UNIX-like reverse engineering framework and command-line toolset

🕵️‍♂️ All-in-one OSINT tool for analysing any website

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

A collection of awesome penetration testing resources, tools and other shiny things

A collection of awesome .NET libraries, tools, frameworks and software

Checklist of the most important security countermeasures when designing, testing, and releasing your API

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

ALL IN ONE Hacking Tool For Hackers

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

This project is aimed at freely providing technical guides on various hacking topics.

Sticky notes for pentesting, bug bounty, CTF.

Hardware/IOT Pentesting Wiki

Active Directory and Internal Pentest Cheatsheets

HHousen's writeups to various HackTheBox machines and challenges from https://hackthebox.com.

A tool for parsing breached passwords

Greenshot for Windows - Report bugs & features go here: https://greenshot.atlassian.net or look for information on:

An open source Bitcoin wallet password and seed recovery tool designed for the case where you already know most of your password/seed, but need assistance in trying different possible combinations.

Open Source Identity and Access Management For Modern Applications and Services

⭐ A ready-to-go advanced multilingual HaxBall bot using Headless API!

Linux Runtime Security and Forensics using eBPF

Most advanced XSS scanner.

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing

A vulnerability scanner for container images and filesystems

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clu…

♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI

Blazor Component Library based on Material design with an emphasis on ease of use. Mainly written in C# with Javascript kept to a bare minimum it empowers .NET developers to easily debug it if needed.

Metlo is an open-source API security platform.