535 Open source projects that are alternatives of or similar to Security Txt

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

Scrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product

Subdomain Takeover tool written in Go

[Abandoned] Web Git client using full stack Symfony2 with SSH/SFTP support

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

Specifications used in the MISP project including MISP core format

All-in-one tool for managing vulnerability reports from AppSec pipelines

Pretty, responsive and smooth defaults for a sane ALE, gets you started in 30 seconds

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

🔥 A powerful MongoDB auditing and pentesting tool 🔥

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Exploitation Framework for Embedded Devices

Natural Collections Descriptions (NCD)

👨🏽‍🏫You can learn about anything over here. What Giveaways I do and why it's important in today's modern world. Are you interested in Giveaway's?🔋

Archive of prior TDWG standards

GitBook: OSCP RoadMap

RFC document, tooling and other content related to the array API standard

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

A default credential scanner.

Python Ransomware Tutorial - YouTube tutorial explaining code + showcasing the ransomware with victim/target roles

Policy Object Pattern

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Binary AST proposal for ECMAScript

Opensource FinTech standards & payment provider data

Collaborative development on GitHub's site policies, procedures, and guidelines

A curated list of awesome social engineering resources.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Common password pattern generator using strings list

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

building a chinese dialogue system based on the newest version of rasa(基于最新版本rasa搭建的对话系统)

MagTape Policy-as-Code for Kubernetes

A collection of various GitHub gists for hackers, pentesters and security researchers

The Swiss Army knife for automated Web Application Testing

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

Atom linter plugin for JavaScript, using JavaScript Standard Style

Multi Tool Subdomain Enumeration

Streams Standard

Web path scanner

VirusTotal Wanna Be - Now with 100% more Hipster

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

This repository is used for maintaining the SDMX RESTful web services specification.

Which is the fastest web framework?

An issue tracking tool based on laravel+reactjs for small and medium-sized enterprises, open-source and free, similar to Jira.

Git-based decentralized issue management

Your Everyday Threat Intelligence

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

ESLint Shareable Config for JSX support in JavaScript Standard Style

A big list of Android Hackerone disclosed reports and other resources.

Simple Authorization via PHP Classes

Most usable tools for iOS penetration testing

Scan for open AWS S3 buckets and dump the contents

基于gitbook构建团队项目开发规范文档，期待你的提议☆⌒(*＾-゜)v THX!!

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

FreeRADIUS - A multi-protocol policy server.

Policy information for BC Government employees using GitHub

rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555