OsctrlFast and efficient osquery management
SlurpEvaluate the security of S3 buckets
MsgphpReusable domain layers. Shipped with industry standard infrastructure.
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
YawastYAWAST ...where a pentest starts. Security Toolkit for Web-based Applications
MozdefDEPRECATED - MozDef: Mozilla Enterprise Defense Platform
PapersAcademic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
Mosec 2017📝 The third MOSEC mobile security technology summit 第三届 MOSEC 移动安全技术峰会参会分享
React Native Linkedin🔗 React-Native LinkedIn, a simple LinkedIn login library for React-Native or Expo with WebView and Modal
EnigmaMultiplatform payload dropper
Ssl Kill Switch2Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and macOS applications.
Spring VaultProvides familiar Spring abstractions for HashiCorp Vault
AvpwnList of real-world threats against endpoint protection software
AdaptADAPT is a tool that performs automated Penetration Testing for WebApps.
UniversaltokenImplementation of Universal Token for Assets and Payments
CryptagEncrypted, taggable, searchable cloud storage
RuntimeKata Containers version 1.x runtime (for version 2.x see https://github.com/kata-containers/kata-containers).
InvokerPenetration testing utility, and antivirus assessment tool.
HomeWelcome to Janssen: the world's fastest cloud native identity and access management platform
PhishingkithunterFind phishing kits which use your brand/organization's files and image.
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Securify[DEPRECATED] Security Scanner for Ethereum Smart Contracts
LisaSandbox for automated Linux malware analysis.
StegcloakHide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐
Badssl.com🔒 Memorable site for testing clients against bad SSL configs.
SamSystem Architecture Mapper
Ksprefs🚀⚡ Kotlin SharedPreferences wrapper & cryptographic preferences android library.
Ansible Role WireguardAnsible role for installing WireGuard VPN. Supports Ubuntu, Debian, Archlinx, Fedora and CentOS.
NotableNotable - a simple note taking application
IvreNetwork recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Docker Openvpn🔐 Out of the box stateless openvpn-server docker image which starts in less than 2 seconds
Jwt Hack🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
Bottle CorkAuthentication module for the Bottle and Flask web frameworks
Dnxfirewalldnxfirewall (dad's next-gen firewall), a pure Python next generation firewall built on top of Linux kernel/netfilter.
MagicpadMagicPad is an encryption suite for beginners. It is designed to be run standalone via the browser or executable (Electron).
YarYar is a tool for plunderin' organizations, users and/or repositories.
TuktukTool for catching and logging different types of requests.
BlokadaThe official repo for Blokada for Android and iOS.
PytA Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Antiddos System🛡️⚔️ Protect your web app from DDOS attack or the Dead Ping + CAPTCHA VERIFICATION in one line!
AuthorizerAuthorizer is a Password Manager for Android. It emulates an HID keyboard over USB and enters your credentials on your target device. Additionally it supports OTP 🔑📴