SecLists by danielmiessler

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

created at Feb. 19, 2012, 1:30 a.m.

1,914 -2

58,557 +164

23,921 +9

swot by leereilly

Identify email addresses or domains names that belong to colleges or universities. Help automate the process of approving or rejecting academic discounts.

created at Jan. 31, 2012, 4 a.m.

32 +1

1,127 +1

23,231 +170

sherlock by sherlock-project

Hunt down social media accounts by username across social networks

created at Dec. 24, 2018, 2:30 p.m.

1,129 +0

60,440 +179

6,954 +23

og-aws by open-guides

📙 Amazon Web Services — a practical guide

created at July 13, 2016, 5:30 p.m.

1,209 +1

35,741 +16

3,882 +1

phoneinfoga by sundowndev

Information gathering framework for phone numbers

created at Oct. 25, 2018, 9:19 a.m.

675 +0

13,160 +49

3,689 +16

spiderfoot by smicallef

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

created at April 28, 2012, 7:10 a.m.

366 +0

13,151 +80

2,278 +7

hosts by StevenBlack

🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

created at April 12, 2012, 8:22 p.m.

576 +1

26,917 +38

2,234 +5

google-cloud-4-words by priyankavergadia

The Google Cloud Developer's Cheat Sheet

created at Nov. 27, 2018, 7:07 p.m.

495 +1

7,976 +5

1,849 +1

trufflehog by trufflesecurity

Find, verify, and analyze leaked credentials

created at Dec. 31, 2016, 5:08 a.m.

175 +0

17,256 +178

1,711 +6

casbin by casbin

An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN

created at April 8, 2017, 7:51 a.m.

238 +0

17,809 +32

1,650 +5

gephi by gephi

Gephi - The Open Graph Viz Platform

created at Oct. 22, 2011, 3:14 a.m.

260 +0

5,932 +12

1,571 +0

awesome-threat-intelligence by hslatman

A curated list of Awesome Threat Intelligence resources

created at Dec. 21, 2015, 11:31 a.m.

563 +1

8,105 +29

1,486 -1

gitleaks by gitleaks

Protect and discover secrets using Gitleaks 🔑

created at Jan. 27, 2018, 6:19 p.m.

163 +0

17,953 +114

1,469 +6

opa by open-policy-agent

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

created at Dec. 28, 2015, 10:08 p.m.

128 -1

9,712 +35

1,346 +3

casdoor by casdoor

An open-source UI-first Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, RADIUS, Google Workspace, Active Directory and Kerberos

created at Oct. 22, 2020, 2:40 p.m.

72 +1

10,204 +57

1,203 +4

YubiKey-Guide by drduh

Guide to using YubiKey for GnuPG and SSH

created at Feb. 1, 2016, 1:56 a.m.

219 +0

11,198 +11

1,188 +1

authelia by authelia

The Single Sign-On Multi-Factor portal for web apps

created at Dec. 7, 2016, 12:56 a.m.

166 +1

21,750 +80

1,129 +2

cfssl by cloudflare

CFSSL: Cloudflare's PKI and TLS toolkit

created at July 7, 2014, 11:49 p.m.

215 +0

8,766 +13

1,112 +1

infisical by Infisical

♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI

created at Aug. 5, 2022, 1:50 p.m.

46 +0

15,657 +54

973 +8

kratos by ory

The most scalable and customizable identity server on the market. Replace your Homegrown, Auth0, Okta, Firebase with better UX and DX. Has all the tablestakes: Passkeys, Social Sign In, Multi-Factor Auth, SMS, SAML, TOTP, and more. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters.

created at May 29, 2018, 4:09 p.m.

112 +0

11,293 +26

963 -2