Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
awesome-stars
My Awesome List
https://github.com/silentEAG/awesome-stars
Last synced: 4 days ago
JSON representation
-
Assembly
- briansmith/ring - Safe, fast, small crypto using Rust
- f1zm0/acheron - indirect syscalls for AV/EDR evasion in Go assembly
- klezVirus/inceptor - Template-Driven AV/EDR Evasion Framework
- Nu1LCTF/n1ctf-2023
- pkivolowitz/asm_book - A book teaching assembly language programming on the ARM 64 bit ISA. Along the way, good programming practices and insights into code development are offered which apply directly to higher level langu
- mikeroyal/RISC-V-Guide - RISC-V Guide. Learn all about the RISC-V computer architecture along with the Development Tools and Operating Systems to develop on RISC-V hardware.
-
Batchfile
- vovkos/llvm-package-windows - Provides LLVM binary packages for an (almost) complete Windows build matrix. Built and packaged on GitHub Actions.
-
C
- pathtofile/bad-bpf - A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
- winsiderss/systeminformer - A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.co
- frog-game/lua-5.4.4-comments - lua-5.4.4-每行都加注释版本
- trustedsec/CS-Situational-Awareness-BOF - Situational Awareness commands implemented using Beacon Object Files
- hfiref0x/UACME - Defeating Windows User Account Control
- shellphish/how2heap - A repository for learning various heap exploitation techniques.
- ybdt/evasion-hub - 免杀、逆向、破解
- trustedsec/CS-Remote-OPs-BOF
- sandboxie-plus/Sandboxie - Sandboxie Plus & Classic
- Cracked5pider/Stardust - A modern 64-bit position independent implant template
- RtlDallas/OdinLdr - Cobaltstrike UDRL with memory evasion
- bellard/quickjs - Public repository of the QuickJS Javascript Engine.
- CCob/BOF.NET - A .NET Runtime for Cobalt Strike's Beacon Object Files
- openwall/john - John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
- SolomonSklash/SleepyCrypt - A shellcode function to encrypt a running process image when sleeping.
- Tw1sm/SQL-BOF - Library of BOFs to interact with SQL servers
- ARM-software/arm-trusted-firmware - Read-only mirror of Trusted Firmware-A
- realoriginal/grimreaper - A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
- Velocidex/Linpmem - Linpmem is a linux memory acquisition tool
- VirtualAlllocEx/Direct-Syscalls-vs-Indirect-Syscalls - The following two code samples can be used to understand the difference between direct syscalls and indirect syscalls
- debauchee/barrier - Open-source KVM software
- jerryscript-project/jerryscript - Ultra-lightweight JavaScript engine for the Internet of Things.
- WKL-Sec/HiddenDesktop - HVNC for Cobalt Strike
- 0xcpu/WinAltSyscallHandler - Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
- JuliaPoo/Artfuscator - A C compiler targeting an artistically pleasing nightmare for reverse engineers
- helloexp/0day - 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
- gloxec/CrossC2 - generate CobaltStrike's cross-platform payload
- BUPT-OS/RROS - RROS is a dual-kernel OS for satellites or other scenarios that need both real-time and general-purpose abilities. RROS = RTOS (Rust) + Linux (C).
- trustedsec/COFFLoader
- RalfHacker/Kerbeus-BOF - BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
- itm4n/PrintSpoofer - Abusing impersonation privileges through the "Printer Bug"
- radareorg/radare2 - UNIX-like reverse engineering framework and command-line toolset
- mstorsjo/llvm-mingw - An LLVM/Clang/LLD based mingw-w64 toolchain
- leesh3288/CVE-2023-4911 - PoC for CVE-2023-4911
- lem0nSec/ShellGhost - A memory-based evasion technique which makes shellcode invisible from process start to end.
- DavadDi/bpf_study - bpf 学习仓库
- tsl0922/ttyd - Share your terminal over the web
- i0gan/pwn_waf - This is a simple network firewall for pwn challenges of ctf awd competition, light and simple code.There is no dependence, the log format is clear with the hexadecimal payload string and original stri
- yasukata/zpoline - system call hook for Linux
- nbs-system/naxsi - NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
- 4ra1n/java-gate - Java JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders
- xkaneiki/CVE-2023-0386 - CVE-2023-0386在ubuntu22.04上的提权
- Kiprey/Skr_Learning - 天问之路 - 学习笔记&学习周报。内容包括但不限于C++ STL、编译原理、LLVM IR Pass代码优化、CSAPP Lab、uCore操作系统等等。
- Avienma/DumpHash - 一款dump hash工具配合后渗透的利用
- REDMED-X/OperatorsKit - Collection of Beacon Object Files (BOF) for Cobalt Strike
- lz4/lz4 - Extremely Fast Compression algorithm
- gentilkiwi/mimikatz - A little tool to play with Windows security
- haad/proxychains - proxychains - a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" for
- skywind3000/kcp - :zap: KCP - A Fast and Reliable ARQ Protocol
- kingToolbox/WindTerm - A professional cross-platform SSH/Sftp/Shell/Telnet/Serial terminal.
- NJU-ProjectN/nemu - NJU EMUlator, a full system x86/mips32/riscv32/riscv64 emulator for teaching
- mit-pdos/xv6-riscv - Xv6 for RISC-V
- SPuerBRead/shovel - Docker容器逃逸工具(Docker Escape Tools)
- kangjianwei/Data-Structure - 《数据结构》-严蔚敏.吴伟民-教材源码与习题解析
- oldboy21/RflDllOb - Reflective DLL Injection Made Bella
- MmMapIoSpace/UCMapper - Unknowncheats Magically Optimized Tidy Mapper using nvaudio
- WKL-Sec/LayeredSyscall - Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR hooks in Windows.
- OtterHacker/Conferences
- TheWover/donut - Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
- Dump-GUY/EXE-or-DLL-or-ShellCode - Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...
- RubyMetric/chsrc - chsrc 全平台通用换源工具与框架. Change Source everywhere for every software
- Cracked5pider/kaine-assembly - a demo module for the kaine agent to execute and inject assembly modules
- P001water/yuze - A socksv5 proxy tool Written by CLang. 一款纯C实现的基于socks5协议的轻量内网穿透工具,支持ew的全部数据转发方式,支持跨平台使用
- 4ra1n/code-encryptor - 该项目已集成到 https://github.com/jar-analyzer/jar-obfuscator 使用JNI加密字节码,通过JVMTI解密字节码以保护代码,支持自定义包名和密钥,使用魔法禁止黑客dump字节码
- telekom-security/tpotce - 🍯 T-Pot - The All In One Multi Honeypot Platform 🐝
- Ascotbe/Kernelhub - :palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
-
C# #
- fiddyschmitt/File-Tunnel - Tunnel TCP connections through a file
- robertaachenw/solidity-debugger
- Flow-Launcher/Flow.Launcher - :mag: Quick file search & app launcher for Windows with community-made plugins
- QAX-A-Team/BrowserGhost - 这是一个抓取浏览器密码的工具,后续会添加更多功能
- bitsadmin/nopowershell - PowerShell rebuilt in C# for Red Teaming purposes
- qwqdanchun/Pillager - Pillager是一个适用于后渗透期间的信息收集工具
- NYAN-x-CAT/AsyncRAT-C-Sharp - Open-Source Remote Administration Tool For Windows C# (RAT)
- Dec0ne/KrbRelayUp - KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
- DragoQCC/HardHatC2 - A C# Command & Control framework
- 0xd4d/dnlib - Reads and writes .NET assemblies and modules
- AvaloniaUI/Avalonia - Develop Desktop, Embedded, Mobile and WebAssembly apps with C# and XAML. The most popular .NET UI client technology
- pwntester/ysoserial.net - Deserialization payload generator for a variety of .NET formatters
- dotnet/maui - .NET MAUI is the .NET Multi-platform App UI, a framework for building native device applications spanning mobile, tablet, and desktop.
- Kinnara/ModernWpf - Modern styles and controls for your WPF applications
- peass-ng/PEASS-ng - PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
- med0x2e/SigFlip - SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.
- GhostPack/Rubeus - Trying to tame the three-headed dog.
- 1y0n/AV_Evasion_Tool - 掩日 - 免杀执行器生成工具
- daem0nc0re/PrivFu - Kernel mode WinDbg extension and PoCs for token privilege investigation.
- StarfireLab/SharpWeb - 一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。
- BeichenDream/BadPotato - Windows 权限提升 BadPotato
-
C++
- hasherezade/tiny_tracer - A Pin Tool for tracing API calls etc
- deepinstinct/ContainYourself - A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
- hasherezade/pe-sieve - Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
- ZanderChang/anti-sandbox - Windows对抗沙箱和虚拟机的方法总结
- 0xlane/ollvm-rust - out-of-tree llvm obfuscation pass plugin (dynamically loadable by rustc). || rust toolchain with obfuscation llvm pass.
- Cloaked9000/ElfLoader - An ELF loader capable of manually loading ELF executables directly from memory into a new process, without the use of exec.
- Neo-Maoku/SearchAvailableExe - 寻找可利用的白文件
- myzxcg/RealBlindingEDR - Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
- HackOvert/AntiDBG - A bunch of Windows anti-debugging tricks for x86 and x64.
- LordNoteworthy/al-khaser - Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
- moudey/Shell - Powerful context menu manager for Windows File Explorer
- es3n1n/obfuscator - PE bin2bin obfuscator
- h311d1n3r/Cerberus - A C++ tool to unstrip Rust/Go binaries (ELF and PE)
- jmpoep/vmprotect-3.5.1
- open-obfuscator/o-mvll - :electron: O-MVLL is a LLVM-based obfuscator for native code (Android & iOS)
- jackullrich/ShellcodeStdio - An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.
- DreamSoule/ollvm17 - Obfuscation LLVM 17
- SecurityAnalysts01/ShellcodeLoader - Windows通用免杀shellcode生成器,能够绕过Microsoft Defender、360、火绒、Panda等杀软的查杀。
- laverdet/isolated-vm - Secure & isolated JS environments for nodejs
- sogou/workflow - C++ Parallel Computing and Asynchronous Networking Framework
- x64dbg/x64dbg - An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
- WerWolv/ImHex - 🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
- qiufuyu123/fxesplus - fx-991cnx逆向工程工具/整理
- avast/retdec - RetDec is a retargetable machine-code decompiler based on LLVM.
- plasma-umass/ChatDBG - ChatDBG - AI-assisted debugging. Uses AI to answer 'why'
- WebAssembly/wabt - The WebAssembly Binary Toolkit
- WithSecureLabs/C3 - Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
- wgpsec/CS-Avoid-killing - CS免杀加载器
- OpenL2D/moc3ingbird - MOC3ingbird Exploit for Live2D (CVE-2023-27566)
- jxy-s/herpaderping - Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
- telegramdesktop/tdesktop - Telegram Desktop messaging app
- facebook/rocksdb - A library that provides an embeddable, persistent key-value store for fast storage.
- Liuhaixv/Goose_Goose_Duck_Hack - External Hack for Goose Goose Duck. 鹅鸭杀外部辅助
- sampsyo/llvm-pass-skeleton - example LLVM pass
- mthipparthi/operating-systems-three-easy-pieces - operating systems three easy pieces by Rezmi
- scylladb/scylladb - NoSQL data store using the seastar framework, compatible with Apache Cassandra
- vgvassilev/cling - The interactive C++ interpreter Cling
- OpenBluetoothToolbox/SimpleBLE - SimpleBLE - the all-in-one Bluetooth library for MacOS, iOS, Windows, Linux and Android.
- capt-meelo/laZzzy - laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
- banach-space/llvm-tutor - A collection of out-of-tree LLVM passes for teaching and learning
- rizinorg/cutter - Free and Open Source Reverse Engineering Platform powered by rizin
- CICADA8-Research/COMThanasia - A set of programs for analyzing common vulnerabilities in COM
- bpftrace/bpftrace - High-level tracing language for Linux
- Vector35/binaryninja-api - Public API, examples, documentation and issues for Binary Ninja
- GhostWolfLab/APT-Individual-Combat-Guide - 《APT Individual Combat Guide》
- hasherezade/pe_to_shellcode - Converts PE into a shellcode
- jseclab/obj2shellcode - shellcode生成框架
- arrayfire/arrayfire - ArrayFire: a general purpose GPU library.
- trickster0/LdrLoadDll-Unhooking - LdrLoadDll Unhooking
- Offensive-Panda/ProcessInjectionTechniques - This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at the forefront of the field. It serves as a central repository of
- SheLLVM/SheLLVM - A collection of LLVM transform and analysis passes to write shellcode in regular C
- novafacing/cargo-shellcode - Cargo subcommand to build a crate into shellcode
- ffffffff0x/1earn - ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
- Dec0ne/HWSyscalls - HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
- carsonchan12345/CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
-
CSS
- cssanimation/css-animation-101 - Learn how to bring animation to your web projects
- simeydotme/pokemon-cards-css - A collection of advanced CSS styles to create realistic-looking effects for the faces of Pokemon cards.
- Akegarasu/vita - full-featured source code analyser
- RustMagazine/rustmagazine - A publication dedicated to the Rust programming language
- chokcoco/iCSS - 不止于 CSS
- YJLAugus/cnblogs-theme-simple-color - 一个简约极致色彩的博客园主题
- honjun/hexo-theme-sakura
- css-animator/Cowardly-Witch - 『臆病な魔女は、Webサイトに魔法をかけた。』
- BingyanStudio/LapisCV - 📃 开箱即用的 Markdown 简历,支持 VSCode / Obsidian / Typora
- yui540/Cowardly-Witch - 『臆病な魔女は、Webサイトに魔法をかけた。』
-
Clojure
- logseq/logseq - A privacy-first, open-source platform for knowledge management and collaboration. Download link: http://github.com/logseq/logseq/releases. roadmap: http://trello.com/b/8txSM12G/roadmap
-
Dart
- KRTirtho/spotube - 🎧 Open source Spotify client that doesn't require Premium nor uses Electron! Available for both desktop & mobile!
- cunarist/rinf - Rust for native business logic, Flutter for flexible and beautiful GUI
- hiddify/hiddify-next - Multi-platform auto-proxy client, supporting Sing-box, X-ray, TUIC, Hysteria, Reality, Trojan, SSH etc. It’s an open-source, secure and ad-free.
- gskinnerTeam/flutter-wonderous-app - A showcase app for the Flutter SDK. Wonderous will educate and entertain as you uncover information about some of the most famous structures in the world.
- flutter/flutter - Flutter makes it easy and fast to build beautiful apps for mobile and beyond
- AppFlowy-IO/AppFlowy - Bring projects, wikis, and teams together with AI. AppFlowy is an AI collaborative workspace where you achieve more without losing control of your data. The best open source alternative to Notion.
- hiddify/hiddify-app - Multi-platform auto-proxy client, supporting Sing-box, X-ray, TUIC, Hysteria, Reality, Trojan, SSH etc. It’s an open-source, secure and ad-free.
-
Dockerfile
- Hacking-the-Cloud/hackingthe.cloud - An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
- phith0n/phpsrc-debug-docker - Debug environment for PHP inside a Docker container. Document waiting to be completed.
- emk/rust-musl-builder - Docker images for compiling static Rust binaries using musl-libc and musl-gcc, with static versions of useful C libraries. Supports openssl and diesel crates.
- MuelNova/NoPwnDocker - Docker environment for Pwn in CTF! Fuck the environment setup that's why this repo is created.
-
Elixir
- blockscout/blockscout - Blockchain explorer for Ethereum based network and a tool for inspecting and analyzing EVM based blockchains.
- elixir-lang/elixir - Elixir is a dynamic, functional language for building scalable and maintainable applications
- h4cc/awesome-elixir - A curated list of amazingly awesome Elixir and Erlang libraries, resources and shiny things. Updates:
-
Go
- miniflux/v2 - Minimalist and opinionated feed reader
- EvilBytecode/EDR-XDR-AV-Killer - Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
- trzsz/trzsz-ssh - trzsz-ssh ( tssh ) is an ssh client designed as a drop-in replacement for the openssh client. It aims to provide complete compatibility with openssh, mirroring all its features, while also offering ad
- EvilBytecode/GoDefender - Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONLY.
- Mayter/mssql-command-tool - xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作,上传,job等相应操作。
- casibase/casibase - AI Cloud: ⚡️Open-source AI LangChain-like RAG (Retrieval-Augmented Generation) knowledge database with web UI and Enterprise SSO⚡️, supports OpenAI, Azure, LLaMA, Google Gemini, HuggingFace, Claude, G
- p1d3er/port_reuse - golang 实现的windows and linux 端口复用工具。
- kost/revsocks - Reverse SOCKS5 implementation in Go
- fin3ss3g0d/evilgophish - evilginx3 + gophish
- gophish/gophish - Open-Source Phishing Toolkit
- dan-v/awslambdaproxy - An AWS Lambda powered HTTP/SOCKS web proxy
- amlweems/xzbot - notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)
- crabkun/switcher - 一个多功能的端口转发/端口复用工具,支持转发本地或远程地址的端口,支持正则表达式转发(实现端口复用)。
- wikiZ/RedGuard - RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
- iawia002/lux - 👾 Fast and simple video download library and CLI tool written in Go
- rakyll/hey - HTTP load generator, ApacheBench (ab) replacement
- MultSec/MultCheck - Identifies bad bytes from static analysis with any Anti-Virus scanner.
- opencontainers/runc - CLI tool for spawning and running containers according to the OCI specification
- DominicBreuker/pspy - Monitor linux processes without root permissions
- lal0ne/vulnerability - 收集、整理、修改互联网上公开的漏洞POC
- Hackmanit/Web-Cache-Vulnerability-Scanner - Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
- apernet/OpenGFW - OpenGFW is a flexible, easy-to-use, open source implementation of GFW (Great Firewall of China) on Linux
- Metarget/cloud-native-security-book - 《云原生安全:攻防实践与体系构建》资料仓库
- Enelg52/OffensiveGo - Golang weaponization for red teamers.
- firefart/stunner - Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
- Zerx0r/dvenom - 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.
- jpillora/chisel - A fast TCP/UDP tunnel over HTTP
- projectdiscovery/httpx - httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
- netbirdio/netbird - Connect your devices into a secure WireGuard®-based overlay network with SSO, MFA and granular access controls.
- pion/ice - A Go implementation of ICE
- apernet/hysteria - Hysteria is a powerful, lightning fast and censorship resistant proxy.
- charmbracelet/vhs - Your CLI home video recorder 📼
- ethereum/go-ethereum - Go implementation of the Ethereum protocol
- daeuniverse/dae - eBPF-based Linux high-performance transparent proxy solution.
- ph4ntonn/Stowaway - 👻Stowaway -- Multi-hop Proxy Tool for pentesters
- Mob2003/rakshasa - 基于go编写的跨平台、稳定、隐秘的多级代理内网穿透工具
- go-gitea/gitea - Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD
- jeessy2/ddns-go - Simple and easy to use DDNS. Support Aliyun, Tencent Cloud, Dnspod, Cloudflare, Callback, Huawei Cloud, Baidu Cloud, Porkbun, GoDaddy, Namecheap, NameSilo...
- charmbracelet/wish - Make SSH apps, just like that! 💫
- liamg/dismember - :knife: Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
- Ne0nd0g/merlin-agent - Post-exploitation agent for Merlin
- Ne0nd0g/merlin - Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
- murphysecurity/murphysec - An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
- KingBridgeSS/serveboy - ServeBoy(简称SB)是一个用go语言编写的搭建简单的http文件服务命令行工具,支持目录展示,文件上传。目前支持windows/linux平台。
- yunxu1/dnsub - dnsub一款好用且强大的子域名扫描工具
- pingc0y/URLFinder - 一款快速、全面、易用的页面信息提取工具,可快速发现和提取页面中的JS、URL和敏感信息。
- projectdiscovery/naabu - A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
- chunzhennn/separa
- usememos/memos - An open-source, lightweight note-taking solution. The pain-less way to create your meaningful notes. Your Notes, Your Way.
- chainreactors/gogo - 面向红队的, 高度可控可拓展的自动化引擎
- qjfoidnh/BaiduPCS-Go - iikira/BaiduPCS-Go原版基础上集成了分享链接/秒传链接转存功能
- i11us0ry/winlog - 一款基于go的windows信息收集工具,主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录
- Hel10-Web/Databasetools - 一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
- syncthing/syncthing - Open Source Continuous File Synchronization
- Pizz33/GobypassAV-shellcode - shellcode免杀加载器,使用go实现,免杀bypass火绒、360、核晶、def等主流杀软
- binwiederhier/ntfy - Send push notifications to your phone or desktop using PUT/POST
- pho3n1x-web/HTTPServerGO - 这是一个用Go编写的红队内网环境中一个能快速开启HTTP文件浏览服务的小工具,能够执行shell命令,可以执行webshell
- Dliv3/Venom - Venom - A Multi-hop Proxy for Penetration Testers
- hellogcc/100-gdb-tips - A collection of gdb tips. 100 maybe just mean many here.
- lcvvvv/kscan - Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。
- shadow1ng/fscan - 一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
- veo/vscan - 开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
- ehang-io/nps - 一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发,可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面,内网dns解析、内网socks5代理等等……,并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server,
- zema1/watchvuln - 一个高价值漏洞采集与推送服务 | collect valueable vulnerability and push it
- projectdiscovery/nuclei - Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int
- cilium/cilium - eBPF-based Networking, Security, and Observability
- ServiceWeaver/weaver - Programming framework for writing and deploying cloud applications.
- BishopFox/sliver - Adversary Emulation Framework
- cdk-team/CDK - 📦 Make security testing of K8s, Docker, and Containerd easier.
- rancher/os - Tiny Linux distro that runs the entire OS as Docker containers
- HavocFramework/Havoc - The Havoc Framework
- passer-W/shc_bypass - 内存加载shellcode绕过waf
- NHAS/reverse_ssh - SSH based reverse shell
- trufflesecurity/trufflehog - Find, verify, and analyze leaked credentials
- minio/minio - MinIO is a high-performance, S3 compatible object store, open sourced under GNU AGPLv3 license.
- andeya/pholcus - Pholcus is a distributed high-concurrency crawler software written in pure golang
- 4ra1n/poc-runner - Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单的启动参数 | 包含多种反连可用 | 可执行文件体积仅 2 MB
- ollama/ollama - Get up and running with Llama 3.2, Mistral, Gemma 2, and other large language models.
- chaitin/SafeLine - serve as a reverse proxy to protect your web services from attacks and exploits.
- fdx-xdf/darkPulse - darkPulse是一个用go编写的shellcode Packer,用于生成各种各样的shellcode loader,免杀火绒,360核晶等国内常见杀软。
- EgeBalci/sgn - Shikata ga nai (仕方がない) encoder ported into go with several improvements
- INotGreen/XiebroC2 - 渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理
- wjlab/Darksteel - 域内自动化信息搜集利用工具
- EvilBytecode/GoRedOps - 🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for education
- Le0nsec/SecCrawler - 一个方便安全研究人员获取每日安全日报的爬虫和推送程序,目前爬取范围包括先知社区、安全客、Seebug Paper、跳跳糖、奇安信攻防社区、棱角社区以及绿盟、腾讯玄武、天融信、360等实验室博客,持续更新中。
- l3yx/Choccy - GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)
- gdy666/lucky - 软硬路由公网神器,ipv6/ipv4 端口转发,反向代理,DDNS,WOL,ipv4 stun内网穿透,cron,acme,阿里云盘,ftp,webdav,filebrowser
- selinuxG/Golin - 弱口令检测、 漏洞扫描、端口扫描(协议识别,组件识别)、web目录扫描、等保模拟定级、自动化运维、等保工具(网络安全等级保护现场测评工具)内置3级等保核查命令、基线核查工具、键盘记录器
-
HTML
- ElliotKillick/windows-vs-linux-loader-architecture - Side-by-side comparison of the Windows and Linux (GNU) Loaders
- EdgeSecurityTeam/command - 红队命令速查 是由棱角社区(Edge Forum) 整理的关于 Red Team 期间所常使用的一些基础命令。
- Eternaldeath/BlockchainHome - 构建区块链学习的知识体系合集,汇聚各种区块链资源
- markmead/hyperui - Free Tailwind CSS components for application UI, ecommerce and marketing with support for dark mode, RTL and Alpine JS 🚀
- swisskyrepo/InternalAllTheThings - Active Directory and Internal Pentest Cheatsheets
- hookmaster/frida-all-in-one - 《FRIDA操作手册》by @hluwa @r0ysue
- silentEAG/note - 个人 notebook
- niltok/magic-in-ten-mins - 十分钟魔法练习
- wx-chevalier/Network-Notes - 分布式系统之网络篇,TCPIP、HTTP、WebSocket、SDN 等。
- Threekiii/Vulnerability-Wiki - 基于 docsify 快速部署 Awesome-POC 中的漏洞文档
- KingBridgeSS/food
- KingBridgeSS/wiki
- r3kapig/writeup - CTF challenges writeup
- dicegang/dicectf-2022-challenges - All challenges from DiceCTF 2022
- thewhitepaper/thewhitepaper.github.io - Voice for our freedom of speech
- atelier-anchor/smiley-sans - 得意黑 Smiley Sans:一款在人文观感和几何特征中寻找平衡的中文黑体
- squidfunk/mkdocs-material - Documentation that simply works
- dibingfa/flash-linux0.11-talk - 你管这破玩意叫操作系统源码 — 像小说一样品读 Linux 0.11 核心代码
- trickest/cve - Gather and update all available and newest CVEs with their PoC.
- GTFOBins/GTFOBins.github.io - GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
- javascript-tutorial/en.javascript.info - Modern JavaScript Tutorial
- onewinner/VulToolsKit - 红队武器库漏洞利用工具合集整理
- Mr-xn/Penetration_Testing_POC - 渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm
- madhuakula/kubernetes-goat - Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
-
Java
- silentEAG/Javashark - 自用 Java 反序列化链子集合
- fdu-sec/JDD
- whocansee/FilelessAgentMemShell - 无需文件落地Agent内存马生成器
- novysodope/javaeasyscan - javaeasyscanner - 富婆系列,代码审计辅助工具,致力于解放大脑,方便双手
- cckuailong/JNDI-Injection-Exploit-Plus - 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
- Bl0omZ/JNDIEXP - JNDI在java高版本的利用工具,FUZZ利用链
- Whoopsunix/JavaRce - Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
- Whoopsunix/PPPYSO - proof-of-concept for generating Java deserialization payload | Proxy MemShell
- jar-analyzer/jar-obfuscator - Jar Obfuscator - 一个 JAR/CLASS 字节码混淆工具,支持包名/类名/方法名/字段名/参数名引用分析和重命名混淆方式,支持字符串加密/整型异或混淆/垃圾代码花指令混淆/等方式,支持方法和字段的隐藏,支持 NATIVE 层的 JVMTI 代码加密,配置简单,文档教程齐全,容易上手
- Liubsyy/JarEditor - IDEA plugin for directly editing and modifying files in jar without decompression. (一款无需解压直接编辑修改jar包内文件的IDEA插件)
- CodeIntelligenceTesting/jazzer - Coverage-guided, in-process fuzzing for the JVM
- gh0stkey/CaA - CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
- javaweb-sec/javaweb-sec
- 0x727/BypassPro - 对权限绕过自动化bypass的burpsuite插件
- W01fh4cker/MemshellKit - 针对多个框架的高度自定义的内存马一键打入工具 | A highly customized memory shell one-click injection tool for multiple frameworks
- antlr/antlr4 - ANTLR (ANother Tool for Language Recognition) is a powerful parser generator for reading, processing, executing, or translating structured text or binary files.
- doocs/leetcode - 🔥LeetCode solutions in any programming language | 多种编程语言实现 LeetCode、《剑指 Offer(第 2 版)》、《程序员面试金典(第 6 版)》题解
- charonlight/NacosExploitGUI - Nacos漏洞综合利用GUI工具,集成了默认口令漏洞、SQL注入漏洞、身份认证绕过漏洞、反序列化漏洞的检测及其利用
- lenve/javaboy-code-samples - 公众号【江南一点雨】文章案例汇总,技术文章请戳这里----->
- Y4tacker/HackingFernFlower - 2023白帽补天大会部分代码
- kyo-w/router-router - Java web路由内存分析工具
- luelueking/Bypass_JVM_Verifier - Bypass JVM Class ByteCode Verifier , 对抗反编译器
- veo/vagent - 多功能 java agent 内存马
- qi4L/JYso - JNDIExploit or a ysoserial.
- Hutt0n0/ActiveMqRCE - 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
- silentEAG/java-patch - awd/awdp 小工具,使用 javassist 对 jar 包进行 patch
- lsieun/learn-java-asm - :bug: Java ASM
- baidu-security/openrasp-testcases - OpenRASP 漏洞测试环境
- GamerGirlandCo/xposed-clipboard-whitelist - an xposed/lsposed module that allows for background clipboard monitoring on android 10+
- alibaba/arthas - Alibaba Java Diagnostic Tool Arthas/Alibaba Java诊断利器Arthas
- MountCloud/BehinderClientSource - ❄️冰蝎客户端源码-V4.0.6🔞
- Col-E/Recaf - The modern Java bytecode editor
- ClassViewer/ClassViewer
- wh1t3p1g/tabby-path-finder - A neo4j procedure for tabby
- SafeGroceryStore/MDUT - MDUT - Multiple Database Utilization Tools
- iSafeBlue/TrackRay - 溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)
- pwntester/BlockingServer - Web Server that serves a single file and keeps the connection open until user releases it.
- nneonneo/ghidra-wasm-plugin - Ghidra Wasm plugin with disassembly and decompilation support
- zema1/suo5 - 一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool
- veo/wsMemShell - WebSocket 内存马/Webshell,一种新型内存马/WebShell技术
- xiaojieonly/Ehviewer_CN_SXJ - ehviewer,用爱发电,快乐前行
- EkiXu/marshalexp
- Litch1-v/ysoserial - A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
- SummerSec/ShiroAttack2 - shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
- safe6Sec/ShiroExp - shiro综合利用工具
- infinilabs/analysis-ik - 🚌 The IK Analysis plugin integrates Lucene IK analyzer into Elasticsearch and OpenSearch, support customized dictionary.
- xkcoding/spring-boot-demo - 🚀一个用来深入学习并实战 Spring Boot 的项目。
- qtc-de/remote-method-guesser - Java RMI Vulnerability Scanner
- wh1t3p1g/ysomap - A helpful Java Deserialization exploit framework.
- welk1n/JNDI-Injection-Exploit - JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
- wh1t3p1g/tabby - A CAT called tabby ( Code Analysis Tool )
- H4cking2theGate/ysogate - Java反序列化/JNDI注入/恶意类生成工具,支持多种高版本bypass,支持回显/内存马等多种扩展利用。
- jar-analyzer/jar-analyzer - Jar Analyzer - 一个JAR包分析工具,批量分析,SCA漏洞分析,方法调用关系搜索,字符串搜索,Spring组件分析,信息泄露检查,CFG程序分析,JVM栈帧分析,进阶表达式搜索,字节码指令级的动态调试分析,反编译JAR包一键导出,一键提取序列化数据恶意代码,一键分析BCEL字节码
- EkiXu/JarAgent - Write HotPatches with Java Instrumentation API
- X1r0z/JNDIMap - JNDI 注入利用工具, 支持 RMI, LDAP 和 LDAPS 协议, 包含多种高版本 JDK 绕过方式 | A JNDI injection exploit tool that supports RMI, LDAP and LDAPS protocols, including a variety of methods to bypass higher-version JDK
- pen4uin/java-memshell-generator - 一款支持自定义的 Java 内存马生成工具|A customizable Java in-memory webshell generation tool.
- jar-analyzer/jar-analyzer-v1-cli - 本项目可以把一个或多个Jar包构建成数据库,用户连接数据库后通过SQL语句任意搜索需要的内容,例如类和方法信息,方法调用关系等
- bitterzzZZ/MemoryShellLearn - 分享几个直接可用的内存马,记录一下学习过程中看过的文章
- 4ra1n/mysql-fake-server - MySQL Fake Server (纯Java实现,支持GUI版和命令行版,提供Dockerfile,支持多种常见JDBC利用)
- LxxxSec/CTF-Java-Gadget - CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
-
JavaScript
- repnz/windbg-cheat-sheet - My personal cheat sheet for using WinDbg for kernel debugging
- yzddmr6/As-Exploits - 中国蚁剑后渗透框架
- brianpetro/obsidian-smart-connections - Chat with your notes & see links to related content with AI embeddings. Use local models or 100+ via APIs like Claude, Gemini, ChatGPT & Llama 3
- spicetify/cli - Command-line tool to customize Spotify client. Supports Windows, MacOS, and Linux.
- WebGoat/WebGoat - WebGoat is a deliberately insecure application
- fvictorio/evm-puzzles - A collection of EVM puzzles
- ahmet/awesome-web3 - A curated list of awesome Web3 resources, libraries, tools and more.
- ifyour/cf-image-hosting - 🥊 Free & Unlimited Image Hosting
- novnc/noVNC - VNC client web application
- jamiebuilds/tailwindcss-animate - A Tailwind CSS plugin for creating beautiful animations
- bigskysoftware/htmx - </> htmx - high power tools for HTML
- dushixiang/next-terminal - Next Terminal是一个简单好用安全的开源交互审计系统,支持RDP、SSH、VNC、Telnet、Kubernetes协议。
- tl-open-source/tl-rtc-file - WebRTC P2P online web media streaming tool (for files, video, screen, live streaming, text) with management and statistical monitoring capabilities.
- mengjian-github/copilot-analysis
- hakimel/reveal.js - The HTML Presentation Framework
- ksky521/nodeppt - This is probably the best web presentation tool so far!
- PipedreamHQ/pipedream - Connect APIs, remarkably fast. Free for developers.
- terjanq/Tiny-XSS-Payloads - A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
- MobSF/Mobile-Security-Framework-MobSF - Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and
- Chalarangelo/30-seconds-of-code - Short code snippets for all your development needs
- koodo-reader/koodo-reader - A modern ebook manager and reader with sync and backup capacities for Windows, macOS, Linux and Web
- haolinyang-hlyang/haolinyang-hlyang.github.io
- Mintplex-Labs/anything-llm - The all-in-one Desktop & Docker AI application with built-in RAG, AI agents, and more.
- tabler/tabler-icons - A set of over 5700 free MIT-licensed high-quality SVG icons for you to use in your web projects.
- Charles7c/charles7c.github.io - (保持最新版 VitePress)基于 VitePress 构建的个人知识库/博客。扩展 VitePress 默认主题:增加ICP备案号、公安备案号显示,增加文章元数据信息(原创标识、作者、发布时间、分类、标签)显示,增加文末版权声明,增加 Gitalk 评论功能,主页美化、自动生成侧边栏、文章内支持 Mermaid 流程图、MD公式、MD脚注、增加我的标签、我的归档等独立页面,以及浏览器滚条等细
- scutan90/DeepLearning-500-questions - 深度学习500问,以问答形式对常用的概率知识、线性代数、机器学习、深度学习、计算机视觉等热点问题进行阐述,以帮助自己及有需要的读者。 全书分为18个章节,50余万字。由于水平有限,书中不妥之处恳请广大读者批评指正。 未完待续............ 如有意合作,联系[email protected] 版权所有,违权必究 Tan 2018.0
- tongcheng-security-team/NextScan - 飞刃是一套完整的企业级黑盒漏洞扫描系统,集成漏洞扫描、漏洞管理、扫描资产、爬虫等服务。 拥有强大的漏洞检测引擎和丰富的插件库,覆盖多种漏洞类型和应用程序框架。
- isno/theByteBook - ⭐ 【开源书籍】深入讲解内核网络、Kubernetes、ServiceMesh、容器等云原生相关技术。经历实践检验的 DevOps、SRE指南。如发现错误,谢谢提issue
- welai/glow-sans - SHSans-derived CJK font family with a more concise & modern look. 未来荧黑·未來熒黑·ヒカリ角ゴ:基于思源黑体改造,拥有粗度和宽度系列,更加简明现代的超大字体家族。
- WTFAcademy/WTF-Ethers - 我最近在重新学ethers.js,巩固一下细节,也写一个“WTF Ethers.js极简入门”,供小白们使用,每周更新1-3讲。Now supports English! 官网: https://wtf.academy
- huhu/rust-search-extension - 🦀 The ultimate search extension for Rust
-
Jinja
- spantaleev/matrix-docker-ansible-deploy - 🐳 Matrix (An open network for secure, decentralized communication) server setup using Ansible and Docker
- Hacker-Hermanos/C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE - C2 Infrastructure Automation
-
Jupyter Notebook
- WTFAcademy/WTF-zk - 零知识证明入门教程。Comprehensive Zero-Knowledge Proofs Tutorial. #zk #WIP
- langchain-ai/langchain - 🦜🔗 Build context-aware reasoning applications
- UFund-Me/Qbot - [🔥updating ...] AI 自动量化交易机器人(完全本地部署) AI-powered Quantitative Investment Research Platform. 📃 online docs: https://ufund-me.github.io/Qbot ✨ :news: qbot-mini: https://github.com/Charmve/iQuant
- microsoft/AI-For-Beginners - 12 Weeks, 24 Lessons, AI for All!
- Nyandwi/machine_learning_complete - A comprehensive machine learning repository containing 30+ notebooks on different concepts, algorithms and techniques.
- langgptai/LangGPT - LangGPT: Empowering everyone to become a prompt expert!🚀 Structured Prompt,Language of GPT, 结构化提示词,结构化Prompt
- bukosabino/ta - Technical Analysis Library using Pandas and Numpy
- stefan-jansen/machine-learning-for-trading - Code for Machine Learning for Algorithmic Trading, 2nd edition.
-
Kotlin
- MuelNova/MiFitness-Uploader-XPosed - An XPosed plugin for "MiFitness(小米健康)", allowing you to fetch the data using socket.
- bannedbook/fanqiang - 翻墙-科学上网
- open-ani/animeko - 一站式在线弹幕追番平台:全自动 BT + 在线多数据源聚合,离线缓存,Bangumi 收藏同步,弹幕云过滤 ... 100% Kotlin Compose Multiplatform
-
Lua
- PY44N/LuaObfuscatorV2 - A program that obfuscates Lua programs so no one can steal your source code
- prometheus-lua/Prometheus - Lua Obfuscator written in pure Lua
- crisprss/Extracted_WD_VDM - Windows Defender VDM lua collections
-
Makefile
- yuk7/ArchWSL - ArchLinux based WSL Distribution. Supports multiple install.
-
Markdown
- TonyCrane/note - TonyCrane's Public Notebook
- ZJU-Turing/TuringCourses - 浙江大学图灵班课程学习指南
- codecrafters-io/build-your-own-x - Master programming by recreating your favorite technologies from scratch.
- analysis-tools-dev/dynamic-analysis - ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
-
Nim
- icyguider/Nimcrypt2 - .NET, PE, & Raw Shellcode Packer/Loader Written in Nim
- klezVirus/NimlineWhispers3 - A tool for converting SysWhispers3 syscalls for use with Nim projects
- itaymigdal/Nimbo-C2 - Nimbo-C2 is yet another (simple and lightweight) C2 framework
- zimawhit3/Bitmancer - Nim Library for Offensive Security Development
- byt3bl33d3r/OffensiveNim - My experiments in weaponizing Nim (https://nim-lang.org/)
- khchen/winim - Windows API, COM, and CLR Module for Nim
- nim-lang/Nim - Nim is a statically typed compiled systems programming language. It combines successful concepts from mature languages like Python, Ada and Modula. Its design focuses on efficiency, expressiveness, an
-
OCaml
- static-analysis-engineering/codehawk - CodeHawk Abstract Interpretation Engine and Analyzers
- facebook/infer - A static analyzer for Java, C, C++, and Objective-C
-
Others
- miss-mumu/developer2gwy - 公务员从入门到上岸,最佳程序员公考实践教程
- DangJin/awesome-readme-generator-tools - 收录了一些可以快速创建出精美readme.md的工具集合
- we1h0/redteam-tips - 关于红队方面的学习资料
- ir0nstone/pwn-notes - My notes on pwn
- kong030813/Z-Godzilla_ekp - 哥斯拉webshell管理工具二次开发规避流量检测设备
- helius-labs/solana-awesome - The "Solana-Awesome" repository serves as a comprehensive, factual resource hub for anyone interested in learning about the Solana blockchain and its underlying technology. It is meticulously curated
- birdhan/SecurityProduct - 开源安全产品源码,IDS、IPS、WAF、蜜罐等
- y4ney/awesome-cloud-native-security - 云原生安全资料库
- chaitin/xapp
- karpathy/LLM101n - LLM101n: Let's build a Storyteller
- zodiacon/AllTools - All reasonably stable tools
- Xposed-Modules-Repo/com.r.leapfebruary - 闰二月,一个小而美的微信模块
- za233/Polaris-Obfuscator - Obfuscator based on LLVM-16.0.6
- One-Fox-Security-Team/One-Fox-T00ls
- AabyssZG/Open-Source-Information-Leakage - 开源项目信息泄露笔记
- ebalo55/awesome-offensive-rust - Curated list of projects, articles and more related to Offensive Security and Red Teaming. Completely written in Rust.
- y1cunhui/uniswapV3-book-zh-cn - uniswapV3-book中文翻译; Chinese translation
- evilcos/darkhandbook - Update by evilcos, for DarkHandBook.io
- trickest/wordlists - Real-world infosec wordlists, updated regularly
- WXRIW/Lyricify-App - Lyricify (/lɪ'rɪsəfaɪ/), a fantastic app to provide scroll lyrics for Spotify (iTunes, Apple Music, Music Center, QQ Music, Netease Cloud Music, and YesPlayMusic are only supported by Lyricify 3). 一款为
- iknowjason/Awesome-CloudSec-Labs - Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
- 0xsyr0/Awesome-Cybersecurity-Handbooks - A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
- masatokinugawa/filterbypass - Browser's XSS Filter Bypass Cheat Sheet
- jamesmunns/awesome-rust-streaming - A community curated list of Rust Language streamers
- weijunext/indie-hacker-tools - 收录独立开发者出海技术栈和工具
- ByteSnipers/awesome-pentest-cheat-sheets - Collection of cheat sheets useful for pentesting
- slowmist/solana-smart-contract-security-best-practices
- sts10/rust-command-line-utilities - A curated list of command-line utilities written in Rust
- chaitin/Real-World-CTF-6th-Challenges - attachments and (some) writeups/source code for RWCTF 6th
- S1ckB0y1337/Cobalt-Strike-CheatSheet - Some notes and examples for cobalt strike's functionality
- JacyCui/static-analysis - 静态分析基础教程
- ErodedElk/Chaos-me-JavaScript-V8 - 零基础入门V8引擎漏洞挖掘
- TideSec/TscanPlus - 一款综合性网络安全检测和运维工具,旨在快速资产发现、识别、检测,构建基础资产信息库,协助甲方安全团队或者安全运维人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
- cloud-native-security-news/cloud-native-security-news - Cloud Native Security News
- milabs/awesome-linux-rootkits - awesome-linux-rootkits
- Flangvik/SharpCollection - Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
- ZtesoftCS/go-ethereum-code-analysis
- arch3rPro/PentestTools - Awesome Pentest Tools Collection
- arch3rPro/Pentest-Windows - Windows11 Penetration Suite Toolkit 一个开箱即用的windows渗透测试环境
- slowmist/SlowMist-Learning-Roadmap-for-Becoming-a-Smart-Contract-Auditor - Smart contract audit skills roadmap for beginners, auditors, engineers, etc.
- daikerSec/windows_protocol
- jamesmth/llvm-project - Fork of LLVM for LTO pass plugins support.
- gmh5225/awesome-llvm-security - awesome llvm security [Welcome to PR]
- Threekiii/Awesome-POC - 一个漏洞POC知识库 目前数量 1000+
- pangudashu/php7-internal - PHP7内核剖析
- Ivan1ee/NET-Deserialize - 总结了20+.Net反序列化文章,持续更新
- ibaiw/2023Hvv - 2023 HVV情报速递~
- FunnyWolf/Viper - Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台
- yzddmr6/Java-Js-Engine-Payloads - Java Js Engine Payloads All in one
- theanarkh/understand-nodejs - 通过源码分析nodejs原理
- ax1sX/SecurityList - A list for Web Security and Code Audit
- Y4er/dotnet-deserialization - dotnet 反序列化学习笔记
- PeiQi0/PeiQi-WIKI-Book - 面向网络安全从业者的知识文库🍃
- crow821/vulntarget - vulntarget靶场系列
- jmpews/pwn2exploit - all mine papers, pwn & exploit
- cseroad/Exp-Tools - 一款集成高危漏洞exp的实用性工具
- wafinfo/Hikvision - 海康威视综合安防平台后渗透利用工具
- rust-embedded/awesome-embedded-rust - Curated list of resources for Embedded and Low-level development in the Rust programming language
- ProbiusOfficial/SecToolKit - Cybersecurity tool repository / Wiki 收录常用 / 前沿 的CTF和渗透工具以及其 官方/使用 文档,致力于让每个工具都能发挥作用ww,不管你是萌新还是领域从业者希望你都能在这里找到适合你的工具或者获得一定的启发。
- ExpLangcn/NucleiTP - 自动整合全网Nuclei的漏洞POC,实时同步更新最新POC!
- UltimateSec/ultimaste-nuclei-templates - 极致攻防实验室 nuclei 检测 POC
- 0xJuancito/multichain-auditor - Observations and tips checklist for auditing protocols on multiple chains 🧐
- Illumine-Labs/GreatMaster - Master, help us to awaken and enlighten. 大师,我悟了。
- geekan/HowToLiveLonger - 程序员延寿指南 | A programmer's guide to live longer
- dogadmin/windodws-logs-analysis - windows日志一键分析小工具
- safe6Sec/PentestDB - 各种数据库的利用姿势
- zijie0/HumanSystemOptimization - 健康学习到150岁 - 人体系统调优不完全指南
- SEC-GO/Red-vs-Blue - 红蓝对抗交流心得
- plctlab/PLCT-Open-Reports - PLCT实验室的公开演讲,或者决定公开的组内报告
- Yuki-Master/Japanese-R18-anime-download - 这是日本里番合集,磁力下载地区
- timzhang642/3D-Machine-Learning - A resource repository for 3D machine learning
- veo/vshell - vshell 是一款安全对抗模拟、红队工具。提供隧道代理和隐蔽通道,模拟长期潜伏攻击者的策略和技术
- RicoloveFeng/SPA-Freestyle-Guidance - 带你畅游《软件分析》
- gobysec/Goby - Attack surface mapping
- Awrrays/Pentest-Tips - RedTeam Pentesting 学习资源,工具
- Bypass007/Emergency-Response-Notes - 应急响应实战笔记,一个安全工程师的自我修养。
- davinci1010/pinduoduo_backdoor - 拼多多apk内嵌提权代码,及动态下发dex分析
- Kudaes/rust_tips_and_tricks - Rust For Windows Cheatsheet
- warpdotdev/Warp - Warp is a modern, Rust-based terminal with AI built in so you and your team can build great software, faster.
- google/learn_unsafe_rust
- youthlql/JavaYouth - 主要是Java技术栈的文章
- jlevy/the-art-of-command-line - Master the command line, in one page
- slowmist/Blockchain-dark-forest-selfguard-handbook - Blockchain dark forest selfguard handbook. Master these, master the security of your cryptocurrency.
- RangerNJU/Static-Program-Analysis-Book - Getting started with static program analysis. 静态程序分析入门教程。
- bradtraversy/design-resources-for-developers - Curated list of design and UI resources from stock photos, web templates, CSS frameworks, UI libraries, tools and much more
- GuoYaxiang/craftinginterpreters_zh - 手撸解释器教程《Crafting Interpreters》中文翻译
- trimstray/the-book-of-secret-knowledge - A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
- Warrenren/inside-rust-std-library - 本书已经正式出版,目前正预售,可在京东搜索《深入RUST标准库》即可。本书主要对RUST的标准库代码进行分析,并试图给出RUST标准库代码的分析脉络。This project try to give a venation of how reading the RUST standard library source code.
- MiCode/Xiaomi_Kernel_OpenSource - Xiaomi Mobile Phone Kernel OpenSource
- karanpratapsingh/system-design - Learn how to design systems at scale and prepare for system design interviews
- safe6Sec/Fastjson - Fastjson姿势技巧集合
- ASTTeam/CodeQL - 《深入理解CodeQL》Finding vulnerabilities with CodeQL.
- InterviewReady/system-design-resources - These are the best resources for System Design on the Internet
- xiaoy-sec/Pentest_Note - 渗透测试常规操作记录
- tauri-apps/awesome-tauri - 🚀 Awesome Tauri Apps, Plugins and Resources
- brupst/awesome-bupt-scs - 北京邮电大学计算机学院本科编程作业索引
- facert/awesome-spider - 爬虫集合
- hzwer/shareOI - 算法竞赛课件分享
- aniftyco/awesome-tailwindcss - 😎 Awesome things related to Tailwind CSS
- wy876/POC - 收集整理漏洞EXP/POC,大部分漏洞来源网络,目前收集整理了1200多个poc/exp,长期更新。
- sevagas/Advanced_Initial_access_in_2024_OffensiveX - Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
- sannykim/solsec - A collection of resources to study Solana smart contract security, auditing, and exploits.
- tkmru/awesome-edr-bypass - Awesome EDR Bypass Resources For Ethical Hacking
- RoseSecurity/Red-Teaming-TTPs - Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
- zhuima/awesome-cloudflare - ⛅️ 精选的 Cloudflare 工具、开源项目、指南、博客和其他资源列表。/ ⛅️ A curated list of Cloudflare tools, open source projects, guides, blogs and other resources.
- tdragon6/Supershell - Supershell C2 远控平台,基于反向SSH隧道获取完全交互式Shell
- Ascotbe/HackerMind - 各种安全相关思维导图整理收集。渗透步骤,web安全,CTF,业务安全,人工智能,区块链安全,数据安全,安全开发,无线安全,社会工程学,二进制安全,移动安全,红蓝对抗,运维安全,风控安全,linux安全
- dyingsu/nolsp - NoLsp_fix_WSL2_参考的对象类型不支持尝试的操作.exe 下载此软件(原始链接_www.proxifier.com/tmp/Test20200228/NoLsp.exe) 管理员身份运行CMD输入: NoLsp.exe C:\windows\system32\wsl.exe 请自行注意NoLsp.exe程序的位置,以及你的wsl.exe位置。 产生原因和解决方法分析: 代理软件
- qazbnm456/awesome-web-security - 🐶 A curated list of Web Security materials and resources.
- knownsec/404StarLink - 404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目
- Ar3h/web-chains - Web 版 Java Payload 生成与漏洞利用工具,提供 Java 反序列化、Hessian 1/2 反序列化等 Payload 生成,以及 JNDI Exploit、Fake Mysql Exploit、JRMPListener 等相关利用
- zakirullin/cognitive-load - 🧠 Cognitive Load is what matters
-
PHP
- EkiXu/WAFManis
- 1337r0j4n/php-backdoors - php backdoors collection
- misaka19008/PerlinPuzzle-Webshell-PHP - 使用分支对抗技术制作的PHP Webshell,截止2024年1月18日,共数十个查杀引擎免杀
- getgrav/grav - Modern, Crazy Fast, Ridiculously Easy and Amazingly Powerful Flat-File CMS powered by PHP, Markdown, Twig, and Symfony
- StarCrossPortal/QingTing - 蜻蜓安全一个安全工具编排平台,可以自由编排你的工具流,集成108款工具,包括xray、nmap、awvs等;你可以将喜欢的工具编排成一个场景,快速打造适合自己的安全工作台~
- wupco/weblogger - 针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具
- DasSecurity-HatLab/AoiAWD - AoiAWD-专为比赛设计,便携性好,低权限运行的EDR系统。
- leohearts/awd-watchbird - A powerful PHP WAF for AWD
- Drun1baby/CTF-Repo-2023 - 2023 各大 CTF 的比赛附件
- jiushill/note - 记录自己写的工具和学习笔记
- chris-koch-penn/gpt3_security_vulnerability_scanner - GPT-3 found hundreds of security vulnerabilities in this repo
- ProbiusOfficial/PHPSerialize-labs - 【Hello-CTF labs】PHPSerialize-labs是一个使用php语言编写的,用于学习CTF中PHP反序列化的入门靶场。旨在帮助大家对PHP的序列化和反序列化有一个全面的了解。
- Aabyss-Team/Antivirus-Scan - What AV? 一款轻量级的杀软在线识别的项目,持续更新ing
-
Perl
- houseabsolute/actions-rust-cross - GitHub Action to compile Rust with cross
-
PowerShell
- lintstar/LSTAR - LSTAR - CobaltStrike 综合后渗透插件
- safebuffer/vulnerable-AD - Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
- TonyPhipps/Meerkat - A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
- BC-SECURITY/Empire - Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
- S3cur3Th1sSh1t/PowerSharpPack
- mandiant/flare-vm - A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.
- k8gege/K8tools - K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke
- gh0x0st/Invoke-PSObfuscation - An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.
- Orange-Cyberdefense/GOAD - game of active directory
-
Python
- yj94/BinarySpy - 一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.
- EstrellaXD/Auto_Bangumi - AutoBangumi - 全自动追番工具
- alexmojaki/sorcery - Dark magic delights in Python
- klezVirus/SysWhispers3 - SysWhispers on Steroids - AV/EDR evasion via direct system calls.
- decompiler-explorer/decompiler-explorer - Decompiler Explorer! Compare tools on the forefront of static analysis, now in your web browser!
- login-securite/DonPAPI - Dumping DPAPI credz remotely
- bitsadmin/wesng - Windows Exploit Suggester - Next Generation
- PassKeyRa/solana-ebpf-ida-processor - Solana Virtual Machine bytecode processor for IDA Pro
- eset/nimfilt - A collection of modules and scripts to help with analyzing Nim binaries
- cloudflare/bpftools - BPF Tools - packet analyst toolkit
- malwaredllc/byob - An open-source post-exploitation framework for students, researchers and developers.
- icyguider/Shhhloader - Syscall Shellcode Loader (Work in Progress)
- ccyanxyz/uniswap-arbitrage-analysis - Uniswap arbitrage problem analysis
- Stability-AI/generative-models - Generative Models by Stability AI
- hugsy/gef - GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
- Pennyw0rth/NetExec - The Network Execution Tool
- Ciphey/Ciphey - ⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
- bata24/gef - GEF - GDB Enhanced Features for exploit devs & reversers
- JANlittle/IDARustHelper - Small rust binary analysis helper for IDA.
- saveweb/review-2023 - 二〇二三年的年终总结都写好了吗?
- icyguider/LightsOut - Generate an obfuscated DLL that will disable AMSI & ETW
- cispa/persistent-clientside-xss - Exploit generator and Taint Engine to find persistent (and reflected) client-side XSS
- Threekiii/Awesome-Redteam - 一个攻防知识仓库 Red Teaming and Offensive Security
- FunnyWolf/pystinger - Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具
- ambionics/wrapwrap - Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
- Boris-code/feapder - 🚀🚀🚀feapder is an easy to use, powerful crawler framework | feapder是一款上手简单,功能强大的Python爬虫框架。内置AirSpider、Spider、TaskSpider、BatchSpider四种爬虫解决不同场景的需求。且支持断点续爬、监控报警、浏览器渲染、海量数据去重等功能。更有功能强大的爬虫管理系统feaplat为其提供方便
- snnxyss/new_in_swor - bypassAll静态引擎,如绕过QVM,绕过VT所有静态引擎
- SakuraLLM/SakuraLLM - 适配轻小说/Galgame的日中翻译大模型
- WKL-Sec/dcomhijack - Lateral Movement Using DCOM and DLL Hijacking
- shmilylty/OneForAll - OneForAll是一款功能强大的子域收集工具
- skelsec/pypykatz - Mimikatz implementation in pure Python
- Kkevsterrr/backdoorme - powerful auto-backdooring utility
- cowrie/cowrie - Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
- maguowei/starred - creating your own Awesome List by GitHub stars!
- lgandx/Responder - Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication
- mkdocs/catalog - :trophy: :books: A list of awesome MkDocs projects and plugins.
- MuelNova/PwNo - Pwntools Extension with No Extra Effort!
- W01fh4cker/VcenterKit - Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit
- hust-open-atom-club/linux-insides-zh - Linux 内核揭秘
- AabyssZG/AWD-Guide - 从零学习AWD比赛指导手册以及AWD脚本整理
- nccgroup/ScoutSuite - Multi-Cloud Security Auditing Tool
- seisman/how-to-write-makefile - 跟我一起写Makefile重制版
- QQBackup/qq-win-db-key - 全平台 QQ 聊天数据库解密
- project-sekai-ctf/sekaictf-2023 - 🎵 Official source code and writeups for SekaiCTF 2023!
- chainflag/solidctf - SolidCTF is an infrastructure solution that simplifies the build of Solidity CTF challenges.
- H4CK3RT3CH/RedTeaming_CheatSheet
- nnsee/fileless-elf-exec - Execute ELF files without dropping them on disk
- Supervisor/supervisor - Supervisor process control system for Unix (supervisord)
- Crusaders-of-Rust/corCTF-2023-public-challenge-archive - public archive for corCTF 2023
- angr/cle - CLE Loads Everything (at least, many binary formats!)
- KingBridgeSS/XZSpider
- waderwu/extractor-java - CodeQL extractor for java, which don't need to compile java source
- Tokeii0/VolatilityPro - 一款用于自动化处理内存取证的Python脚本,并提供GUI界面
- grayhatacademy/ghidra_scripts - Port of devttyS0's IDA plugins to the Ghidra plugin framework, new plugins as well.
- Marven11/Fenjing - 专为CTF设计的Jinja2 SSTI全自动绕WAF脚本 | A Jinja2 SSTI cracker for bypassing WAF, designed for CTF
- litheory/AWD - awd比赛用到的脚本
- EniasCailliau/GirlfriendGPT - AI Girlfriend NSFW chatbot tool in Python - Build your own AI companion in Python using ChatGPT.
- MuelNova/PwnUtils - A collection of useful pwn scripts in one.
- Vu1nT0tal/yarb - 方便获取每日安全资讯的爬虫和推送程序
- threat9/routersploit - Exploitation Framework for Embedded Devices
- polymorf/findcrypt-yara - IDA pro plugin to find crypto constants (and more)
- WindXaa/Android-Vulnerability-Mining - Android APP漏洞之战系列,主要讲述如何快速挖掘APP漏洞
- molnarg/ascii-zip - A deflate compressor that emits compressed data that is in the [A-Za-z0-9] ASCII byte range.
- RoderickChan/pwncli - Do pwn by command line
- ChrisTheCoolHut/Zeratool - Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems
- LmeSzinc/AzurLaneAutoScript - Azur Lane bot (CN/EN/JP/TW) 碧蓝航线脚本 | 无缝委托科研,全自动大世界
- LandGrey/xxe-ftp-server - xxe oob receive file via web and ftp server
- machine1337/gmailc2 - A Fully Undetectable C2 Server That Communicates Via Google SMTP to evade Antivirus Protections and Network Traffic Restrictions
- timetravelthree/IDARustDemangler - Rust Demangler & Normalizer plugin for IDA
- Python3WebSpider/ProxyPool - An Efficient ProxyPool with Getter, Tester and Server
- CS-BAOYAN/CSSummerCamp2023
- Vu1nT0tal/IoT-vulhub - IoT固件漏洞复现环境
- crow821/crowsec - 视频课件和工具分享
- EddieIvan01/pker - Automatically converts Python source code to Pickle opcode
- LJP-TW/Windows-Pwn-Step-by-Step - Let's get familiar with Windows pwn 😎
- mkdocstrings/mkdocstrings - :blue_book: Automatic documentation from sources, for MkDocs.
- d2l-ai/d2l-zh - 《动手学深度学习》:面向中文读者、能运行、可讨论。中英文版被70多个国家的500多所大学用于教学。
- AzeemIdrisi/PhoneSploit-Pro - An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
- chaitin/Real-World-CTF-5th-Challenges - attachments and (some) writeups/source code for RWCTF 5th
- ashemery/exploitation-course - Offensive Software Exploitation Course
- sajjadium/ctf-archives - CTF Archives: Collection of CTF Challenges.
- Eilonh/s3crets_scanner
- jackfrued/Python-100-Days - Python - 100天从新手到大师
- MakeMerakGreatAgain/tsctf-j_2022
- ice-doom/codeql_compile - 自动反编译闭源应用,创建codeql数据库
- hosch3n/msmap - Msmap is a Memory WebShell Generator.
- IdreesInc/Monocraft - A monospaced programming font inspired by the Minecraft typeface
- public-apis/public-apis - A collective list of free APIs
- matrix-org/synapse - Synapse: Matrix homeserver written in Python/Twisted.
- MrWQ/vulnerability-paper - 收集的文章 https://mrwq.github.io/tools/paper/
- python/cpython - The Python programming language
- TheKingOfDuck/fuzzDicts - Web Pentesting Fuzz 字典,一个就够了。
- MuelNova/SimExp_Cracker - Python Script for 科大奥锐 , which could upload / decrypt SimExp Content with only few lines.
- nonebot/nonebot2 - 跨平台 Python 异步聊天机器人框架 / Asynchronous multi-platform chatbot framework written in Python
- MuelNova/nonebot_plugin_deepl_translator - A nonebot plugin to translate chats
- ihebski/DefaultCreds-cheat-sheet - One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
- facefusion/facefusion - Industry leading face manipulation platform
- yuka-friends/Windrecorder - Windrecorder is a memory search app by records everything on your screen in small size, to let you rewind what you have seen, query through OCR text or image description, and get activity statistics.
- L-codes/Neo-reGeorg - Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
- decalage2/oletools - oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
- Metarget/metarget - Metarget is a framework providing automatic constructions of vulnerable infrastructures.
- RuoJi6/HackerPermKeeper - Linux权限维持
- awake1t/HackReport - 渗透测试报告/资料文档/渗透经验文档/安全书籍
- CloudCrowSec001/CVE-2024-38077-POC - 原文已被作者删除,备份用,非原创,EXP & POC
- Drakkar-Software/OctoBot - Open source crypto trading bot
- CryptoSignal/Crypto-Signal - Github.com/CryptoSignal - Trading & Technical Analysis Bot - 4,100+ stars, 1,100+ forks
- vnpy/vnpy - 基于Python的开源量化交易平台开发框架
- N0fix/rustbinsign - Rust symbol recovery tool
- Ridter/owa_info - 获取Exchange信息的小工具
- synacktiv/DLHell - Local & remote Windows DLL Proxying
- Clouditera/SecGPT - SecGPT网络安全大模型
- Aabyss-Team/ARL - ARL官方仓库备份项目:ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
- g1879/DrissionPage - Python based web automation tool. Powerful and elegant.
- TheKingOfDuck/FileMonitor - 文件变化实时监控工具(代码审计/黑盒/白盒审计辅助工具)
- tp7309/TTDeDroid - 一键反编译工具(不需要手动安装Python) One key for quickly decompile apk/aar/dex/jar, support by jadx/dex2jar/enjarify.
- mementum/backtrader - Python Backtesting library for trading strategies
-
Ren'Py
- renpy/renpy - The Ren'Py Visual Novel Engine
-
Rich Text Format
- enkerewpo/OI-Public-Library - OI / ACM essays and learning materials
-
Ruby
- soulteary/Home-Network-Note - 🚧 持续更新 🚧 记录搭建兼顾学习娱乐的家用网络环境的过程,折腾过的一些软硬件小经验。
- w181496/Web-CTF-Cheatsheet - Web CTF CheatSheet 🐈
- discourse/discourse - A platform for community discussion. Free, open, simple.
-
Rust
- Pizz33/JoJoLoader - 助力红队成员一键生成免杀木马,使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan
- oberrich/phnt-rs - Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers
- MSxDOS/ntapi - Rust FFI bindings for Native API
- robiot/rustcat - Rustcat(rcat) - The modern Port listener and Reverse shell
- aptos-labs/aptos-core - Aptos is a layer 1 blockchain built to support the widespread use of blockchain through better technology and user experience.
- aws/aws-lc-rs - aws-lc-rs is a cryptographic library using AWS-LC for its cryptographic operations. The library strives to be API-compatible with the popular Rust library named ring.
- winsecurity/Offensive-Rust
- leudz/shipyard - Entity Component System focused on usability and flexibility.
- astral-sh/rye - a Hassle-Free Python Experience
- BlWasp/rs-shell - A dirty PoC for a reverse shell with cool features in Rust
- BurtonQin/lockbud - Statically detect memory, concurrency bugs and possible panic locations for Rust.
- J-Schoepplenberg/zero-packet - A zero-copy Rust library that builds and parses network packets in-place.
- influxdata/influxdb - Scalable datastore for metrics, events, and real-time analytics
- evcxr/evcxr
- robertpsoane/ducker - A slightly quackers Docker TUI based on k9s 🦆
- CensoredUsername/dynasm-rs - A dynasm-like tool for rust.
- dronavallipranav/rust-obfuscator - Automatic Rust Obfuscator and Macro Library
- EricLBuehler/mistral.rs - Blazingly fast LLM inference.
- godzie44/BugStalker - Rust debugger for Linux x86-64
- Kharos102/ReadWriteDriverSample
- 0vercl0k/snapshot - WinDbg extension written in Rust to dump the CPU / memory state of a running VM
- gimli-rs/object - A unified interface for reading and writing object file formats
- microsoft/sudo - It's sudo, for Windows
- kube-rs/kube - Rust Kubernetes client and controller runtime
- Mufanc/DexHunter - 基于内存探测的简易脱壳小工具
- Narsil/rdev - Simple library to listen and send events to keyboard and mouse (MacOS, Windows, Linux)
- neovide/neovide - No Nonsense Neovim Client in Rust
- cloud-hypervisor/cloud-hypervisor - A Virtual Machine Monitor for modern Cloud workloads. Features include CPU, memory and device hotplug, support for running Windows and Linux guests, device offload with vhost-user and a minimal compac
- ast-grep/ast-grep - ⚡A CLI tool for code structural search, lint and rewriting. Written in Rust
- VirusTotal/yara-x - A rewrite of YARA in Rust.
- b1tg/cobaltstrike-beacon-rust - CobaltStrike beacon in rust
- DelSkayn/rquickjs - High level bindings to the quickjs javascript engine
- nullpo-head/wsl-distrod - Distrod is a meta-distro for WSL 2 which installs Ubuntu, Arch, Debian, Gentoo, etc. with systemd in a minute for you. Distrod also has built-in auto-start feature on Windows startup and port forwardi
- kyren/piccolo - An experimental stackless Lua VM implemented in pure Rust
- EasyTier/EasyTier - A simple, decentralized mesh VPN with WireGuard support.
- alexcrichton/ssh2-rs - Rust bindings for libssh2
- alexpusch/rust-magic-patterns - Magical Rust patterns laid out and simplified
- kotauskas/interprocess - Multifunctional cross-platform interprocess communication toolkit for Rust.
- mtth-bfft/adeleg - Active Directory delegation management tool
- oxc-project/oxc - ⚓ A collection of JavaScript tools written in Rust.
- zer1t0/cerbero - Kerberos protocol attacker
- RustPython/RustPython - A Python Interpreter written in Rust
- rusticata/kerberos-parser - Kerberos parser written in rust with nom
- clux/muslrust - Docker environment for building musl based static linux rust binaries
- Nariod/RustPacker - Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.
- AbelChe/rabbithole - 🦀️ 一个完全使用Rust编写的代理池工具,从网络搜索socks5代理,检测可用性之后开启socks5代理服务。A proxy pool tool completely written in Rust, which searches for SOCKS5 proxies from the network, and after checking their availability, starts
- wez/wezterm - A GPU-accelerated cross-platform terminal emulator and multiplexer written by @wez and implemented in Rust
- FuelLabs/sway - 🌴 Empowering everyone to build reliable and efficient smart contracts.
- raphamorim/rio - A hardware-accelerated GPU terminal emulator focusing to run in desktops and browsers.
- mitsuhiko/insta - A snapshot testing library for rust
- lapce/lapdev - Self-Hosted Remote Dev Environment
- metaplex-foundation/shank - Extracts IDL from Solana Rust contracts
- libp2p/rust-libp2p - The Rust Implementation of the libp2p networking stack.
- pepperoni21/ollama-rs - A Rust library allowing to interact with the Ollama API.
- b1tg/rust-windows-shellcode - Windows shellcode development in Rust
- wasmi-labs/wasmi - WebAssembly (Wasm) interpreter.
- metaplex-foundation/metaplex-program-library - Smart contracts maintained by the Metaplex team
- Litch1-v/sigma-rs - sigma rule rust parser
- cloudflare/foundations - Cloudflare's Rust service foundations library.
- cberner/fuser - Filesystem in Userspace (FUSE) for Rust
- zargony/fuse-rs - Rust library for filesystems in userspace (FUSE)
- ameknite/rust-ci-cd-template - Template to maintain a rust project running CI/CD with Github Workflows.
- phra/rustbuster - A Comprehensive Web Fuzzer and Content Discovery Tool
- jerryshell/ac-esp - AssaultCube ESP DLL with Rust 🦀
- microsoft/elfcore - A Rust crate for creating memory dumps of running processes on Linux
- veeso/pavao - A Rust client library for SMB 🦚
- teloxide/teloxide - 🤖 An elegant Telegram bots framework for Rust
- purpleprotocol/mimalloc_rust - A Rust wrapper over Microsoft's MiMalloc memory allocator
- microsoft/windows-drivers-rs - Platform that enables Windows driver development in Rust. Developed by Surface.
- Kudaes/DInvoke_rs - Dynamically invoke arbitrary unmanaged code
- JSorngard/zalgo_codec - A crate for converting an ASCII text string to a single unicode grapheme cluster and back. Also provides a macro to embed encoded source code into a Rust source file.
- cloudflare/pingora - A library for building fast, reliable and evolvable network services.
- indygreg/PyOxidizer - A modern Python application packaging and distribution tool
- crossbeam-rs/crossbeam - Tools for concurrent programming in Rust
- Kudaes/Shelter - ROP-based sleep obfuscation to evade memory scanners
- smol-rs/smol - A small and fast async runtime for Rust
- luojia65/plugin-system-example - Example design of executable with `dylib`-based runtime plugin system in Rust, `libloading` used
- Speykious/cve-rs - Blazingly 🔥 fast 🚀 memory vulnerabilities, written in 100% safe Rust. 🦀
- skyzh/type-exercise-in-rust - Learn Rust dark magics by implementing an expression framework in database systems
- joaoviictorti/RustRedOps - 🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust
- Zerx0r/rs_ppid_spoof_hollow - a PoC for combining PPID spoofing with process hollowing shellcode injection
- Orange-OpenSource/hurl - Hurl, run and test HTTP requests with plain text.
- Macchina-CLI/macchina - A system information frontend with an emphasis on performance.
- facebook/dotslash - Simplified executable deployment
- mira-screen-share/sharer - A screen-sharing / remote collaboration software written in Rust
- 0xor0ne/debugoff - Linux anti-debugging and anti-analysis rust library
- embassy-rs/embassy - Modern embedded framework, using Rust and async.
- spellshift/realm - Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.
- qmonnet/rbpf - Rust virtual machine and JIT compiler for eBPF programs
- solana-labs/rbpf - Rust virtual machine and JIT compiler for eBPF programs
- erebe/wstunnel - Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available
- fish-shell/fish-shell - The user-friendly command line shell.
- Ragnt/AngryOxide - 802.11 Attack Tool
- maestro-os/maestro - Unix-like kernel written in Rust
- dtolnay/linkme - Safe cross-platform linker shenanigans
- railwayapp/nixpacks - App source + Nix packages + Docker = Image
- dizda/fast-socks5 - Fast SOCKS5 client/server implementation written in Rust async/.await (with tokio)
- pksunkara/cargo-workspaces - A tool for managing cargo workspaces and their crates, inspired by lerna
- iggy-rs/iggy - Iggy is the persistent message streaming platform written in Rust, supporting QUIC, TCP and HTTP transport protocols, capable of processing millions of messages per second.
- snapview/tungstenite-rs - Lightweight stream-based WebSocket implementation for Rust.
- tiny-http/tiny-http - Low level HTTP server library in Rust
- ksk001100/seahorse - A minimal CLI framework written in Rust
- jamesmunns/postcard - A no_std + serde compatible message library for Rust
- mikaelmello/inquire - A Rust library for building interactive prompts
- fuzzland/ityfuzz - Blazing Fast Bytecode-Level Hybrid Fuzzer for Smart Contracts
- rust-lang/socket2 - Advanced configuration options for sockets.
- dtolnay/inventory - Typed distributed plugin registration
- m4b/goblin - An impish, cross-platform binary parsing crate, written in Rust
- cloudflare/boringtun - Userspace WireGuard® Implementation in Rust
- NH-RED-TEAM/RustHound - Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀
- bluss/scopeguard - Rust crate for a convenient RAII scope guard.
- google/argh - Rust derive-based argument parsing optimized for code size
- SeaQL/FireDBG.for.Rust - 🔥 Time Travel Visual Debugger for Rust
- puffyCid/artemis - A cross platform forensic parser written in Rust!
- sgmarz/osblog - The Adventures of OS
- XAMPPRocky/tokei - Count your code, quickly.
- tbillington/kondo - Cleans dependencies and build artifacts from your projects.
- MatsDK/TauRPC - Typesafe IPC layer for Tauri applications
- model-checking/kani - Kani Rust Verifier
- vi/websocat - Command-line client for WebSockets, like netcat (or curl) for ws:// with advanced socat-like functions
- PrivateRookie/ws-tool - High perform & easy to use websocket client/server
- MrPicklePinosaur/shrs - The rusty shell toolkit for hackers
- pwnwriter/hysp - 📦 An independent package manager that every hacker deserves.
- pyrossh/rust-embed - Rust Macro which loads files into the rust binary at compile time during release and loads the file from the fs during dev.
- spacejam/sled - the champagne of beta embedded databases
- console-rs/dialoguer - Rust utility library for nice command line prompts and similar things
- console-rs/console - A rust console and terminal abstraction
- console-rs/indicatif - A command line progress reporting library for Rust
- kkawakam/rustyline - Readline Implementation in Rust
- Eugeny/russh - Rust SSH client & server library
- memN0ps/venom-rs - Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)
- OpenByteDev/dll-syringe - A windows dll injection library written in rust.
- cross-rs/cross - “Zero setup” cross compilation and “cross testing” of Rust crates
- tokio-rs/prost - PROST! a Protocol Buffers implementation for the Rust Language
- hakaioffsec/coffee - A COFF loader made in Rust
- ekzhang/sshx - Fast, collaborative live terminal sharing over the web
- loro-dev/loro - Reimagine state management with CRDTs. Make your app collaborative effortlessly.
- io12/pwninit - pwninit - automate starting binary exploit challenges
- b23r0/cliws - Cross platform interactive bind/reverse PTY shell
- dndx/phantun - Transforms UDP stream into (fake) TCP streams that can go through Layer 3 & Layer 4 (NAPT) firewalls/NATs.
- cloudwego/volo - Rust RPC framework with high-performance and strong-extensibility for building micro-services.
- mcginty/snow - A Rust implementation of the Noise Protocol Framework
- skytable/skytable - Skytable is a modern scalable NoSQL database with BlueQL, designed for performance, scalability and flexibility. Skytable gives you spaces, models, data types, complex collections and more to build po
- rusqlite/rusqlite - Ergonomic bindings to SQLite for Rust
- cloudwego/sonic-rs - A fast Rust JSON library based on SIMD.
- andreabergia/rjvm - A tiny JVM written in Rust. Learning project
- sxyazi/yazi - 💥 Blazing fast terminal file manager written in Rust, based on async I/O.
- mozilla/sccache - Sccache is a ccache-like tool. It is used as a compiler wrapper and avoids compilation when possible. Sccache has the capability to utilize caching in remote storage environments, including various cl
- warp-tech/warpgate - Smart SSH, HTTPS and MySQL bastion that requires no additional client-side software
- axodotdev/oranda - 🎁 generate beautiful landing pages for your developer tools
- Tylous/Freeze.rs - Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
- Marcono1234/struson - Streaming JSON reader and writer written in Rust
- huggingface/candle - Minimalist ML framework for Rust
- ZettaScaleLabs/stabby - A Stable ABI for Rust with compact sum-types
- ArroyoSystems/arroyo - Distributed stream processing engine in Rust
- misprit7/computerraria - A fully compliant RISC-V computer made inside the game Terraria
- paritytech/substrate - Substrate: The platform for blockchain innovators
- ihciah/shadow-tls - A proxy to expose real tls handshake to the firewall
- cloudflare/mmap-sync - Rust library for concurrent data access, using memory-mapped files, zero-copy deserialization, and wait-free synchronization.
- xd009642/tarpaulin - A code coverage tool for Rust projects
- leptos-rs/leptos - Build fast web applications with Rust.
- vi3t1/qq-tim-elevation - CVE-2023-34312
- rkyv/rkyv - Zero-copy deserialization framework for Rust
- Sndav/coffee - Coffee is a loader for ELF (Executable and Linkable Format) object files written in Rust. Coffee是一个用Rust语言编写的ELF object文件的加载器
- gz/rust-elfloader - Library to load and relocate ELF files.
- thepowersgang/rust_os - An OS kernel written in rust. Non POSIX
- yamakadi/ldr - A work in progress BOF/COFF loader in Rust
- crossterm-rs/crossterm - Cross platform terminal library rust
- Aloxaf/silicon - Create beautiful image of your source code.
- memN0ps/redlotus-rs - Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
- quickwit-oss/quickwit - Cloud-native search engine for observability. An open-source alternative to Datadog, Elasticsearch, Loki, and Tempo.
- atuinsh/atuin - ✨ Magical shell history
- phiresky/ripgrep-all - rga: ripgrep, but also search in PDFs, E-Books, Office documents, zip, tar.gz, etc.
- chanhx/crabviz - 🦀 A LSP-based interative call graph generator
- salvo-rs/salvo - A powerful web framework built with a simplified design.
- sigoden/dufs - A file server that supports static serving, uploading, searching, accessing control, webdav...
- o2sh/onefetch - Command-line Git information tool
- mrjackwills/havn - A fast configurable port scanner with reasonable defaults
- WerWolv/ImHex-Patterns - Hex patterns, include patterns and magic files for the use with the ImHex Hex Editor
- zino-rs/zino - Next-generation framework for composable applications in Rust.
- udoprog/musli - Müsli is a flexible and generic binary serialization framework
- mitsuhiko/self-replace - Utility library that helps to implement processes that replace themselves
- hyperium/hyper - An HTTP library for Rust
- bytedance/g3 - Enterprise-oriented Generic Proxy Solutions
- tamuctf/tamuctf-2023
- rapiz1/rathole - A lightweight and high-performance reverse proxy for NAT traversal, written in Rust. An alternative to frp and ngrok.
- RazrFalcon/cargo-bloat - Find out what takes most of the space in your executable.
- johnthagen/min-sized-rust - 🦀 How to minimize Rust binary size 📦
- b1nhack/rust-shellcode - windows-rs shellcode loaders
- jonhoo/bus - Efficient, lock-free, bounded Rust broadcast channel
- Andy-Python-Programmer/aero - Aero is a new modern, experimental, UNIX-like operating system following the monolithic kernel design. Supporting modern PC features such as long mode, 5-level paging, and SMP (multicore), to name a f
- wumb0/rust_bof - Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.
- shadowsocks/shadowsocks-rust - A Rust port of shadowsocks
- foniod/redbpf - Rust library for building and running BPF/eBPF modules
- facebook/buck2 - Build system, successor to Buck
- hickory-dns/hickory-dns - A Rust based DNS client, server, and resolver
- poem-web/poem - A full-featured and easy-to-use web framework with the Rust programming language.
- memN0ps/eagle-rs - Rusty Rootkit - Windows Kernel Rookit in Rust (Codename: Eagle)
- YDHCUI/manjusaka - 牛屎花 一款基于WEB界面的远程主机管理工具
- sagiegurari/cargo-make - Rust task runner and build tool.
- google/OpenSK - OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.
- epi052/feroxbuster - A fast, simple, recursive content discovery tool written in Rust.
- Esc4iCEscEsc/skanuvaty - Dangerously fast DNS/network/port scanner
- rustsec/rustsec - RustSec API & Tooling
- typst/typst - A new markup-based typesetting system that is powerful and easy to learn.
- mokeyish/smartdns-rs - A cross platform local DNS server (Dnsmasq like) written in rust to obtain the fastest website IP for the best Internet experience, supports DoT, DoQ, DoH, DoH3.
- getdozer/dozer - Dozer is a real-time data movement tool that leverages CDC from various sources and moves data into various sinks.
- CasualX/obfstr - Compiletime string literal obfuscation for Rust.
- Matrix-Zhang/tokio_kcp - A Kcp implementation for tokio
- web-infra-dev/rspack - The fast Rust-based web bundler with webpack-compatible API 🦀️
- rustcc/writing-an-os-in-rust - 《使用Rust编写操作系统》
- rustsbi/rustsbi-tutorial - rustsbi 开发教程
- ajmwagar/merino - :sheep: A SOCKS5 Proxy server written in Rust
- diatom-lang/diatom - The diatom programming language
- zblurx/impersonate-rs - Rusty Impersonate
- coral-xyz/sealevel-attacks - ☠️ Common Security Exploits and Protections on Solana
- cognitive-engineering-lab/aquascope - Interactive visualizations of Rust at compile-time and run-time
- ItsEthra/scotch - Create WASM plugins easily in Rust
- SUPERCILEX/forkfs - ForkFS allows you to sandbox a process's changes to your file system.
- wasmerio/wasmer - 🚀 The leading Wasm Runtime supporting WASIX and WASI
- AmbientRun/Ambient - The multiplayer game engine
- MythicAgents/thanatos - Mythic C2 agent targeting Linux and Windows hosts written in Rust
- neonmoe/minreq - Simple, minimal-dependency HTTP client.
- bincode-org/bincode - A binary encoder / decoder implementation in Rust.
- DvorakDwarf/Infinite-Storage-Glitch - ISG lets you use YouTube as cloud storage for ANY files, not just video
- slawlor/ractor - Rust actor framework
- coral-xyz/anchor - ⚓ Solana Sealevel Framework
- neodyme-labs/solana-poc-framework - A framework for creating PoC's for Solana Smart Contracts in a painless and intuitive way
- uutils/coreutils - Cross-platform Rust rewrite of the GNU coreutils
- neodyme-labs/solana-ctf - A collection of Solana CTF challenges
- js2xxx/oceanic - A PC desktop OS
- riscv-rust/k210-hal - Rust's hardware abstract layer (HAL) for K210 chip, a dual RV64GC SoC with hardware accelerated AI peripherals. Contributions welcomed!
- riscv-rust/k210-example - Example project for K210 SoC to show usage of k210-hal project
- fathyb/carbonyl - Chromium running inside your terminal
- pdeljanov/Symphonia - Pure Rust multimedia format demuxing, tag reading, and audio decoding library
- google/tarpc - An RPC framework for Rust with a focus on ease of use.
- jaemk/self_update - Self updates for rust executables
- trickster0/OffensiveRust - Rust Weaponization for Red Team Engagements.
- vnt-dev/vnt - An efficient VPN. 简便高效的异地组网、内网穿透工具
- rust-embedded/riscv-rt - Minimal runtime / startup for RISC-V CPU's.
- rust-embedded/rust-raspberrypi-OS-tutorials - :books: Learn to write an embedded OS in Rust :crab:
- Ogeon/palette - A Rust library for linear color calculations and conversion
- Nukesor/pueue - :stars: Manage your shell commands.
- skerkour/black-hat-rust - Applied offensive security with Rust - https://kerkour.com/black-hat-rust
- rhaiscript/rhai - Rhai - An embedded scripting language for Rust.
- iovxw/rssbot - Lightweight Telegram RSS notification bot. 用于消息通知的轻量级 Telegram RSS 机器人
- postrequest/link - link is a command and control framework written in rust
- darkarp/chromepass - Chromepass - Hacking Chrome Saved Passwords
- rust-windowing/glutin - A low-level library for OpenGL context creation
- meilisearch/meilisearch - A lightning-fast search API that fits effortlessly into your apps, websites, and workflow
- valeriansaliou/sonic - 🦔 Fast, lightweight & schema-less search backend. An alternative to Elasticsearch that runs on a few MBs of RAM.
- extism/extism - The framework for building with WebAssembly (wasm). Easily load wasm modules, move data, call functions, and build extensible apps.
- WirefishInc/wirefish - A blazingly fast multiplatform packet sniffer built with Tauri!
- GyulyVGC/sniffnet - Comfortably monitor your Internet traffic 🕵️♂️
- mttaggart/OffensiveNotion - Notion as a platform for offensive operations
- nix-rust/nix - Rust friendly bindings to *nix APIs
- solana-labs/solana - Web-Scale Blockchain for fast, secure, scalable, decentralized apps and marketplaces.
- larksuite/rsmpeg - A Rust crate that exposes FFmpeg's power as much as possible.
- mcronce/oci-registry
- AFLplusplus/LibAFL - Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
- rustsbi/rustsbi - RISC-V Supervisor Binary Interface (RISC-V SBI) library in Rust; runs on M or HS mode; good support for embedded Rust ecosystem. For binary download see https://github.com/rustsbi/prototyper.
- snapview/tokio-tungstenite - Future-based Tungstenite for Tokio. Lightweight stream-based WebSocket implementation
- cloudflare/quiche - 🥧 Savoury implementation of the QUIC transport protocol and HTTP/3
- RustScan/RustScan - 🤖 The Modern Port Scanner 🤖
- mkawalec/deluge - Deluge, not a stream
- fereidani/kanal - The fast sync and async channel that Rust deserves
- eycorsican/leaf - A versatile and efficient proxy framework with nice features suitable for various use cases.
- eminence/procfs - Rust library for reading the Linux procfs filesystem
- b23r0/Heroinn - A cross platform C2/post-exploitation framework.
- alacritty/alacritty - A cross-platform, OpenGL terminal emulator.
- smallnest/concurrency-programming-via-rust
- vectordotdev/vector - A high-performance observability data pipeline.
- bytecodealliance/wasmtime - A fast and secure runtime for WebAssembly
- rust-bakery/nom - Rust parser combinator framework
- TheAlgorithms/Rust - All Algorithms implemented in Rust
- qarmin/czkawka - Multi functional app to find duplicates, empty folders, similar images etc.
- veloren/veloren - An open world, open source voxel RPG inspired by Dwarf Fortress and Cube World. This repository is a mirror. Please submit all PRs and issues on our GitLab page.
- flamegraph-rs/flamegraph - Easy flamegraphs for Rust projects and everything else, without Perl or pipes <3
- rcore-os/rCore - Rust version of THU uCore OS. Linux compatible.
- dtolnay/rust-quiz - Medium to hard Rust questions with explanations
- quickwit-oss/tantivy - Tantivy is a full-text search engine library inspired by Apache Lucene and written in Rust
- zineland/zine - Zine - a simple and opinionated tool to build your own magazine.
- SeaQL/sea-orm - 🐚 An async & dynamic ORM for Rust
- rwf2/Rocket - A web framework for Rust.
- sunface/rust-by-practice - Learning Rust By Practice, narrowing the gap between beginner and skilled-dev through challenging examples, exercises and projects.
- pingcap/talent-plan - open source training courses about distributed database and distributed systems
- dani-garcia/vaultwarden - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs
- makepad/makepad - Makepad is a creative software development platform for Rust that compiles to wasm/webGL, osx/metal, windows/dx11 linux/opengl
- RazrFalcon/pico-args - An ultra simple CLI arguments parser.
- rust-unofficial/awesome-rust - A curated list of Rust code and resources.
- trickster0/NamelessC2 - Nameless C2 - A C2 with all its components written in Rust
- google/googletest-rust
- websockets-rs/rust-websocket - A WebSocket (RFC6455) library written in Rust
- sonodima/microseh - Structured Exception Handling (SEH) for Rust
- mullvad/mullvadvpn-app - The Mullvad VPN client app for desktop and mobile
- DioxusLabs/dioxus - Fullstack app framework for web, desktop, mobile, and more.
- kevinheavey/solders - A high-performance Python toolkit for Solana, written in Rust
- knsd/daemonize - Library for writing system daemons
- n0-computer/iroh - A toolkit for building distributed applications
- SoftbearStudios/bitcode - A binary encoder/decoder for Rust
- spacewalkhq/raft-rs - An understandable, fast and scalable Raft Consensus implementation
- proptest-rs/proptest - Hypothesis-like property testing for Rust
- safedv/Rustic64Shell - 64-bit, position-independent reverse tcp shell, built in Rust for Windows.
- alexliesenfeld/httpmock - HTTP mocking library for Rust
- tqwewe/kameo - Fault-tolerant Async Actors Built on Tokio
- lloydmeta/frunk - Funktional generic type-level programming in Rust: HList, Coproduct, Generic, LabelledGeneric, Validated, Monoid and friends.
- joaoviictorti/shadow-rs - Windows Kernel Rootkit in Rust
- rust-scraper/scraper - HTML parsing and querying with CSS selectors
- specta-rs/specta - Easily export your Rust types to other languages
- idekctf/idekctf-2022 - Upload of all challenges from idekCTF 2022
- vercel/turborepo - Build system optimized for JavaScript and TypeScript, written in Rust
- fujiapple852/trippy - A network diagnostic tool
- rune-rs/rune - An embeddable dynamic programming language for Rust.
- LiteSVM/litesvm
- taiki-e/pin-project - A crate for safe and ergonomic pin-projection.
- ratatui/ratatui - A Rust crate for cooking up terminal user interfaces (TUIs) 👨🍳🐀 https://ratatui.rs
- zlfn/rust-gb - Compile Rust code to GBZ80 (Gameboy Z80)
- TedDriggs/darling - A Rust proc-macro attribute parser
- Eliah-Lakhin/ad-astra - Scripting language for Rust.
- TheDan64/inkwell - It's a New Kind of Wrapper for Exposing LLVM (Safely)
- cloudflare/wildcard - Wildcard matching
- Vrtgs/thirtyfour - Selenium WebDriver client for Rust, for automated testing of websites
- pola-rs/polars - Dataframes powered by a multithreaded, vectorized query engine, written in Rust
- bornacvitanic/fumble - fumble is an oxidized (Rust-based) implementation of the original clumsy tool, designed to simulate adverse network conditions on Windows systems.
- Watfaq/clash-rs - custom protocol network proxy
- eclipse-iceoryx/iceoryx2 - Eclipse iceoryx2™ - true zero-copy inter-process-communication in pure Rust
- watchexec/watchexec - Executes commands in response to file modifications —— Maintenance status: on hold. I have no time for OSS currently; back late 2024.
- skyzh/mini-lsm - A tutorial of building an LSM-Tree storage engine in a week.
- tauri-apps/tauri - Build smaller, faster, and more secure desktop and mobile applications with a web frontend.
- KingBridgeSS/filegirl - 基于notify-rs实现的文件监控系统,支持自动备份、自动回滚、修改的文件自动记录。
- not-matthias/vmprotect-rs - Rust bindings for VMProtect.
- mlua-rs/mlua - High level Lua 5.4/5.3/5.2/5.1 (including LuaJIT) and Roblox Luau bindings to Rust with async/await support
- casey/just - 🤖 Just a command runner
- chroma-core/chroma - the AI-native open-source embedding database
- glzr-io/zebar - Zebar is a tool for creating customizable and cross-platform taskbars, desktop widgets, and popups.
- rust-lang/rust-analyzer - A Rust compiler front-end for IDEs
- qdrant/qdrant - Qdrant - High-performance, massive-scale Vector Database and Vector Search Engine for the next generation of AI. Also available in the cloud https://cloud.qdrant.io/
- metaworm/luac-parser-rs - lua bytecode parser written in Rust using nom, part of metaworm's lua decompiler, support lua51/lua52/lua53/lua54/luajit/luau https://luadec.metaworm.site/
- safedv/RustiveDump - LSASS memory dumper using only NTAPIs, creating a minimal minidump, built in Rust with no_std and independent of the C runtime (CRT). It can be compiled as shellcode (PIC), supports XOR encryption, an
- safedv/Rustic64 - 64-bit, position-independent implant template for Windows in Rust.
- denoland/rustls-tokio-stream - AsyncRead/AsyncWrite interface for rustls-on-Tokio
- joaoviictorti/coffeeldr - A COFF Loader written in Rust
- emanuele-em/proxelar - A MITM Proxy 🧑💻! Toolkit for HTTP/1, HTTP/2, and WebSockets with SSL/TLS Capabilities. Learning Project.
- jam1garner/owo-colors - A zero-allocation no_std-compatible zero-cost way to add color to your Rust terminal
- gleam-lang/gleam - ⭐️ A friendly language for building type-safe, scalable systems!
- bensadeh/tailspin - 🌀 A log file highlighter
- zed-industries/zed - Code at the speed of thought – Zed is a high-performance, multiplayer code editor from the creators of Atom and Tree-sitter.
- NiiightmareXD/windows-capture - Fastest Windows Screen Capture Library For Rust And Python 🔥
- meeting-rs/meeting.rs - Private one to one realtime video meeting.⚡
- haoami/BypassAvStudy - rust 免杀记录学习
- editso/fuso - 一款体积小, 快速, 稳定, 高效, 轻量的内网穿透, 端口转发工具 支持多连接,级联代理,传输加密 (A small volume, fast, stable, efficient, and lightweight intranet penetration, port forwarding tool supports multiple connections, cascading proxy,
- theseus-os/Theseus - Theseus is a modern OS written from scratch in Rust that explores 𝐢𝐧𝐭𝐫𝐚𝐥𝐢𝐧𝐠𝐮𝐚𝐥 𝐝𝐞𝐬𝐢𝐠𝐧: closing the semantic gap between compiler and hardware by maximally leveraging the power of language safety and a
- mattwparas/steel - An embedded scheme interpreter in Rust
- next-hat/nanocl - Distributed System that simplifies the management of containers and virtual machines.
-
Scala
- joernio/joern - Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
-
Shell
- Mon-ius/Docker-Warp-Socks - Connet to CloudFlare WARP, exposing `socks5` proxy all together.
- chuxiuhong/chuxiuhong-rust-patterns-zh - Rust设计模式中文翻译
- RoderickChan/docker_pwn_env - Debug pwn using docker image
- ffffffff0x/f8x - 红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool
- neargle/my-re0-k8s-security - :atom: [WIP] 整理过去的分享,从零开始的Kubernetes攻防 🧐
- The-Z-Labs/linux-exploit-suggester - Linux privilege escalation auditing tool
- zardus/ctf-tools - Some setup scripts for security research tools.
- reeceyng/v2ray-agent - 【纯净版】原八合一共存脚本,去除广告等推广信息,支持xtls-rprx-vision
- arget13/DDexec - A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
- MichaelCade/90DaysOfDevOps - This repository started out as a learning in public project for myself and has now become a structured learning map for many in the community. We have 3 years under our belt covering all things DevOps
- deluan/zsh-in-docker - Install Zsh, Oh My Zsh and plugins inside a Docker container with one line!
- TH3xACE/SUDO_KILLER - A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges
- al0ne/LinuxCheck - Linux应急处置/信息搜集/漏洞检测工具,支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查
-
Solidity
- d-xo/weird-erc20 - weird erc20 tokens
- Fankouzu/my-uniswap-v2-core - Uniswap V2 中文注释,中文文档
- SunWeb3Sec/DeFiHackLabs - Reproduce DeFi hacked incidents using Foundry.
- Cyfrin/security-and-auditing-full-course-s23 - The ultimate, most advanced, security, DeFi, assembly, web3 auditor course ever created.
- paradigmxyz/paradigm-ctf-2023
- WTFAcademy/WTF-CTF - Collect CTFs related to evm, and provide solutions, using Foundry. 收集 EVM 类的 CTF 挑战,并提供解决方案。
- Dapp-Learning-DAO/Dapp-Learning - Dapp learning project for developers at all stages. Becoming and cultivating sovereign individuals. Nonprofit organization.
- minaminao/ctf-blockchain - A summary of 200+ CTF blockchain challenges
- Uniswap/v4-core - 🦄 🦄 🦄 🦄 Core smart contracts of Uniswap v4
- ZhangZhuoSJTU/Web3Bugs - Demystifying Exploitable Bugs in Smart Contracts
- crytic/not-so-smart-contracts - Examples of Solidity security issues
- AmazingAng/WTF-Solidity - WTF Solidity 极简入门教程,供小白们使用。Now supports English! 官网: https://wtf.academy
- dukedaily/solidity-expert - 4年打磨-2022年海外一线大厂-以太坊开发教程(a solidity tutorial makes you a dapp expert)WIP
-
Starlark
- bazelbuild/starlark - Starlark Language
-
Stylus
- saicaca/hexo-theme-vivia - A clean and minimalist theme for Hexo.
- 91ac0m0/journally
-
Svelte
- saadeghi/daisyui - 🌼 🌼 🌼 🌼 🌼 The most popular, free and open-source Tailwind CSS component library
-
TeX
- yuange1024/ethereum_yellowpaper - 以太坊黄皮书中文版
- shuosc/SHU-Bachelor-Thesis-Typst - 上海大学本科生毕业论文Typst模板
- BYRIO/BUPTBachelorThesis - A LaTeX Template for BUPT Bachelor Thesis (updated in 2023)
-
TypeScript
- RSSNext/follow - 🧡 Next generation information browser
- jackyzha0/quartz - 🌱 a fast, batteries-included static-site generator that transforms Markdown content into fully functional websites
- yang991178/fluent-reader - Modern desktop RSS reader built with Electron, React, and Fluent UI
- n8n-io/n8n - Free and source-available fair-code licensed workflow automation tool. Easily automate tasks across different services.
- mantinedev/mantine - A fully featured React components library
- mnixry/hacktricks-press - Porting HackTricks to VitePress
- ba-archive/blue-archive - 碧蓝档案的档案。我们期待着更多老师的加入,欢迎通过邮件、B站私信或 discussion 联系我们
- streamich/react-use - React Hooks — 👍
- honojs/hono - Web framework built on Web Standards
- aidenybai/million - Optimize React performance and make your React 70% faster in minutes, not months.
- mnixry/binutils-wasm - GNU/Binutils WebAssembly Build: Unleashing binary operations for the browser and node, with Assembler / Disassembler online.
- pmndrs/zustand - 🐻 Bear necessities for state management in React
- BartoszJarocki/cv - Print-friendly, minimalist CV page
- softprops/action-gh-release - 📦 :octocat: GitHub Action for creating GitHub Releases
- nuxt/nuxt - The Intuitive Vue Framework.
- remotion-dev/remotion - 🎥 Make videos programmatically with React
- abrahamjuliot/creepjs - Creepy device and browser fingerprinting
- oleeskild/obsidian-digital-garden
- msgbyte/tailchat - Next generation noIM application in your own workspace, not only another Slack/Discord/Rocket.chat
- Innei/Shiro - 📜 A minimalist personal website embodying the purity of paper and freshness of snow.
- xtermjs/xterm.js - A terminal for the web
- uiwjs/react-login-page - Some `react` login pages, which can be used quickly after installation.
- catppuccin/catppuccin - 😸 Soothing pastel theme for the high-spirited!
- tailwindlabs/headlessui - Completely unstyled, fully accessible UI components, designed to integrate beautifully with Tailwind CSS.
- vuepress-reco/vuepress-theme-reco - 🎨 This is the repo for vuepress-theme-reco 2.
- RocketChat/Rocket.Chat - The communications platform that puts data protection first.
- yaklang/yakit - Cyber Security ALL-IN-ONE Platform
- withastro/astro - The web framework for content-driven websites. ⭐️ Star to support our work!
- Crossbell-Box/xLog - 🪽 An open-source creative community written on the blockchain.
- creativetimofficial/material-tailwind - @material-tailwind is an easy-to-use components library for Tailwind CSS and Material Design.
- excalidraw/excalidraw - Virtual whiteboard for sketching hand-drawn like diagrams
- slidevjs/slidev - Presentation Slides for Developers
- carloscuesta/gitmoji - An emoji guide for your commit messages. 😜
- RealKai42/qwerty-learner - 为键盘工作者设计的单词记忆与英语肌肉记忆锻炼软件 / Words learning and English muscle memory training software designed for keyboard workers
- shadcn-ui/ui - Beautifully designed components that you can copy and paste into your apps. Accessible. Customizable. Open Source.
- sismo-core/sismo-badges - Contracts of the Sismo Badge Minting Protocol
- novuhq/novu - Open-Source Notification Platform. Embeddable Notification Center, E-mail, Push and Slack Integrations.
- spacedriveapp/spacedrive - Spacedrive is an open source cross-platform file explorer, powered by a virtual distributed filesystem written in Rust.
- storybookjs/storybook - Storybook is the industry standard workshop for building, documenting, and testing UI components in isolation
- DIYgod/RSSHub - 🧡 Everything is RSSible
- toeverything/AFFiNE - There can be more than Notion and Miro. AFFiNE(pronounced [ə‘fain]) is a next-gen knowledge base that brings planning, sorting and creating all together. Privacy first, open-source, customizable and r
- chezhe/aleph-desktop - Aleph is a cross-platform RSS Reader & Podcast client, built with Tauri
- t3-oss/create-t3-app - The best way to start a full-stack, typesafe Next.js app
- 91ac0m0/new-word-discoverer
- maru-re/maru - 「唱歌學日文」 - 基於 YouTube 的歌曲歌詞閱讀器
- MuelNova/MuelNova.github.io - Resume Page for https://zm.md
- RSSNext/Follow - 🧡 Next generation information browser.
- quanru/obsidian-lifeos - Obsidian Plugin for combining P.A.R.A with Periodic Notes(LifeOS for Obsidian)
- NapNeko/NapCatQQ - 现代化的基于 NTQQ 的 Bot 协议端实现
- code-hike/codehike - Build rich content websites with Markdown and React
- EpicsDAO/solv - 🔥 solv - CLI Tool for Managing Solana Validators
- Lissy93/web-check - 🕵️♂️ All-in-one OSINT tool for analysing any website
- hepengwei/visualization-collection - 🌈 一个专注于前端视觉效果的集合应用,包含CSS动效、Canvas动画、Three.js3D、人工智能应用等上百个案例(持续更新)
-
Typst
- touying-typ/touying - Touying is a powerful package for creating presentation slides in Typst.
- QQKdeGit/bupt-typst - 北京邮电大学本科生毕设论文 Typst 模板。Typst template for dissertations in Beijing University of Posts and Telecommunications (BUPT).
-
V
- vlang/v - Simple, fast, safe, compiled language for developing maintainable software. Compiles itself in <1s with zero library dependencies. Supports automatic C => V translation. https://vlang.io
-
VBA
- mdsecactivebreach/SharpShooter - Payload Generation Framework
-
VBScript
- rootclay/WMIHACKER - A Bypass Anti-virus Software Lateral Movement Command Execution Tool
-
Visual Basic .NET
- DosX-dev/UPX-Patcher - Make "upx -d" unpacking impossible!
-
Vue
- DeimosC2/DeimosC2 - DeimosC2 is a Golang command and control framework for post-exploitation.
- nuxt/ui - A UI Library for Modern Web Apps, powered by Vue & Tailwind CSS.
- Zerx0r/Kage - Kage is Graphical User Interface for Metasploit Meterpreter and Session Handler
- chaitin/xray - 一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
- antfu-collective/icones - ⚡️ Icon Explorer with Instant searching, powered by Iconify
-
WebAssembly
- WebAssembly/binaryen - Optimizer and compiler/toolchain library for WebAssembly
-
XSLT
- TideSec/BypassAntiVirus - 远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
- LOLBAS-Project/LOLBAS - Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
-
Zig
- The-Z-Labs/bof-launcher - Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications
-
LLVM
- bluesadi/Pluto - Obfuscator based on LLVM 14.0.6
-
Astro
- saicaca/fuwari - ✨A static blog template built with Astro.
-
Handlebars
- ibeatai/beat-ai - <Beat AI> 又名 <零生万物> , 是一本专属于软件开发工程师的 AI 入门圣经,手把手带你上手写 AI。从神经网络到大模型,从高层设计到微观原理,从工程实现到算法,学完后,你会发现 AI 也并不是想象中那么高不可攀、无法战胜,Just beat it !
-
CMake
- Sndav/mac-capture-x - MacOS 超级屏幕录制,支持排除特定应用进行屏幕录制
Programming Languages
Categories
Rust
354
Python
116
Others
112
Go
88
C
66
Java
60
C++
55
TypeScript
53
JavaScript
31
HTML
24
C# #
21
Shell
13
PHP
13
Solidity
13
CSS
10
PowerShell
9
Jupyter Notebook
8
Dart
7
Nim
7
Assembly
6
Vue
5
Markdown
4
Dockerfile
4
Kotlin
3
TeX
3
Ruby
3
Lua
3
Elixir
3
Jinja
2
Stylus
2
License
2
OCaml
2
XSLT
2
Typst
2
Scala
1
Ren'Py
1
CMake
1
V
1
Svelte
1
WebAssembly
1
Handlebars
1
LLVM
1
Perl
1
Makefile
1
VBA
1
Clojure
1
Starlark
1
Batchfile
1
VBScript
1
Astro
1
Zig
1
Visual Basic .NET
1
Rich Text Format
1
Sub Categories
Keywords
rust
212
security
70
windows
51
linux
46
python
36
redteam
30
ctf
30
javascript
27
golang
27
pentesting
27
security-tools
25
react
25
hacking
23
java
22
docker
22
macos
22
pentest
20
proxy
20
typescript
20
blockchain
20
ethereum
19
exploit
19
terminal
18
c
18
cli
18
reverse-engineering
17
android
16
http
15
penetration-testing
15
wasm
15
pentest-tool
15
go
15
rust-lang
14
web
14
networking
13
awesome
13
cpp
13
webassembly
12
c2
12
static-analysis
12
ssh
12
red-team
12
cybersecurity
12
command-line
12
socks5
12
vulnerability
11
database
11
solidity
11
awesome-list
11
kernel
11