OS-CFIOrigin-sensitive Control Flow Integrity (OS-CFI) - USENIX Security 2019
ochrona-cliA command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
pie-my-vulnsVisualize your project security vulnerabilities as a pie chart in the terminal
rawsec-cybersecurity-inventoryAn inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.
sqhunterA simple threat hunting tool based on osquery, Salt Open and Cymon API
cluster-image-scannerDiscover vulnerabilities and container image misconfiguration in production environments.
www-project-csrfguardThe aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
MassVulScanBash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.
pentesting-frameworkPentesting Framework is a bundle of penetration testing tools, Includes - security, pentesting, hacking and many more.
box-Staff-ManagerEmployee App is used for initialize transactions, user management, authorise flow so that enteripise digital assets can be managed by stakeholders and partners.
woodpeckerCustom security distro for remote penetration testing
pyFireEyePython API bindings for FireEye Products
LuciferA Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life
pen-test-automationA framework for automating penetration testing using a plugin based architecture
yara-parserTools for parsing rulesets using the exact grammar as YARA. Written in Go.
aqua-helmHelm Charts For Installing Aqua Security Components
c2A simple, extensible C&C beaconing system.
EDRHuntScan installed EDRs and AVs on Windows
codecatCodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.
cloudrasp-log4j2一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
heimdallEthereum Smart Contracts Security Monitoring
CryptDownclient-side AES-encrypted Markdown pastebin clone
secretsNot Yet Another Password Manager written in Go using libsodium
MurMurHashThis little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
rsReverse shell auto generator used for Hackthebox/OSCP/Pentest/LABExp
patton-cliThe knife of the Admin & Security auditor
zeek-plugin-s7commZeek network security monitor plugin that enables parsing of the S7 protocol
MixewayHubMixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
ipa-meditMemory modification tool for re-signed ipa supports iOS apps running on iPhone and Apple Silicon Mac without jailbreaking.
MadMaxEthereum Static Vulnerability Detector for Gas-Focussed Vulnerabilities
LauschgeraetGets in the way of your victim's traffic and out of yours
sandfly-setupSandfly Security Agentless Compromise and Intrusion Detection System For Linux
webgrepGrep Web pages with extra features like JS deobfuscation and OCR
longtongueCustomized Password/Passphrase List inputting Target Info
PeekABooPeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.
inspector-gadgetLeiningen plugin responsible for finding possible vulnerabilities in clojure applications.
GotandaGotanda is browser Web Extension for OSINT.
nmap-formatterA tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.
SharePoint-SecurityA Github Repository Created to compliment a BSides Canberra 2018 talk on SharePoint Security.
Jira-LensFast and customizable vulnerability scanner For JIRA written in Python
evtx2jsonA tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.
AppmemDumperForensics triage tool relying on Volatility and Foremost
haiti🔑 A CLI tool to identify the hash type of a given hash.
emeraldImport DynamoRIO drcov code coverage data into Ghidra
toolsTools used for Penetration testing / Red Teaming
ada-keystoreAda Keystore - protect your sensitive data with secure storage