Firmware❄️ Firmware and simulator for Coldcard Hardware Wallet
Ansible PanAnsible modules for Palo Alto Networks NGFWs
PapersSlowMist Vulnerability Research Advisories
Awesome OcapAwesome Object Capabilities and Capability Security
Elinux嵌入式 Linux 知识库 (elinux.org) 中文翻译计划;本项目发起人发布了《360° 剖析 Linux ELF》视频课程,欢迎订阅:https://www.cctalk.com/m/group/88089283
CamerattackAn attack tool designed to remotely disable CCTV camera streams (like in spy movies)
Awesome Iam👤 Identity and Access Management Knowledge for Cloud Platforms
HrshellHRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Aws Auto RemediateOpen source application to instantly remediate common security issues through the use of AWS Config
OpencspmOpen Cloud Security Posture Management Engine
FrappeLow code web framework for real world applications, in Python and Javascript
Re Ios AppsA completely free, open source and online course about Reverse Engineering iOS Applications.
Monitor AdgroupmembershipPowerShell script to monitor Active Directory groups and send an email when someone is changing the membership
Fudgec2FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
RevshellgenReverse shell generator written in Python 3.
P2.📄 p2. - Simple and secure PDF to PNG server.
Stegseek⚡️ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡️
User.jsuser.js -- Firefox configuration hardening
RingSafe, fast, small crypto using Rust
Azure MaskA browser extension (Chrome, Firefox) that toggles concealment of sensitive information found in the Azure Portal web page such as Subscription Id's
Security ScriptsA collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Javacard Curated ListCurated list of open-source Java Card applets and related applications for cryptographic smartcards
HonggfuzzSecurity oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)
PiknikCopy/paste anything over the network.
ItsdangerousSafely pass trusted data to untrusted environments and back.
ApplockerAppLocker - simple lock screen for iOS Application ( Swift 4+, iOS 9.0+) Touch ID / Face ID
PaiParadox Magellan, Spectra and EVO, with MQTT, Signal, Pushbullet, Pushover and others
Xnumonmonitor macOS for malicious activity
Ptorx📩🛡 Email privacy. Anonymously send and receive with alias forwarding.
Ipset asusSkynet - Advanced IP Blocking For ASUS Routers Using IPSet.
LicenseppSoftware licensing done right - license++ is a cross platform software licensing library that uses digital signatures to secure use of your application and its licensing
Disallowed UsernamesAn open source database of disallowed usernames for software projects to prevent phishing and impersonation.
AuditorHardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.
WazuhWazuh - The Open Source Security Platform
Awesome Shodan Queries🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Poet[unmaintained] Post-exploitation tool
AmmoniaRepair and secure untrusted HTML
ApicheckThe DevSecOps toolset for REST APIs
Biu FrameworkBiu-framework🚀 Security Scan Framework For Enterprise Intranet Based Services(企业内网基础服务安全扫描框架)
RemoraKafka consumer lag-checking application for monitoring, written in Scala and Akka HTTP; a wrap around the Kafka consumer group command. Integrations with Cloudwatch and Datadog. Authentication recently added
Host ValidationExpress.js middleware for "Host" and "Referer" header validation to protect against DNS rebinding attacks.