the LLM vulnerability scanner

Taranis AI is an advanced Open-Source Intelligence (OSINT) tool, leveraging Artificial Intelligence to revolutionize information gathering and situational analysis.

Sloc, Cloc and Code: scc is a very fast accurate code counter with complexity calculations and COCOMO estimates written in pure Go

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP…

The core repository for the Maester module with helper cmdlets that will be called from the Pester tests.

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

Attack Surface Management Platform

All-in-one LLM CLI tool featuring Shell Assistant, Chat-REPL, RAG, AI tools & agents, with access to OpenAI, Claude, Gemini, Ollama, Groq, and more.

An extension for using Cursor in Visual Studio Code.

In-depth attack surface mapping and asset discovery

Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

The most exhaustive list of reliable DNS resolvers.

Open Cyber Threat Intelligence Platform

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics…

AIL framework - Analysis Information Leak framework

the transparent ransomware claim tracker 🥷🏼🧅🖥️

Yet another Ransomware gang tracker

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelistin…

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

completely ridiculous API (crAPI)

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Open DMARC Analyzer is an Open Source DMARC Report Analyzer to be used with DMARC reports that have been parsed by John Levine's rrdmarc script or techsneeze's dmarcts-report-parser.

🕵️‍♂️ All-in-one OSINT tool for analysing any website

The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains and brands.

CVE cache of the official CVE List in CVE JSON 5 format

Advanced vulnerability scanning with Nmap NSE