Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.
Awesome Lists | Featured Topics | Projects
https://github.com/NJITICC/awesome-nicc

Resources at NICC
https://github.com/NJITICC/awesome-nicc
List: awesome-nicc
Last synced: about 1 month ago
JSON representation
Resources at NICC
Host: GitHub
URL: https://github.com/NJITICC/awesome-nicc
Owner: NJITICC
License: bsd-3-clause
Created: 2023-04-13T02:14:19.000Z (over 1 year ago)
Default Branch: main
Last Pushed: 2023-04-13T22:38:41.000Z (over 1 year ago)
Last Synced: 2024-04-10T13:55:21.043Z (5 months ago)
Size: 4.88 KB
Stars: 1
Watchers: 0
Forks: 0
Open Issues: 2
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project

ultimate-awesome - awesome-nicc - Resources at NICC. (Other Lists / PowerShell Lists)
README

        # awesome-nicc

[![Awesome](_static/awesome.png)](https://github.com/sindresorhus/awesome)

A list of cybersecurity resources from the NJIT Information and Cybersecurity Club.

[HTML version](https://njiticc.com/resources), [Markdown version](https://github.com/njiticc/awesome-nicc).

--------------------

## Table of contents

- [Entries](#entries)

  - [Competition](#competition)

  - [Cracking](#cracking)

  - [Crypto](#crypto)

  - [Employment](#employment)

  - [Exploitation](#exploitation)

  - [Forensics](#forensics)

  - [Monitoring](#monitoring)

  - [Networking](#networking)

  - [NJIT Student Access](#njit-student-access)

  - [Operating System](#operating-system)

  - [OSINT](#osint)

  - [Programming](#programming)

  - [Pwn](#pwn)

  - [Rev](#rev)

  - [Scholarship](#scholarship)

  - [Steg](#steg)

  - [Sysadmin](#sysadmin)

  - [Training](#training)

  - [Video](#video)

  - [Web](#web)

- [List of Licenses](#list-of-licenses)

- [Contributing](#contributing)

- [License](#license)

--------------------

## Entries

### Competition

**[`^        back to top        ^`](#awesome-nicc)**

Cybersecurity competitions and resources for them.

- [NCAE CyberGames](https://ncaecybergames.org/) - \"NCAE Cyber Games is dedicated to inspiring college students to enter the exciting (and sometimes profitable!) realm of cyber competitions.\" `` ``

- [Secure the Future](https://docs.google.com/document/d/1bNg38iJmRD1FPvAkjzAnQBTQYWzuKegm/edit) - Palo Alto Network's academic cybersecurity competition. `` ``

### Cracking

**[`^        back to top        ^`](#awesome-nicc)**

Tools to be used for username/password cracking.

- [CUPP](https://github.com/Mebus/cupp) - Common User Password Profiler

Generates password word lists based knowledge known about a user. `GPL-3.0` `Windows/Mac/Linux`

- [Hashcat](https://hashcat.net) - Password hash cracker. ([Source Code](https://github.com/hashcat/hashcat)) `MIT` `Windows/Mac/Linux`

- [Hydra](https://github.com/vanhauser-thc/thc-hydra) - Online password brute-force tool for SSH, RDP, HTTP, etc. `AGPL-3.0` `Mac/Linux`

- [John the Ripper](https://www.openwall.com/john) - Password hash cracker. ([Source Code](https://github.com/openwall/john)) `GPL-2.0` `Mac/Linux`

### Crypto

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to cryptography.

- [CyberChef](https://cyberchef.org) - \"The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis.\" ([Source Code](https://github.com/gchq/CyberChef)) `Apache-2.0` `Web App`

- [Dcode.fr](https://dcode.fr/en) - Many encode and decode tools for different ciphers. `Proprietary/Freeware` `Web App`

- [F00L.DE](https://f00l.de/hacking) - Collection of miscellaneous tools such as vigenere cipher cracking, file analysis, etc. `Freeware/Source Given with No License` `Web App/Windows/Mac/Linux`

- [Rapid Tables](https://rapidtables.com) - Collection of different converter tools and calculators. `Proprietary/Freeware` `Web App`

### Employment

**[`^        back to top        ^`](#awesome-nicc)**

Resources for finding jobs.

- [cloudtango](https://www.cloudtango.net/) - Catalog of MSPs (managed service providers). `Proprietary/Freeware` `Web App`

- [FederalPay.org](https://federalpay.org) - \"We are a non-governmental information portal built by federal employees, for federal employees.\" `Proprietary/Freeware` `Web App`

- [Hiration](https://njit.hiration.com/app/resume-builder) - Cover letter and resume builder. `Proprietary/Freeware` `Web App`

- [Zerodium](https://zerodium.com/program.html) - Bug bounty program. `` ``

### Exploitation

**[`^        back to top        ^`](#awesome-nicc)**

General exploitation category for things that don't fit in other places.

- [GTFOBins](https://gtfobins.github.io) - \"GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems.\" ([Source Code](https://github.com/GTFOBins/GTFOBins.github.io)) `GPL-3.0` `Web App`

- [LOLBAS](https://lolbas-project.github.io) - \"The goal of the LOLBAS project is to document every binary, script, and library that can be used for Living Off The Land techniques.\" ([Source Code](https://github.com/LOLBAS-Project/LOLBAS)) `GPL-3.0` `Web App`

- [Payloads All The PDFs](https://github.com/luigigubello/PayloadsAllThePDFs) - \"A list of crafted malicious PDF files to test the security of PDF readers and tools.\" `Apache-2.0` ``

### Forensics

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to computer forensics.

- [binwalk](https://github.com/ReFirmLabs/binwalk) - Binwalk is a fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images. `MIT` `Mac/Linux`

- [gpp-decrypt](https://blog.carnal0wnage.com/2012/10/group-policy-preferences-and-getting.html) - Ruby script used to decrypt Microsoft Group Policy preferences strings. Included in Kali by default. ([Source Code](https://gitlab.com/kalilinux/packages/gpp-decrypt)) `Freeware/Source Given with No License` `Windows/Mac/Linux`

- [Microsoft Security Complaince Toolkit](https://www.microsoft.com/en-us/download/details.aspx?id=55319) - \"Policy Analyzer is a utility for analyzing and comparing sets of Group Policy Objects (GPOs). It can highlight when a set of Group Policies has redundant settings or internal inconsistencies, and can highlight the differences between versions or sets of Group Policies.\" `Proprietary/Freeware` `Windows`

- [PSBits Offline GPO Analysis](https://github.com/gtworek/PSBits/blob/master/GPO) - Analyze Microsoft Group Policy files offline. `Unlicense` `Windows`

### Monitoring

**[`^        back to top        ^`](#awesome-nicc)**

Tools to be used for monitoring systems and networks.

- [Datadog](https://datadoghq.com) - Infrastructure monitoring tool.

10 servers free for 2 years via [GitHub Education Pack](https://education.github.com/pack/offers#datadog). `Proprietary/Freemium` `Web App/Windows/Mac/Linux`

### Networking

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to computer networking.

- [AC Hunter](https://www.activecountermeasures.com/ac-hunter-community-edition) - Tool for network C2 monitoring. `Proprietary/Freemium` `Linux`

- [Canarytokens](https://canarytokens.org) - \"Canarytokens helps track activity and actions on your network.\"

\"Canarytokens are like motion sensors for your networks, computers and clouds. You can put them in folders, on network devices and on your phones.\" ([Source Code](https://github.com/thinkst/canarytokens)) `GPL-3.0` `Web App`

- [NetworkMiner](https://www.netresec.com/?page=NetworkMiner) - NetworkMiner is an open source network forensics tool that extracts artifacts, such as files, images, emails and passwords, from captured network traffic in PCAP files. ([Source Code](https://www.netresec.com/?page=NetworkMinerSourceCode)) `GPL-2.0` `Windows/Linux`

- [Nmap](https://nmap.org) - Network port scanner tool. ([Source Code](https://github.com/nmap/nmap)) `Nmap-PSL` `Windows/Mac/Linux`

- [Snort](https://snort.org) - IDS/IPS that does packet monitoring and logging based on rules. ([Source Code](https://github.com/snort3/snort3)) `GPL-2.0` `Windows/Linux`

- [Suricata](https://suricata.io) - IDS/IPS that does packet monitoring and logging based on rules. Similar to Snort but multithreaded. ([Source Code](https://github.com/OISF/suricata)) `GPL-2.0` `Windows/Linux`

- [tcpdump](https://tcpdump.org) - CLI data network packet analyzer. Can dump to pcap files. ([Source Code](https://github.com/the-tcpdump-group/tcpdump)) `BSD-3-Clause` `Windows/Mac/Linux`

- [Wireshark](https://wireshark.org) - Network packet sniffer that can capture from interfaces in real time or read pcap files. ([Source Code](https://gitlab.com/wireshark/wireshark)) `GPL-2.0` `Windows/Mac/Linux`

### NJIT Student Access

**[`^        back to top        ^`](#awesome-nicc)**

Software that is given to us as NJIT students.

### Operating System

**[`^        back to top        ^`](#awesome-nicc)**

Computer [operating systems](https://en.wikipedia.org/wiki/Operating_system).

- [BlackArch Linux](https://blackarch.org) - \"BlackArch Linux is an Arch Linux-based penetration testing distribution for penetration testers and security researchers.\" ([Source Code](https://github.com/BlackArch/blackarch)) `Multiple Licenses` `Linux`

- [Kali Linux](https://kali.org) - Pentesting focused OS based on Debian Linux. Many cybersecurity tools are preinstalled. ([Source Code](https://gitlab.com/kalilinux)) `Multiple Licenses` `Linux`

- [Parrot Linux](https://parrotsec.org) - Another pentesting focused OS based on Kali. ([Source Code](https://github.com/parrotsec)) `Multiple Licenses` `Linux`

- [VirtualBox](https://virtualbox.org) - Virtual machine hypervisor. Generally used to create Kali or Parrot VMs separate from your host operating system. ([Source Code](https://www.virtualbox.org/browser/trunk)) `GPL-3.0` `Windows/Mac/Linux`

### OSINT

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to open source intelligence.

- [OSINT Framework](https://osintframework.com) - Guide to assist in gathering information while performing OSINT. ([Source Code](https://github.com/lockfale/osint-framework)) `MIT` `Web App`

- [OSINT Techniques Book](https://inteltechniques.com/book1.html) - \"Resources for Uncovering Online Information\"

By Michael Bazzell. `` `Book`

### Programming

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to programming.

- [Spectra Assure Community](https://secure.software) - \"Spectra Assure Community monitors open source packages to identify malware, code tampering and indicators of software supply chain attacks.\" `Proprietary/Freemium` `Web App`

### Pwn

**[`^        back to top        ^`](#awesome-nicc)**

Tools related to exploting binaries (common in CTFs).

- [Metasploit](https://metasploit.com) - \"The world’s most used penetration testing framework.\" ([Source Code](https://github.com/rapid7/metasploit-framework)) `BSD-3-Clause` `Windows/Mac/Linux`

- [Pwntools](https://github.com/Gallopsled/pwntools) - Pwntools is a python ctf library designed for rapid exploit development. `Multiple Licenses` `Mac/Linux`

### Rev

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to reverse engineering software.

- [dnSpy](https://github.com/dnSpy/dnSpy) - .NET / Unity decompiler. `GPL-3.0` `Windows`

- [Ghidra](https://ghidra-sre.org) - Suite of tools for software reverse engineering developed by the NSA. ([Source Code](https://github.com/NationalSecurityAgency/ghidra)) `Apache-2.0` `Windows/Mac/Linux`

- [ILSpy](https://github.com/icsharpcode/ILSpy) - .NET / Unity decompiler. `MIT` `Windows/Mac/Linux`

- [Malcat](https://malcat.fr) - \"Malcat is a feature-rich hexadecimal editor / disassembler for Windows and Linux targeted to IT-security professionals.\" `Proprietary/Freemium` `Windows/Linux`

### Scholarship

**[`^        back to top        ^`](#awesome-nicc)**

Education scholarship programs.

- [National Cyber Scholarship Foundation](https://nationalcyberscholarship.org) - \"National Cyber Scholarship Foundation (NCSF) has launched a national initiative to identify and develop a new generation of Cyber Stars.\" `` ``

- [NJIT Secure Computing Initiative](https://sci.njit.edu) - \"The NJIT Secure Computing Initiative (SCI) seeks to award scholarships as part of the CyberCorps® Scholarship for Service (SFS) program.\" `` ``

### Steg

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to [steganography](https://en.wikipedia.org/wiki/Steganography).

- [Aperisolve](https://aperisolve.com) - Steganography analysis for multiple tools combined into one. ([Source Code](https://github.com/Zeecka/AperiSolve)) `Freeware/Source Given with No License` `Web App`

- [Deepsound](https://github.com/Jpinsoft/DeepSound) - Hides files within audio. `Freeware/Source Given with No License` `Windows`

- [IronGeek Unicode Steg](https://irongeek.com/i.php?page=security/unicode-steganography-homoglyph-encoder) - Hides text within text. `Proprietary/Freeware` `Web App`

- [OpenStego](https://openstego.com) - Stegonography application for data hiding and watermarking. ([Source Code](https://github.com/syvaidya/openstego)) `GPL-2.0` `Windows/Mac/Linux`

- [OutGuess](https://github.com/resurrecting-open-source-projects/outguess) - \"Outguess is a universal steganographic tool that allows the insertion of hidden information into the redundant bits of data sources.\" `BSD-4-Clause` `Linux`

- [QRazyBox](https://merri.cx/qrazybox) - \"QR Code Analysis and Recovery Toolkit\" ([Source Code](https://github.com/merricx/qrazybox)) `MIT` `Web App`

- [Stegdetect](https://web.archive.org/web/20150415220609/http://www.outguess.org/download.php) - Abandoned tool for detecting steganographic content in images. `BSD-4-Clause` `Linux`

- [StegOnline](https://georgeom.net/StegOnline/upload) - Online Image Steganography Tool for Embedding and Extracting data through LSB techniques. ([Source Code](https://github.com/Ge0rg3/StegOnline)) `WTFPL` `Web App`

### Sysadmin

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to systems administration.

- [Awesome Selfhosted](https://awesome-selfhosted.net) - \"This is a list of Free Software network services and web applications which can be hosted on your own server(s)..\" ([Source Code](https://github.com/awesome-selfhosted/awesome-selfhosted)) `CC-BY-SA-3.0` `Web App`

- [NetBox](https://netboxlabs.com/docs/netbox/en/stable/introduction) - Network engineer tool for IPAM, provisioning, routing, diagrams, etc. ([Source Code](https://github.com/netbox-community/netbox)) `Apache-2.0` `Linux`

### Training

**[`^        back to top        ^`](#awesome-nicc)**

Training resources.

- [10 Types of Application Security Testing Tools](https://insights.sei.cmu.edu/blog/10-types-of-application-security-testing-tools-when-and-how-to-use-them) - List of different application security testing tools and methods. `` `Web App`

- [A Graduate Course in Applied Cryptography Book](https://toc.cryptobook.us/book.pdf) - \"Throughout the book we present many case studies to survey how deployed systems operate. We describe common mistakes to avoid as well as attacks on real-world systems that illustrate the importance of rigor in cryptography.\"

By Dan Boneh and Victor Shoup. `` `Book`

- [Antisyphon Training](https://antisyphontraining.com) - Approachable, accessible, and affordable public and private training. `Proprietary/Freemium` `Web App`

- [Awesome CTF](https://github.com/apsdehal/awesome-ctf) - \"A curated list of Capture The Flag (CTF) frameworks, libraries, resources, softwares and tutorials.\" `CC0-1.0` `Web App`

- [Backdoors & Breaches](https://blackhillsinfosec.com/projects/backdoorsandbreaches) - Incident response card game. Can buy card deck or play online. `` `Web App`

- [Clark](https://clark.center) - Largest platform for building and sharing free cybersecurity curriculum. `Proprietary/Freeware` `Web App`

- [CMD Challenge](https://cmdchallenge.com) - \"Test your shell knowledge by taking the CMD Challenge\" ([Source Code](https://gitlab.com/jarv/cmdchallenge)) `MIT` `Web App`

- [Codecademy Cybersecurity](https://www.codecademy.com/catalog/subject/cybersecurity) - Contains multiple cybersecurity focused courses. `Proprietary/Freemium` `Web App`

- [Competitive Programmer’s Handbook](https://cses.fi/book/book.pdf) - \"The purpose of this book is to give you a thorough introduction to competitive programming.\"

By Antti Laaksonen. `` `Book`

- [Computer Systems Security: Planning For Success](https://web.njit.edu/~rt494/security) - \"The text, labs, and review questions in this book are designed as an introduction to the applied topic of computer security.\"

By Ryan Tolboom. `CC-BY-NC-SA-4.0` `Web App/Book`

- [ForeverCTF](https://forever.isss.io) - CTF that is up indefinitely for practice. `Proprietary/Freeware` `Web App`

- [GCA Cybersecurity Toolkit](https://gcatoolkit.org/individuals) - A toolkit to help improve your personal cyber hygiene. `Proprietary/Freeware` `Web App`

- [Google Dorking Tutorial](https://www.simplilearn.com/tutorials/cyber-security-tutorial/google-dorking) - Tutorial on Google "dorking" which is the art of using search operators to find what you want. `Proprietary/Freeware` `Web App`

- [HackTheBox](https://hackthebox.com) - Test your skills against a variety of hacking labs! `Proprietary/Freemium` `Web App`

- [HackTricks](https://book.hacktricks.xyz/) - Collection of hacking tricks: e.g reverse shells, encoded text for web, etc. ([Source Code](https://github.com/HackTricks-wiki/hacktricks)) `CC-BY-NC-4.0` `Web App`

- [How To Secure A Linux Server](https://github.com/imthenachoman/How-To-Secure-A-Linux-Server) - \"An evolving how-to guide for securing a Linux server.\" `CC-BY-SA-4.0` ``

- [DNS Remote Code Execution](https://www.youtube.com/watch?v=xWoQ-E8n4B0) - Video series exploiting WAN vulnerabilities in network devices. `` ``

- [Intro to Binary Exploitation](https://www.youtube.com/playlist?list=PLHUKi1UlEgOIc07Rfk2Jgb5fZbxDPec94) - Intro to Binary Exploitation video series. `` ``

- [Kontra Application Security Training](https://application.security) - Interactive application security training. `Proprietary/Freemium` `Web App`

- [Kurose/Ross Networking Book](https://gaia.cs.umass.edu/kurose_ross/lectures.php) - Material on understanding computer networks.

By Jim Kurose and Keith Ross. `Proprietary/Freeware` `Web App/Book`

- [learnpython.org](https://learnpython.org) - Python references and tutorials. ([Source Code](https://github.com/jsonwebtoken/jsonwebtoken.github.io)) `Proprietary/Freeware` `Web App`

- [Linux auditd for Threat Detection](https://izyknows.medium.com/linux-auditd-for-threat-detection-d06c8b941505) - Blog post on configuring auditd on Linux systems. `` `Web App/Book`

- [Metasploitable](https://docs.rapid7.com/metasploit/metasploitable-2) - \"Metasploitable is an intentionally vulnerable Linux virtual machine.\" ([Source Code](https://sourceforge.net/projects/metasploitable)) `Multiple Licenses` `Linux`

- [CISA National Initiative for Cybersecurity Careers and Studies](https://niccs.cisa.gov) - \"NICCS is the premier online resource for cybersecurity training, education, and career information.\" `Proprietary/Freeware` `Web App`

- [Nightmare Bin/Rev Guide](https://guyinatuxedo.github.io) - Nightmare is an intro to binary exploitation / reverse engineering course based around ctf challenges. ([Source Code](https://github.com/guyinatuxedo/nightmare)) `Freeware/Source Given with No License` `Web App`

- [OverTheWire](https://overthewire.org/wargames) - Learn Linux basics through fun-filled games. `Proprietary/Freeware` `Web App`

- [Payloads All The Things](https://swisskyrepo.github.io/PayloadsAllTheThings) - \"A list of useful payloads and bypasses for Web Application Security.\" ([Source Code](https://github.com/swisskyrepo/PayloadsAllTheThings)) `MIT` `Web App`

- [PentesterLab](https://pentesterlab.com) - Learn how to manually exploit web applications! `Proprietary/Freemium` `Web App`

- [picoGym](https://picoctf.org) - CTF that is up indefinitely for practice. ([Source Code](https://salsa.debian.org/pkg-security-team/dirb)) `Proprietary/Freeware` `Web App`

- [PortSwigger Web Security Academy](https://portswigger.net/web-security) - Free, online web security training from the creators of BurpSuite! `Proprietary/Freeware` `Web App`

- [Security Certification Roadmap](https://pauljerimy.com/security-certification-roadmap) - A roadmap of differnet cybersecurity certifications. ([Source Code](https://github.com/PaulJerimy/SecCertRoadmapHTML)) `CC-BY-SA-4.0` `Web App`

- [shellscript.sh](https://shellscript.sh) - Tutorials for bash scripting. `Proprietary/Freeware` `Web App`

- [Snyk CTF 101 Workshop](https://go.snyk.io/capture-the-flag-101-workshop.html) - \"Check out this hands-on, virtual workshop to learn how to solve Capture the Flag (CTF) challenges, including pwn and web. After the workshop, you'll have the security skills and experience to compete in CTFs.\" `Proprietary/Freeware` `Web App`

- [TryHackMe](https://tryhackme.com) - Hand-on cyber security training through real-world scenarios. `Proprietary/Freemium` `Web App`

- [VulnHub](https://vulnhub.com) - Collection of vulnerable VM images. `Multiple Licenses` ``

### Video

**[`^        back to top        ^`](#awesome-nicc)**

Videos.

### Web

**[`^        back to top        ^`](#awesome-nicc)**

Anything related to websites and website exploitation.

- [BurpSuite](https://portswigger.net/burp) - For pentesting web applications. Can replay and modify requests, fuzz request values, proxy between the browser and site, etc. `Proprietary/Freemium` `Windows/Mac/Linux`

- [Dirb](https://salsa.debian.org/pkg-security-team/dirb) - Dictionary scan of web servers. `GPL-2.0` `Linux`

- [Enum_AzureSubdomains](https://github.com/RoseSecurity/Enum_AzureSubdomains) - \"A Metasploit Auxiliary module for enumerating public Azure services by locating valid subdomains through various DNS queries.\" `Freeware/Source Given with No License` `Windows/Mac/Linux`

- [Evilginx](https://github.com/kgretzky/evilginx2) - \"Evilginx is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection.\" `BSD-3-Clause` `Windows/Mac/Linux`

- [HackThisSite](https://www.hackthissite.org/) - \"HackThisSite.org is a free, safe and legal training ground for hackers to test and expand their ethical hacking skills with challenges, CTFs, and more.\" `Proprietary/Freeware` `Web App`

- [JWT.io](https://jwt.io) - Tool to decode and encode JSON Web Tokens. ([Source Code](https://github.com/jsonwebtoken/jsonwebtoken.github.io)) `MIT` `Web App`

- [OWASP Top Ten](https://owasp.org/www-project-top-ten) - \"The OWASP Top 10 is a standard awareness document for developers and web application security. It represents a broad consensus about the most critical security risks to web applications.\" ([Source Code](https://github.com/OWASP/Top10)) `CC-BY-SA-4.0` `Web App`

- [OWASP WebGoat](https://owasp.org/www-project-webgoat) - \"WebGoat is a deliberately insecure application that allows interested developers just like you to test vulnerabilities commonly found in Java-based applications that use common and popular open source components.\" ([Source Code](https://github.com/WebGoat/WebGoat)) `GPL-2.0` `Windows/Mac/Linux`

- [OWASP ZAP](https://zaproxy.org) - For pentesting web applications. Can replay and modify requests, fuzz request values, proxy between the browser and site, etc. ([Source Code](https://github.com/zaproxy/zaproxy)) `Apache-2.0` `Windows/Mac/Linux`

- [Shodan](https://shodan.io) - Search engine for IoT devices. Can search for publically accessible servers based on details such as header, geolocation, etc. `Proprietary/Freemium` `Web App`

- [sig2n](https://portswigger.net/web-security) - Python scripts to perform JWT algorithm confusion.

Usage instructions from PortSwigger [here](https://portswigger.net/web-security/jwt/algorithm-confusion#:~:text=via%20algorithm%20confusion-,Deriving%20public%20keys%20from%20existing%20tokens,-In%20cases%20where). ([Source Code](https://github.com/silentsignal/rsa_sign2n)) `GPL-3.0` `Windows/Mac/Linux`

--------------------

## List of Licenses

**[`^        back to top        ^`](#awesome-nicc)**

- `0BSD` - [BSD Zero-Clause Licence](https://spdx.org/licenses/0BSD.html)

- `AAL` - [Attribution Assurance License](https://spdx.org/licenses/AAL.html)

- `AGPL-3.0` - [GNU Affero General Public License 3.0](https://spdx.org/licenses/AGPL-3.0.html)

- `Apache-2.0` - [Apache, Version 2.0](https://spdx.org/licenses/Apache-2.0.html)

- `APSL-2.0` - [Apple Public Source License, Version 2.0](https://spdx.org/licenses/APSL-2.0.html)

- `Artistic-2.0` - [Artistic License Version 2.0](https://spdx.org/licenses/Artistic-2.0.html)

- `Beerware` - [Beerware License](https://spdx.org/licenses/Beerware.html)

- `BSD-2-Clause` - [BSD 2-clause "Simplified"](https://spdx.org/licenses/BSD-2-Clause.html)

- `BSD-2-Clause-FreeBSD` - [BSD 2-Clause FreeBSD License](https://spdx.org/licenses/BSD-2-Clause-FreeBSD.html)

- `BSD-3-Clause` - [BSD 3-Clause "New" or "Revised"](https://spdx.org/licenses/BSD-3-Clause.html)

- `BSD-3-Clause-Attribution` - [BSD with attribution](https://spdx.org/licenses/BSD-3-Clause-Attribution.html)

- `BSD-4-Clause` - [BSD 4-clause "Original"](https://spdx.org/licenses/BSD-4-Clause.html)

- `CC-BY-NC-4.0` - [Creative Commons Attribution-NonCommercial 4.0 License](https://spdx.org/licenses/CC-BY-NC-4.0.html)

- `CC-BY-NC-SA-4.0` - [Creative Commons Attribution-NonCommercial-ShareAlike 4.0 License](https://spdx.org/licenses/CC-BY-NC-SA-4.0.html)

- `CC-BY-SA-3.0` - [Creative Commons Attribution-ShareAlike 3.0 License](https://spdx.org/licenses/CC-BY-SA-3.0.html)

- `CC-BY-SA-4.0` - [Creative Commons Attribution-ShareAlike 4.0 License](https://spdx.org/licenses/CC-BY-SA-4.0.html)

- `CC0-1.0` - [Public Domain/Creative Common Zero 1.0](https://spdx.org/licenses/CC0-1.0.html)

- `CDDL-1.0` - [Common Development and Distribution License](https://spdx.org/licenses/CDDL-1.0.html)

- `CECILL-B` - [CEA CNRS INRIA Logiciel Libre](https://spdx.org/licenses/CECILL-B.html)

- `CPAL-1.0` - [Common Public Attribution License Version 1.0](https://spdx.org/licenses/CPAL-1.0.html)

- `ECL-2.0` - [Educational Community License, Version 2.0](https://spdx.org/licenses/ECL-2.0.html)

- `EPL-1.0` - [Eclipse Public License, Version 1.0](https://spdx.org/licenses/EPL-1.0.html)

- `EPL-2.0` - [Eclipse Public License, Version 2.0](https://spdx.org/licenses/EPL-2.0.html)

- `EUPL-1.2` - [European Union Public License 1.2](https://spdx.org/licenses/EUPL-1.2.html)

- `Freemium` - [Freemium (Free to use in some capacity but has paid upgrades)](https://wikipedia.org/wiki/Freemium)

- `Freeware` - [Freeware (Free to use)](https://wikipedia.org/wiki/Freeware)

- `GPL-1.0` - [GNU General Public License 1.0](https://spdx.org/licenses/GPL-1.0.html)

- `GPL-2.0` - [GNU General Public License 2.0](https://spdx.org/licenses/GPL-2.0.html)

- `GPL-3.0` - [GNU General Public License 3.0](https://spdx.org/licenses/GPL-3.0.html)

- `IPL-1.0` - [IBM Public License](https://spdx.org/licenses/IPL-1.0.html)

- `ISC` - [Internet Systems Consortium License](https://spdx.org/licenses/ISC.html)

- `LGPL-2.1` - [Lesser General Public License 2.1](https://spdx.org/licenses/LGPL-2.1.html)

- `LGPL-3.0` - [Lesser General Public License 3.0](https://spdx.org/licenses/LGPL-3.0.html)

- `MIT` - [MIT License](https://spdx.org/licenses/MIT.html)

- `MPL-1.1` - [Mozilla Public License Version 1.1](https://spdx.org/licenses/MPL-1.1.html)

- `MPL-2.0` - [Mozilla Public License](https://spdx.org/licenses/MPL-2.0.html)

- `Multiple Licenses` - [Multiple Licenses (for entries such as Linux distros which contain many programs)](https://wikipedia.org/wiki/Multi-licensing)

- `Nmap-PSL` - [Nmap Public Source License](https://svn.nmap.org/nmap/LICENSE)

- `OSL-3.0` - [Open Software License 3.0](https://spdx.org/licenses/OSL-3.0.html)

- `Proprietary` - [Proprietary (closed source)](https://wikipedia.org/wiki/Proprietary_software)

- `Sendmail` - [Sendmail License](https://spdx.org/licenses/Sendmail.html)

- `Source Given with No License` - [Source Given with No License](https://choosealicense.com/no-permission)

- `Ruby` - [Ruby License](https://spdx.org/licenses/Ruby.html)

- `Unlicense` - [The Unlicense](https://spdx.org/licenses/Unlicense.html)

- `WTFPL` - [Do What the Fuck You Want to Public License](https://spdx.org/licenses/WTFPL.html)

- `Zlib` - [Zlib/libpng License](https://spdx.org/licenses/Zlib.html)

- `ZPL-2.0` - [Zope Public License 2.0](https://spdx.org/licenses/ZPL-2.0.html)

--------------------

## Contributing

Contributing guidelines can be found [here](https://github.com/njiticc/awesome-nicc/blob/main/CONTRIBUTING.md).

## License

This list is under the [Creative Commons Attribution-ShareAlike 3.0 Unported](https://github.com/njiticc/awesome-nicc/blob/main/LICENSE) License.

Terms of the license are summarized [here](https://creativecommons.org/licenses/by-sa/3.0/).  

Markdown and HTML generating code adapted from the [awesome-selfhosted](https://github.com/awesome-selfhosted/awesome-selfhosted-data) community. Changes were made to page verbage and formatting.