535 Open source projects that are alternatives of or similar to Security Txt

This document proposes a way of standardising the structure, language, and grammar used in security policies.

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

A list to discover work of red team tooling and methodology for penetration testing and security assessment

An information model for robot hardware. Facilitates interoperability across modules from different robot manufacturers. Built around ROS 2.0

Badges for your GitHub tool presented at InfoSec Conference

Awesome Node.js Security resources

An OSINT Metadata analyzing tool that filters through tags and creates reports

Secret and/ credential patterns used for gf.

Responsive Command and Control System

Project Connected Home over IP is a new Working Group within the Zigbee Alliance. This Working Group plans to develop and promote the adoption of a new connectivity standard to increase compatibility among smart home products, with security as a fundamental design tenet.

📋 Common Reporter Interface (CRI) for JavaScript testing frameworks.

Issue tracker - KendoReact http://www.telerik.com/kendo-react-ui/

Nginx HTTP server boilerplate configs

Bringing you the best of the worst files on the Internet.

Senparc.NeuChar 跨平台信息交互标准

This module creates an S3 bucket suitable for receiving logs from other AWS services such as S3, CloudFront, and CloudTrail

A .NET standard project which aims to make keyboard and mouse input monitoring easy on Windows and eventually Linux.

DOM Standard

Webshell Manager

RFD Checker - security CLI tool to test Reflected File Download issues

🐛 Malware Sinkhole List in various formats

A flexible control server for osquery fleets

This repo is meant to be a list of companies that hire security people full remote.

Fullscreen API Standard

This challenge is Inon Shkedy's 31 days API Security Tips.

A collection of response templates for invalid bug bounty reports.

Jasper - A flexible and powerful issue reader for GitHub

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

Subdomain Takeover tool written in Go

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

All-in-one tool for managing vulnerability reports from AppSec pipelines

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Exploitation Framework for Embedded Devices

👨🏽‍🏫You can learn about anything over here. What Giveaways I do and why it's important in today's modern world. Are you interested in Giveaway's?🔋

GitBook: OSCP RoadMap

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Python Ransomware Tutorial - YouTube tutorial explaining code + showcasing the ransomware with victim/target roles

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Opensource FinTech standards & payment provider data

A curated list of awesome social engineering resources.

Common password pattern generator using strings list

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

MagTape Policy-as-Code for Kubernetes

The Swiss Army knife for automated Web Application Testing

Atom linter plugin for JavaScript, using JavaScript Standard Style

Streams Standard

VirusTotal Wanna Be - Now with 100% more Hipster

This repository is used for maintaining the SDMX RESTful web services specification.

An issue tracking tool based on laravel+reactjs for small and medium-sized enterprises, open-source and free, similar to Jira.

Your Everyday Threat Intelligence

ESLint Shareable Config for JSX support in JavaScript Standard Style

Simple Authorization via PHP Classes

Scan for open AWS S3 buckets and dump the contents

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

VS Code extension for JavaScript Standard Style (`standard`) with automatic fixing

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

FreeRADIUS - A multi-protocol policy server.

Policy information for BC Government employees using GitHub

rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.