1051 Open source projects that are alternatives of or similar to tutorials

Some good resources for getting started with application security

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

OWASP Honeypot, Automated Deception Framework.

Awesome Node.js Security resources

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

A toolkit for Security Researchers

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

Monitoring GitHub for sensitive data shared publicly

Git All the Payloads! A collection of web attack payloads.

Web Application Secure Coding Handbook resource.

Documentation for Essential Node.js Security

A collection of awesome security hardening guides, tools and other resources

Vulnerability Dashboard

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

Bringing you the best of the worst files on the Internet.

PyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>

Monitoring your Slack workspaces for sensitive information

OWASP Zed Attack Proxy project landing page.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Backend logic implementation for Vulnerability Management System

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

OWASP Code Review Guide Web Repository

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

An advanced tool for email reconnaissance

We propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).

WebMap-Nmap Web Dashboard and Reporting

VirusTotal Wanna Be - Now with 100% more Hipster

Responsive Command and Control System

An ongoing list of virtual cybersecurity conferences.

🎯 XML External Entity (XXE) Injection Payload List

Wireshark Cheat Sheet

Monitoring GitLab for sensitive data shared publicly

🔐 Docker Container for Penetration Testing & Security

internet monitoring osint telegram bot for windows

Integrates OWASP Zed Attack Proxy reports into SonarQube

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Next generation web scanner

Application Security Awareness Training

Integrates Dependency-Check reports into SonarQube

The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.

OWASP ZAP Add-ons

The OWASP ZAP core project

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

The OWASP ZAP Heads Up Display (HUD)

A collection of some of my scripts

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

In my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them

OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site

This repository contains links to awesome security articles.

Leaked pentesting manuals given to Conti ransomware crooks