on GitHub.

Customized Password/Passphrase List inputting Target Info

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

Github Action implementation of SLSA Provenance Generation

Leiningen plugin responsible for finding possible vulnerabilities in clojure applications.

Gotanda is browser Web Extension for OSINT.

A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.

A Github Repository Created to compliment a BSides Canberra 2018 talk on SharePoint Security.

Fast and customizable vulnerability scanner For JIRA written in Python

Magento 1 Security Patcher from MageMojo

A tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.

Forensics triage tool relying on Volatility and Foremost

🔑 A CLI tool to identify the hash type of a given hash.

Import DynamoRIO drcov code coverage data into Ghidra

Tools used for Penetration testing / Red Teaming

Ada Keystore - protect your sensitive data with secure storage