SecLists by danielmiessler

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

updated at Nov. 17, 2024, 2:17 p.m.

1,914 -2

58,557 +164

23,921 +9

infisical by Infisical

♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI

updated at Nov. 17, 2024, 2:15 p.m.

46 +0

15,657 +54

973 +8

authelia by authelia

The Single Sign-On Multi-Factor portal for web apps

updated at Nov. 17, 2024, 2:13 p.m.

166 +1

21,750 +80

1,129 +2

casbin by casbin

An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN

updated at Nov. 17, 2024, 2:12 p.m.

238 +0

17,809 +32

1,650 +5

hosts by StevenBlack

🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

updated at Nov. 17, 2024, 2:09 p.m.

576 +1

26,917 +38

2,234 +5

sherlock by sherlock-project

Hunt down social media accounts by username across social networks

updated at Nov. 17, 2024, 2:01 p.m.

1,129 +0

60,440 +179

6,954 +23

spiderfoot by smicallef

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

updated at Nov. 17, 2024, 1:52 p.m.

366 +0

13,151 +80

2,278 +7

casdoor by casdoor

An open-source UI-first Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, RADIUS, Google Workspace, Active Directory and Kerberos

updated at Nov. 17, 2024, 1:31 p.m.

72 +1

10,204 +57

1,203 +4

supertokens-core by supertokens

Open source alternative to Auth0 / Firebase Auth / AWS Cognito

updated at Nov. 17, 2024, 1:20 p.m.

66 +0

13,157 +38

522 +1

kratos by ory

The most scalable and customizable identity server on the market. Replace your Homegrown, Auth0, Okta, Firebase with better UX and DX. Has all the tablestakes: Passkeys, Social Sign In, Multi-Factor Auth, SMS, SAML, TOTP, and more. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters.

updated at Nov. 17, 2024, 12:49 p.m.

112 +0

11,293 +26

963 -2

cfssl by cloudflare

CFSSL: Cloudflare's PKI and TLS toolkit

updated at Nov. 17, 2024, 12:26 p.m.

215 +0

8,766 +13

1,112 +1

logto by logto-io

🧑‍🚀 The better identity infrastructure for developers and the open-source alternative to Auth0.

updated at Nov. 17, 2024, 12:23 p.m.

47 +0

8,779 +49

441 +3

kanidm by kanidm

Kanidm: A simple, secure, and fast identity management platform

updated at Nov. 17, 2024, 12:13 p.m.

22 +1

2,761 +16

184 -1

zitadel by zitadel

ZITADEL - Identity infrastructure, simplified for you.

updated at Nov. 17, 2024, 12:11 p.m.

46 +1

8,998 +73

573 +8

opal by authorizon

Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)

updated at Nov. 17, 2024, 11:45 a.m.

30 +0

5,126 +212

177 +1

YubiKey-Guide by drduh

Guide to using YubiKey for GnuPG and SSH

updated at Nov. 17, 2024, 11:29 a.m.

219 +0

11,198 +11

1,188 +1

pomerium by pomerium

Pomerium is an identity and context-aware access proxy.

updated at Nov. 17, 2024, 8:38 a.m.

39 +2

4,054 +7

284 +0

phoneinfoga by sundowndev

Information gathering framework for phone numbers

updated at Nov. 17, 2024, 8:12 a.m.

675 +0

13,160 +49

3,689 +16

List-of-Dirty-Naughty-Obscene-and-Otherwise-Bad-Words by LDNOOBW

List of Dirty, Naughty, Obscene, and Otherwise Bad Words

updated at Nov. 17, 2024, 7:26 a.m.

73 +0

2,937 +1

666 +0

presidio by Microsoft

Context aware, pluggable and customizable data protection and de-identification SDK for text and images

updated at Nov. 17, 2024, 4:55 a.m.

71 +1

3,831 +36

575 +4