Umbrella androidOpen source Android, iOS and Web app for learning about and managing digital and physical security. From how to send a secure message to dealing with a kidnap. Umbrella has best practice guides in over 40 topics in multiple languages. Used daily by people working in high risk countries - journalists, activists, diplomats, business travelers etc.
Rpi SecurityA security system written in python to run on a Raspberry Pi with motion detection and mobile notifications
Tools TbhmTools of "The Bug Hunters Methodology V2 by @jhaddix"
Devsecops🔱 Collection and Roadmap for everyone who wants DevSecOps.
MobilehackersweaponsMobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Pkcs11interopManaged .NET wrapper for unmanaged PKCS#11 libraries
Misp TaxonomiesTaxonomies used in MISP taxonomy system and can be used by other information sharing tool.
BbreconPython library and CLI for the Bug Bounty Recon API
ProbequestToolkit for Playing with Wi-Fi Probe Requests
Pac4jSecurity engine for Java (authentication, authorization, multi frameworks): OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
KanidmKanidm: A simple, secure and fast identity management platform
KesKES is a simple, stateless and distributed key-management system
JsshellJSshell - JavaScript reverse/remote shell
Mutual Tls Ssl🔐 Tutorial of setting up Security for your API with one way authentication with TLS/SSL and mutual mutual authentication for a java based web server and a client with both Spring Boot. Different clients are provided such as Apache HttpClient, OkHttp, Spring RestTemplate, Spring WebFlux WebClient Jetty and Netty, the old and the new JDK HttpClient, the old and the new Jersey Client, Google HttpClient, Unirest, Retrofit, Feign, Methanol, vertx, Scala client Finagle, Featherbed, Dispatch Reboot, AsyncHttpClient, Sttp, Akka, Requests Scala, Http4s Blaze, Kotlin client Fuel, http4k, Kohttp and ktor. Also other server examples are available such as jersey with grizzly. Also gRPC examples are included
PwnshopExploit Development, Reverse Engineering & Cryptography
Security BundleThe security system is one of the most powerful parts of Symfony and can largely be controlled via its configuration.
Zap CliA simple tool for interacting with OWASP ZAP from the commandline.
AboutsecurityA list of payload and bypass lists for penetration testing and red team infrastructure build.
PacuThe AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Bouncy GpgMake using Bouncy Castle with OpenPGP fun again!
Egress OperatorA Kubernetes operator to produce egress gateway Envoy pods and control access to them with network policies
Raruraru: run as random user
AutovpnCreate On Demand Disposable OpenVPN Endpoints on AWS.
StethoscopePersonalized, user-focused recommendations for employee information security.
OpenskOpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.
VulscanAdvanced vulnerability scanning with Nmap NSE
WorkshopsWorkshops organized to introduce students to security, AI, AR/VR, hardware and software
DwpaDistributed WPA PSK auditor
Striptlsproxy poc implementation of STARTTLS stripping attacks
2faTwo-factor authentication for Symfony applications 🔐 (bunde version ≥ 5)
Sites Using Cloudflare💔 Archived list of domains using Cloudflare DNS at the time of the CloudBleed announcement.
VulnixVulnerability (CVE) scanner for Nix/NixOS.
AndroidlibraryAndroid library to reveal or obfuscate strings and assets at runtime
PwnedA command-line tool for querying the 'Have I been pwned?' service.
SuricataSuricata git repository maintained by the OISF
ShcheckA basic tool to check security headers of a website
Dotnet RetireOpen source vulnerability scanner for .NET Core projects
AddonClearURLs is an add-on based on the new WebExtensions technology and will automatically remove tracking elements from URLs to help protect your privacy.
DarksideTool Information Gathering & social engineering Write By [Python,JS,PHP]
SwtpmLibtpms-based TPM emulator with socket, character device, and Linux CUSE interface.
SearchpassA simple tool for offline searching of default credentials for network devices, web applications and more.
Passw0rd🔑securely checks a password to see if it has been previously exposed in a data breach
Study全栈工程师学习笔记;Spring登录、shiro登录、CAS单点登录和Spring boot oauth2单点登录;Spring data cache 缓存,支持Redis和EHcahce; web安全,常见web安全漏洞以及解决思路;常规组件,比如redis、mq等;quartz定时任务,支持持久化数据库,动态维护启动暂停关闭;docker基本用法,常用image镜像使用,Docker-MySQL、docker-Postgres、Docker-nginx、Docker-nexus、Docker-Redis、Docker-RabbitMQ、Docker-zookeeper、Docker-es、Docker-zipkin、Docker-ELK等;mybatis实践、spring实践、spring boot实践等常用集成;基于redis的分布式锁;基于shared-jdbc的分库分表,支持原生jdbc和Spring Boot Mybatis
FirewallASP.NET Core middleware for IP address filtering.