CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: β 182 (-51.98%)
SuperLibraryInformation Security Library
Stars: β 60 (-84.17%)
StegcloakHide secrets with invisible characters in plain text securely using passwords π§π»ββοΈβ
Stars: β 2,379 (+527.7%)
android-webauthn-authenticatorA WebAuthn Authenticator for Android leveraging hardware-backed key storage and biometric user verification.
Stars: β 101 (-73.35%)
Securityadvisoriesπ Security advisories as a simple composer exclusion list, updated daily
Stars: β 2,279 (+501.32%)
Blue-Team-NotesYou didn't think I'd go and leave the blue team out, right?
Stars: β 899 (+137.2%)
Umbrella androidOpen source Android, iOS and Web app for learning about and managing digital and physical security. From how to send a secure message to dealing with a kidnap. Umbrella has best practice guides in over 40 topics in multiple languages. Used daily by people working in high risk countries - journalists, activists, diplomats, business travelers etc.
Stars: β 171 (-54.88%)
aa-policy-validatorValidate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
Stars: β 42 (-88.92%)
Dymergeπ A dynamic dictionary merger for successful dictionary based attacks.
Stars: β 167 (-55.94%)
HacktheboxNotes Taken for HTB Machines & InfoSec Community.
Stars: β 167 (-55.94%)
AstraAstra is a tool to find URLs and secrets inside a webpage/files
Stars: β 187 (-50.66%)
ThreagileAgile Threat Modeling Toolkit
Stars: β 162 (-57.26%)
rustpadMulti-threaded Padding Oracle attacks against any service. Written in Rust.
Stars: β 75 (-80.21%)
Slack WatchmanMonitoring your Slack workspaces for sensitive information
Stars: β 159 (-58.05%)
KarmaFind leaked emails with your passwords
Stars: β 154 (-59.37%)
sgCheckupsgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
Stars: β 77 (-79.68%)
NetpwnTool made to automate tasks of pentesting.
Stars: β 152 (-59.89%)
honeykuA Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).
Stars: β 56 (-85.22%)
vimana-frameworkVimana is an experimental security framework that aims to provide resources for auditing Python web applications.
Stars: β 47 (-87.6%)
MyriamA vulnerable iOS App with Security Challenges for the Security Researcher inside you.
Stars: β 146 (-61.48%)
juumlaπ¦ Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.
Stars: β 107 (-71.77%)
Pyiris BackdoorPyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>
Stars: β 145 (-61.74%)
InfoPhishInfoPath Phishing Repo Resource
Stars: β 68 (-82.06%)
Breach.twA service that can track data breaches like "Have I Been Pwned", but it is specific for Taiwan.
Stars: β 144 (-62.01%)
TIWAPTotally Insecure Web Application Project (TIWAP)
Stars: β 137 (-63.85%)
KurukshetraKurukshetra - A framework for teaching secure coding by means of interactive problem solving.
Stars: β 131 (-65.44%)
toolkitThe essential toolkit for reversing, malware analysis, and cracking
Stars: β 176 (-53.56%)
Jsonpjsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.
Stars: β 131 (-65.44%)
diwaA Deliberately Insecure Web Application
Stars: β 32 (-91.56%)
Gitlab WatchmanMonitoring GitLab for sensitive data shared publicly
Stars: β 127 (-66.49%)
restincodeA memorial site for Hackers and Infosec people who have passed
Stars: β 62 (-83.64%)
Spaces FinderA tool to hunt for publicly accessible DigitalOcean Spaces
Stars: β 122 (-67.81%)
goverviewgoverview - Get an overview of the list of URLs
Stars: β 93 (-75.46%)
GoaltdnsA permutation generation tool written in golang
Stars: β 119 (-68.6%)
tutorialsAdditional Resources For Securing The Stack Tutorials
Stars: β 36 (-90.5%)
Mitmapπ‘ A python program to create a fake AP and sniff data.
Stars: β 1,526 (+302.64%)
VirtualsecconsAn ongoing list of virtual cybersecurity conferences.
Stars: β 113 (-70.18%)
qvm-create-windows-qubeSpin up new Windows qubes quickly, effortlessly and securely on Qubes OS
Stars: β 267 (-29.55%)
NetsetOperational Security utility and automator.
Stars: β 110 (-70.98%)
rawsec-cybersecurity-inventoryAn inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.
Stars: β 153 (-59.63%)
Hacker ContainerContainer with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters
Stars: β 105 (-72.3%)
introspectorA schema and set of tools for using SQL to query cloud infrastructure.
Stars: β 61 (-83.91%)
SubtakeAutomatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Stars: β 104 (-72.56%)
pyetiPython bindings for Yeti's API
Stars: β 15 (-96.04%)
RoutersploitExploitation Framework for Embedded Devices
Stars: β 9,866 (+2503.17%)
DcRatA simple remote tool in C#.
Stars: β 709 (+87.07%)
GorshA Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface
Stars: β 97 (-74.41%)
S3ScanScript to spider a website and find publicly open S3 buckets
Stars: β 21 (-94.46%)
BasecrackDecode All Bases - Base Scheme Decoder
Stars: β 196 (-48.28%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). π
Stars: β 187 (-50.66%)
NIST-to-TechAn open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: β 61 (-83.91%)
reconmapVulnerability assessment and penetration testing automation and reporting platform for teams.
Stars: β 242 (-36.15%)
giggerGit folder digger, I'm sure it's worthwhile stuff.
Stars: β 39 (-89.71%)
massurlA simple tool that aims to efficiently and quickly parse the outputs of web scraping tools like gau
Stars: β 14 (-96.31%)