PayloadsAllTheThings by swisskyrepo

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

updated at June 9, 2024, 10:47 a.m.

1,808 +2

57,591 +107

14,065 +27

awesome-censys-queries by thehappydinoa

A collection of fascinating and bizarre Censys Search Queries

updated at June 9, 2024, 10:46 a.m.

18 +0

754 +24

85 +0

awesome-security-hardening by decalage2

A collection of awesome security hardening guides, tools and other resources

updated at June 9, 2024, 10:41 a.m.

133 +0

5,065 +25

551 +1

wazuh by wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

updated at June 9, 2024, 10:38 a.m.

212 +0

9,481 +48

1,501 +9

awesome-sysadmin by awesome-foss

A curated list of amazingly awesome open-source sysadmin resources.

updated at June 9, 2024, 10:28 a.m.

595 +4

23,275 +112

1,357 +0

personal-security-checklist by Lissy93

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

updated at June 9, 2024, 10:27 a.m.

210 +2

16,030 +47

1,115 +2

cicd-goat by cider-security-research

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

updated at June 9, 2024, 10:22 a.m.

29 +0

1,846 +8

276 +1

fingerprintjs by fingerprintjs

Browser fingerprinting library. Accuracy of this version is 40-60%, accuracy of the commercial Fingerprint Identification is 99.5%. V4 of this library is BSL licensed.

updated at June 9, 2024, 9:37 a.m.

418 +1

21,188 +45

2,202 +1

bunkerweb by bunkerity

🛡️ Make your web services secure by default !

updated at June 9, 2024, 9:32 a.m.

46 +0

3,622 +20

231 -1

owasp-mastg by OWASP

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

updated at June 9, 2024, 9:15 a.m.

435 +1

11,373 +18

2,249 +6

sops by getsops

Simple and flexible tool for managing secrets

updated at June 9, 2024, 8:18 a.m.

117 +1

15,402 +38

833 +6

teller by tellerops

Cloud native secrets management for developers - never leave your command line for secrets.

updated at June 9, 2024, 7:46 a.m.

28 +0

2,579 +6

170 +2

axiom by pry0cc

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

updated at June 9, 2024, 7:26 a.m.

88 +0

3,884 +15

610 +4

awesome-cyber-skills by joe-shenouda

A curated list of hacking environments where you can train your cyber skills legally and safely

updated at June 9, 2024, 6:30 a.m.

192 +0

3,428 +6

464 +0

trivy by aquasecurity

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

updated at June 9, 2024, 6:24 a.m.

170 +1

21,796 +75

2,145 +4

jadx by skylot

Dex to Java decompiler

updated at June 9, 2024, 6:22 a.m.

819 +1

39,699 +66

4,691 +7

quark-engine by quark-engine

Dig Vulnerabilities in the BlackBox

updated at June 9, 2024, 6:22 a.m.

41 +0

1,240 +3

163 +0

lunasec by lunasec-io

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

updated at June 9, 2024, 6:22 a.m.

30 +0

1,415 +1

162 +0

awesome-shodan-queries by jakejarvis

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

updated at June 9, 2024, 5:57 a.m.

166 +1

5,168 +24

811 +1

google-authenticator by google

Open source version of Google Authenticator (except the Android app)

updated at June 9, 2024, 5:40 a.m.

362 +0

5,158 +7

962 +1