PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
lunasec-io/lunasec350日前1.4k
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
juliomrqz/statusfy356日前2.7k
A Marvelous Open Source Status Page System
QuivrHQ/quivr347日前28.0k
Your GenAI Second Brain 🧠 A personal productivity assistant (RAG) ⚡️🤖 Chat with your docs (PDF, CSV, ...) & apps using Langchain, GPT 3.5 / 4 turbo, Private, Anthropic, VertexAI, Ollama, LLMs, that you can share with users ! Local & Private alternative to OpenAI GPTs & ChatGPT powered by retrieval-augmented generation.
getsops/sops347日前14.7k
Simple and flexible tool for managing secrets
prowler-cloud/prowler347日前9.2k
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
radareorg/radare2347日前19.3k
UNIX-like reverse engineering framework and command-line toolset
iamadamdev/bypass-paywalls-chrome347日前45.4k
Bypass Paywalls web browser extension for Chrome and Firefox.
moonD4rk/HackBrowserData347日前9.6k
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
sherlock-project/sherlock347日前46.8k
🔎 Hunt down social media accounts by username across social networks
chubin/cheat.sh347日前37.0k
the only cheat sheet you need
facebook/pyre-check347日前6.6k
Performant type-checking for python.
ajinabraham/nodejsscan349日前2.3k
nodejsscan is a static security code scanner for Node.js applications.
crev-dev/cargo-crev347日前2.0k
A cryptographically verifiable code review system for the cargo (Rust) package manager.
bit4woo/python_sec351日前1.3k
python安全和代码审计相关资料收集 resource collection of python security and code review
x64dbg/x64dbg347日前42.7k
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
monero-project/monero347日前8.4k
Monero: the secure, private, untraceable cryptocurrency
getmango/Mango348日前1.6k
Mango is a self-hosted manga server and web reader
carlospolop/PEASS-ng347日前14.3k
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Developer-Y/cs-video-courses347日前63.4k
List of Computer Science courses with video lectures.
tldr-pages/tldr347日前47.5k
📚 Collaborative cheatsheets for console commands
firezone/firezone347日前6.0k
WireGuard®-based zero trust access platform that supports OIDC authentication, user/group sync, and requires zero firewall configuration.
unicorn-engine/unicorn347日前7.0k
Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, TriCore, X86)
OpenZeppelin/openzeppelin-contracts347日前23.7k
OpenZeppelin Contracts is a library for secure smart contract development.
Consensys/smart-contract-best-practices348日前7.2k
A guide to smart contract security best practices
capstone-engine/capstone347日前6.9k
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), BPF, Ethereum VM, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.
payloadcms/payload347日前17.6k
The best way to build a modern backend + admin UI. No black magic, all TypeScript, and fully open-source, Payload is both an app framework and a headless CMS.
arkenfox/user.js347日前8.8k
Firefox privacy, security and anti-tracking: a comprehensive user.js template for configuration and hardening
jofpin/trape348日前7.8k
People tracker on the Internet: OSINT analysis and research tool by Jose Pino
michenriksen/gitrob347日前5.8k
Reconnaissance tool for GitHub organizations
eth0izzle/shhgit351日前3.8k
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
caddyserver/caddy347日前52.3k
Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
nisrulz/android-tips-tricks348日前4.7k
:ballot_box_with_check: [Cheatsheet] Tips and tricks for Android Development
simplex-chat/simplex-chat347日前5.0k
SimpleX - the first messaging platform operating without user identifiers of any kind - 100% private by design! iOS, Android and desktop apps 📱!
simonmichael/hledger347日前2.7k
Robust, fast, intuitive plain text accounting tool with CLI, TUI and web interfaces.
hjdhjd/homebridge-unifi-protect347日前1.3k
:video_camera: Complete HomeKit integration for all UniFi Protect device types with full support for most features including HomeKit Secure Video, and more. https://homebridge.io
mitmproxy/mitmproxy346日前33.6k
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Peergos/Peergos347日前1.8k
A p2p, secure file storage, social network and application protocol
animir/node-rate-limiter-flexible347日前2.8k
Atomic counters and rate limiting tools. Limit resource access at any scale.
Z4nzu/hackingtool346日前42.0k
ALL IN ONE Hacking Tool For Hackers
matomo-org/matomo346日前18.8k
Liberating Web Analytics. Star us on Github? +1. Matomo is the leading open alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. We love Pull Requests!
jedisct1/piknik355日前2.4k
Copy/paste anything over the network.
trimstray/nginx-admins-handbook346日前13.3k
How to improve NGINX performance, security, and other important things.
LazoCoder/Windows-Hacks347日前2.4k
Creative and unusual things that can be done with the Windows API.
JFreegman/toxic353日前1.1k
A Tox-based instant messaging and video chat client
authorizerdev/authorizer346日前1.3k
Your data, your control. Fully open source, authentication and authorization. No lock-ins. Deployment in Railway in 120 seconds || Spin a docker image as a micro-service in your infra. Built in login page and Admin panel out of the box.
ImranR98/Obtainium346日前4.2k
Get Android App Updates Directly From the Source.
yokoffing/Betterfox346日前3.2k
Firefox user.js for speed, privacy, and security. Your favorite browser, but better.
build-trust/ockam346日前4.3k
Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.
nmap/nmap346日前8.9k
Nmap - the Network Mapper. Github mirror of official SVN repository.
osquery/osquery347日前20.9k
SQL powered operating system instrumentation, monitoring, and analytics.
cilium/cilium346日前17.9k
eBPF-based Networking, Security, and Observability
bettercap/bettercap346日前15.4k
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
TryGhost/Ghost346日前45.2k
Independent technology for modern publishing, memberships, subscriptions and newsletters.
linkedin/school-of-sre346日前7.6k
At LinkedIn, we are using this curriculum for onboarding our entry-level talents into the SRE role.
jaywcjlove/reference346日前8.8k
为开发人员分享快速参考备忘清单(速查表)
pirate/wireguard-docs346日前4.3k
📖 Unofficial WireGuard Documentation: Setup, Usage, Configuration, and full example setups for VPNs supporting both servers & roaming clients.
GyulyVGC/sniffnet346日前12.9k
Application to comfortably monitor your Internet traffic 🕵️♂️
RustScan/RustScan346日前11.7k
🤖 The Modern Port Scanner 🤖
evilsocket/opensnitch346日前9.4k
OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
gravitl/netmaker346日前8.7k
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
jopohl/urh346日前10.2k
Universal Radio Hacker: Investigate Wireless Protocols Like A Boss
writefreely/writefreely346日前4.0k
A clean, Markdown-based publishing platform made for writers. Write together and build a community.
donnemartin/system-design-primer346日前246.8k
Learn how to design large-scale systems. Prep for the system design interview. Includes Anki flashcards.
FavioVazquez/ds-cheatsheets347日前12.6k
List of Data Science Cheatsheets to rule the world
presidentbeef/brakeman346日前6.9k
A static analysis security vulnerability scanner for Ruby on Rails applications
hwdsl2/setup-ipsec-vpn346日前23.6k
Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2
trailofbits/algo346日前28.1k
Set up a personal VPN in the cloud
digitalocean/nginxconfig.io346日前26.8k
⚙️ NGINX config generator on steroids 💉
OWASP/CheatSheetSeries346日前25.8k
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
StevenBlack/hosts346日前24.8k
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
shieldfy/API-Security-Checklist346日前21.8k
Checklist of the most important security countermeasures when designing, testing, and releasing your API
aquasecurity/trivy346日前20.5k
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
imthenachoman/How-To-Secure-A-Linux-Server346日前16.5k
An evolving how-to guide for securing a Linux server.
ory/hydra346日前14.9k
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
aquasecurity/tfsec346日前6.5k
Security scanner for your Terraform code
turbot/steampipe346日前6.2k
Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
chaifeng/ufw-docker346日前3.7k
To fix the Docker and UFW security flaw without disabling iptables
toolswatch/blackhat-arsenal-tools348日前3.7k
Official Black Hat Arsenal Security Tools Repository
ulisesbocchio/jasypt-spring-boot352日前2.7k
Jasypt integration for Spring boot
wpscanteam/wpscan347日前8.1k
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
webhintio/hint346日前3.6k
💡 A hinting engine for the web
szTheory/exifcleaner347日前1.6k
Cross-platform desktop GUI app to clean image metadata
nexxtway/react-rainbow348日前1.8k
🌈 React Rainbow Components. Build your web application in a snap.
walidshaari/Certified-Kubernetes-Security-Specialist346日前1.9k
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
Hacker0x01/hacker101346日前13.3k
Source code for Hacker101.com - a free online web and mobile security class.
javascript-obfuscator/javascript-obfuscator345日前12.4k
A powerful obfuscator for JavaScript and Node.js
delight-im/Android-AdvancedWebView349日前2.4k
Enhanced WebView component for Android that works as intended out of the box
yeahhub/Hacking-Security-Ebooks345日前4.8k
Top 100 Hacking & Security E-Books (Free Download)
DrkSephy/es6-cheatsheet346日前13.4k
ES2015 [ES6] cheatsheet containing tips, tricks, best practices and code snippets
1j01/jspaint345日前7.0k
🎨 Classic MS Paint, REVIVED + ✨Extras
nosqlclient/nosqlclient362日前3.5k
Cross-platform and self hosted, easy to use, intuitive mongodb management tool - Formerly Mongoclient
winsiderss/systeminformer345日前10.0k
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
OWASP/wstg345日前6.4k
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
upgundecha/howtheysre345日前8.8k
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)
jeremylong/DependencyCheck345日前5.7k
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
google/tamperchrome347日前4.1k
Tamper Dev is an extension that allows you to intercept and edit HTTP/HTTPS requests and responses as they happen without the need of a proxy. Works across all operating systems (including Chrome OS).
FISCO-BCOS/FISCO-BCOS352日前2.3k
FISCO BCOS(发音为/ˈfɪskl bi:ˈkɒz/)是一个稳定、高效、安全的许可区块链平台,已被广泛应用于现实的行业应用。截至目前,已拥有4000多家企事业单位,300多个行业数字标杆应用,涵盖文化版权、司法服务、政府服务、物联网、金融、智慧社区、房地产建设、社区治理、乡村振兴等领域。FISCO BCOS (pronounced /ˈfɪskl bi:ˈkɒz/) is a stable, efficient, and secure permissioned blockchain platform that has been widely used in real-world industry applications.
screetsec/TheFatRat346日前8.7k
Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection .
theupdateframework/python-tuf358日前1.6k
Python reference implementation of The Update Framework (TUF)
infobyte/evilgrade348日前1.2k
Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.
jhuangtw/xg2xg346日前13.7k
by ex-googlers, for ex-googlers - a lookup table of similar tech & services
infobyte/faraday345日前4.5k
Open Source Vulnerability Management Platform