SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

Main Sigma Rule Repository

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Create randomly insecure VMs

The best CLI client for Slack, because everything is terrible!

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Bluetooth Low Energy Swiss-army knife

Analyze the security of any domain by finding all the information possible. Made in python.

ElastAlert 2 is a continuation of the original yelp/elastalert project. Pull requests are appreciated!

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

simple script to extract all web resources by means of .SVN folder exposed over network.

A tool for batch loading data files (json, parquet, csv, tsv) into ElasticSearch

Python library to simplify access to Bluetooth low energy devices and services on Linux (using bluez) and Mac OSX.

Intentionally Vulnerable Serverless Functions to understand the specifics of Serverless Security Vulnerabilities

A monitoring tool for certificate transparency of ProtonMail's SSL/TLS certificates

Certificate Store Monitor based off of a concept by Steve Gibson of GRC.