User SwitchingWordPress plugin that provides instant switching between user accounts.
HydraOpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.
Android SecurityAn app showcase of some techniques to improve Android app security
Ethereum SecuritySecurity issues in Ethereum demonstrated in mocha tests. The fix is also demonstrated
Pw Pwnage CfworkerDeploy a Cloudflare Worker to sanely score users' new passwords with zxcvbn AND check for matches against haveibeenpwned's 7.8+ billion breached accounts
Nraynray distributed port scanner
FositeExtensible security first OAuth 2.0 and OpenID Connect SDK for Go.
Noise.NET Standard 1.3 implementation of the Noise Protocol Framework (revision 33 of the spec)
Black WidowGUI based offensive penetration testing tool (Open Source)
CefdebugMinimal code to connect to a CEF debugger.
I2pd🛡 I2P: End-to-End encrypted and anonymous Internet
Play GuardPlay2 module for rate limiting, based on token bucket algorithm
ChestBash glue to encrypt and hide files
Botnet LabAn IRC based tool for testing the capabilities of a botnet.
LocationwithoutpromptA proof of concept to show how easy it is to get coarse location of the user without using Core Location
DatabunkerSecure storage for personal records built to comply with GDPR
XrayXRay is a tool for recon, mapping and OSINT gathering from public networks.
EviltwinframeworkA framework for pentesters that facilitates evil twin attacks as well as exploiting other wifi vulnerabilities
Go2seccompGenerate seccomp profiles from go binaries
MaplesyrupAssesses CPU security of embedded devices. #nsacyber
Csp AuditorBurp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
RekorSignature Transparency Log
File get contentsSecure wrapper for accessing HTTPS resources with file_get_contents() for PHP 5.3+.
Ipv6toolsIPv6Tools is a robust modular framework that enables the ability to visually audit an IPv6 enabled network.
Hosts.extrasExtra rules for https://github.com/StevenBlack/hosts project
TimesketchCollaborative forensic timeline analysis
HawkeyeGitHub 泄露监控系统(GitHub Sensitive Information Leakage Monitor Spider)
LibrefoxLicense: Mozilla Public License 2.0
NosqliNoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
OnionbrowserAn open-source, privacy-enhancing web browser for iOS, utilizing the Tor anonymity network
CtftoolInteractive CTF Exploration Tool
AwsuEnhanced account switching for AWS, supports Yubikey as MFA source
IsokeySelf-contained API keys via cryptographic signatures
Hibr2binComae Hibernation File Decompressor
DetectlmDetecting Lateral Movement with Machine Learning
Security CheckerA PHP dependency vulnerabilities scanner based on the Security Advisories Database.
Encrypt.toSend encrypted PGP messages with one click
OpenbsmOpenBSM open audit implementation
KeewebFree cross-platform password manager compatible with KeePass
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
SojoboA binary analysis framework