Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/urbanadventurer/android-pin-bruteforce

Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

android android-security bruteforce kali-linux nethunter security security-tools usb-hid

Last synced: 03 Jan 2025

https://github.com/ullaakut/cameradar

Cameradar hacks its way into RTSP videosurveillance cameras

cameras cctv hacking hacking-tool infosec netsec penetration-testing pentesting rtsp security security-tools

Last synced: 31 Dec 2024

https://github.com/RhinoSecurityLabs/pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

aws aws-security penetration-testing python security

Last synced: 28 Oct 2024

https://github.com/urbanadventurer/Android-PIN-Bruteforce

Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

android android-security bruteforce kali-linux nethunter security security-tools usb-hid

Last synced: 21 Nov 2024

https://github.com/clearurls/addon

ClearURLs is an add-on based on the new WebExtensions technology and will automatically remove tracking elements from URLs to help protect your privacy.

addon addons-mozilla-org anti-tracking chrome firefox privacy security tracking-protection webextensions

Last synced: 31 Dec 2024

https://github.com/lc/gau

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

alienvault gau hacktoberfest security wayback-machine

Last synced: 30 Dec 2024

https://github.com/meitar/awesome-cybersecurity-blueteam

:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

awesome-list blue-team computer-security cybersecurity defensive-security infosec security

Last synced: 13 Oct 2024

https://github.com/ClearURLs/Addon

ClearURLs is an add-on based on the new WebExtensions technology and will automatically remove tracking elements from URLs to help protect your privacy.

addon addons-mozilla-org anti-tracking chrome firefox privacy security tracking-protection webextensions

Last synced: 26 Oct 2024

https://github.com/square/valet

Valet lets you securely store data in the iOS, tvOS, watchOS, or macOS Keychain without knowing a thing about how the Keychain works. It’s easy. We promise.

crypto face-id ios keychain macos security touch-id tvos watchos

Last synced: 31 Dec 2024

https://github.com/square/Valet

Valet lets you securely store data in the iOS, tvOS, watchOS, or macOS Keychain without knowing a thing about how the Keychain works. It’s easy. We promise.

crypto face-id ios keychain macos security touch-id tvos watchos

Last synced: 06 Dec 2024

https://github.com/orhanobut/hawk

✔️ Secure, simple key-value storage for Android

android encryption hawk key-value-store preferences security sharedpreferences storage

Last synced: 02 Jan 2025

https://github.com/lcvvvv/kscan

Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。

brute-force bruteforce exploit fingerprint pentest red-team redteam scanner security webscan

Last synced: 02 Jan 2025

https://github.com/WithSecureLabs/drozer

The Leading Security Assessment Framework for Android.

android drozer java mobile mobsec mwr pentesting security withsecure

Last synced: 02 Nov 2024

https://github.com/withsecurelabs/drozer

The Leading Security Assessment Framework for Android.

android drozer java mobile mobsec mwr pentesting security withsecure

Last synced: 31 Dec 2024

https://github.com/Ullaakut/cameradar

Cameradar hacks its way into RTSP videosurveillance cameras

cameras cctv hacking hacking-tool infosec netsec penetration-testing pentesting rtsp security security-tools

Last synced: 26 Oct 2024

https://github.com/lwthiker/curl-impersonate

curl-impersonate: A special build of curl that can impersonate Chrome & Firefox

curl https security ssl tls

Last synced: 31 Dec 2024

https://github.com/hashicorp/boundary

Boundary enables identity-based access management for dynamic infrastructure.

hacktoberfest hashicorp security zero-trust

Last synced: 03 Jan 2025

https://github.com/Consensys/mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

blockchain ethereum program-analysis security security-analysis smart-contracts solidity symbolic-execution

Last synced: 09 Nov 2024

https://github.com/consensys/mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

blockchain ethereum program-analysis security security-analysis smart-contracts solidity symbolic-execution

Last synced: 30 Dec 2024

https://github.com/patriksimek/vm2

Advanced vm/sandbox for Node.js

javascript node-js sandbox security vm

Last synced: 30 Dec 2024

https://github.com/hahwul/dalfox

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

bugbounty bugbounty-tool cicd-pipeline devsecops golang hacktoberfest security vulnerability xss xss-bruteforce xss-detection xss-exploit xss-scanner

Last synced: 31 Dec 2024

https://github.com/eth0izzle/shhgit

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

cyint github github-api golang osint secret secrets secrets-management security

Last synced: 02 Jan 2025

https://github.com/briansmith/ring

Safe, fast, small crypto using Rust

cryptography rust security

Last synced: 30 Dec 2024

https://github.com/FSecureLABS/drozer

The Leading Security Assessment Framework for Android.

android drozer java mobile mobsec mwr pentesting security withsecure

Last synced: 25 Oct 2024

https://github.com/ConsenSys/mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

blockchain ethereum program-analysis security security-analysis smart-contracts solidity symbolic-execution

Last synced: 26 Oct 2024

https://github.com/smallstep/cli

🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

certificate cryptography encryption jose jwe jws jwt mfa oath oauth security security-tools ssh sso tls totp x509

Last synced: 30 Dec 2024

https://github.com/slowmist/knowledge-base

Knowledge Base 慢雾安全团队知识库

blockchain hacking knowledge-base security

Last synced: 02 Dec 2024

https://github.com/retirejs/retire.js

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

build-tool chrome-extension firefox-extension grunt-plugins insecure-libraries javascript sbom sbom-generator sbom-tool scanner security software-composition-analysis vulnerabilities vulnerable-libraries

Last synced: 30 Dec 2024

https://github.com/slowmist/Knowledge-Base

Knowledge Base 慢雾安全团队知识库

blockchain hacking knowledge-base security

Last synced: 25 Oct 2024

https://github.com/cilium/tetragon

eBPF-based Security Observability and Runtime Enforcement

bpf ebpf kernel kubernetes security

Last synced: 31 Dec 2024

https://github.com/builtbybel/privatezilla

👀👮🐢🔥Performs a privacy & security check of Windows 10

debloat powershell privacy privacy-protection security security-automation telemetry windows-10

Last synced: 03 Jan 2025

https://github.com/cilium/hubble

Hubble - Network, Service & Security Observability for Kubernetes using eBPF

cilium ebpf kubernetes metrics networking observability security tracing

Last synced: 30 Dec 2024

https://github.com/knownsec/pocsuite3

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

pentesting python security security-tools

Last synced: 03 Nov 2024

https://github.com/alienzhou/frontend-tech-list

📝 Frontend Tech List for Developers 💡

css frontend html javascript list pwa security tech

Last synced: 03 Jan 2025

https://github.com/ysrc/xunfeng

巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。

exploits infosec pentesting scanner security security-audit vulnerability-assessment vulnerability-detection vulnerability-scanners

Last synced: 02 Jan 2025

https://github.com/RetireJS/retire.js

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

build-tool chrome-extension firefox-extension grunt-plugins insecure-libraries javascript sbom sbom-generator sbom-tool scanner security software-composition-analysis vulnerabilities vulnerable-libraries

Last synced: 29 Oct 2024

https://github.com/azukaar/cosmos-server

☁️ The Most Secure and Easy Selfhosted Home Server. Take control of your data and privacy without sacrificing security and stability (Authentication, anti-DDOS, anti-bot)

authentication cloud cosmos reverse-proxy security self-hosted self-hosting selfhosted selfhosting server sso

Last synced: 31 Dec 2024

https://github.com/azukaar/Cosmos-Server

☁️ The Most Secure and Easy Selfhosted Home Server. Take control of your data and privacy without sacrificing security and stability (Authentication, anti-DDOS, anti-bot)

authentication cloud cosmos reverse-proxy security self-hosted self-hosting selfhosted selfhosting server sso

Last synced: 31 Oct 2024

https://github.com/meshbird/meshbird

Distributed private networking

distributed network privacy security vpn

Last synced: 03 Jan 2025

https://github.com/cerbos/cerbos

Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.

access-control authorization go golang kubernetes policy security

Last synced: 30 Dec 2024

https://github.com/projectdiscovery/interactsh

An OOB interaction gathering server and client library

appsec bugbounty dns golang http ldap oast oob security smtp

Last synced: 30 Dec 2024

https://github.com/feeicn/security-ppt

Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)

cybersecurity ppt presentation presentation-slides security security-ppt security-report

Last synced: 25 Sep 2024

https://github.com/FeeiCN/Security-PPT

Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)

cybersecurity ppt presentation presentation-slides security security-ppt security-report

Last synced: 24 Oct 2024

https://github.com/cea-sec/ivre

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.

bro easm external-attack-surface-management hacktoberfest masscan network network-discovery network-recon network-reconnaissance network-security nmap nmap-parser nmap-results-analyse nmap-scripts osint projectdiscovery scan-ports scans security zeek

Last synced: 06 Nov 2024

https://github.com/ivre/ivre

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.

bro easm external-attack-surface-management hacktoberfest masscan network network-discovery network-recon network-reconnaissance network-security nmap nmap-parser nmap-results-analyse nmap-scripts osint projectdiscovery scan-ports scans security zeek

Last synced: 31 Dec 2024

https://github.com/nixawk/pentest-wiki

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

hacking pentest security

Last synced: 03 Jan 2025

https://github.com/sensepost/gowitness

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

chrome chrome-headless fingerprint footprinting golang headless reporting screenshot security technologies web

Last synced: 31 Dec 2024

https://github.com/2factorauth/twofactorauth

List of sites with two factor auth support which includes SMS, email, phone calls, hardware, and software.

authentication ruby security two-factor twofactorauth

Last synced: 31 Dec 2024

https://github.com/aquasecurity/cloudsploit

Cloud Security Posture Management (CSPM)

alibaba aqua aws azure cloud cspm gcp oci oracle security security-audit

Last synced: 31 Dec 2024

https://github.com/kurolabs/stegcloak

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

cipher compression cryptography data-exfiltration functional-programming hacking hacking-tool hacking-tools infosec javascript privacy ramdajs security security-tools steganography stego

Last synced: 31 Dec 2024

https://github.com/KuroLabs/stegcloak

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

cipher compression cryptography data-exfiltration functional-programming hacking hacking-tool hacking-tools infosec javascript privacy ramdajs security security-tools steganography stego

Last synced: 30 Oct 2024

https://github.com/aya-rs/aya

Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

bpf ebpf observability rust security

Last synced: 31 Dec 2024

https://github.com/nabla-c0d3/sslyze

Fast and powerful SSL/TLS scanning library.

heartbleed library python scans security ssl ssllabs sslyze tls tls-scanning-library tls13

Last synced: 30 Dec 2024

https://github.com/aquasecurity/Tracee

Linux Runtime Security and Forensics using eBPF

bpf docker ebpf golang kubernetes linux runtime-security security

Last synced: 12 Nov 2024

https://github.com/aquasecurity/tracee

Linux Runtime Security and Forensics using eBPF

bpf docker ebpf golang kubernetes linux runtime-security security

Last synced: 30 Dec 2024

https://github.com/purplei2p/i2pd

🛡 I2P: End-to-End encrypted and anonymous Internet

anonymity c-plus-plus communication cryptography i2p i2p-client openssl p2p privacy security vpn

Last synced: 31 Dec 2024

https://github.com/kelvinben/appinfoscanner

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。

android apk apk-dex hacking hacking-tool ipa network-security penetration-test penetration-testing-tools python3 scanner security security-tools tools web-hacking

Last synced: 03 Jan 2025

https://github.com/microcosm-cc/bluemonday

bluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS

allowlist go golang html owasp sanitization security xss

Last synced: 30 Dec 2024

https://github.com/security-onion-solutions/securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

case-management cyber-security endpoint-security information-security intrusion-detection-system monitoring network-security security security-tools threat-hunting

Last synced: 01 Jan 2025

https://github.com/Security-Onion-Solutions/securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

case-management cyber-security endpoint-security information-security intrusion-detection-system monitoring network-security security security-tools threat-hunting

Last synced: 05 Nov 2024

https://github.com/antonio-morales/fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

afl afl-fuzz bug-hunting bugbounty education fuzz-testing fuzzer fuzzilli fuzzing hacking security testing vulnerabilities

Last synced: 03 Dec 2024

https://github.com/kelvinBen/AppInfoScanner

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。

android apk apk-dex hacking hacking-tool ipa network-security penetration-test penetration-testing-tools python3 scanner security security-tools tools web-hacking

Last synced: 19 Nov 2024

https://github.com/antonio-morales/Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

afl afl-fuzz bug-hunting bugbounty education fuzz-testing fuzzer fuzzilli fuzzing hacking security testing vulnerabilities

Last synced: 02 Nov 2024

https://github.com/jtesta/ssh-audit

SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)

auditing security ssh

Last synced: 30 Oct 2024

https://github.com/0dayctf/reverse-shell-generator

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

ctf generator hacking revshell security tryhackme

Last synced: 01 Jan 2025

https://github.com/buzzfeed/sso

sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services

aes authentication go oauth security sso

Last synced: 31 Dec 2024

https://github.com/nabla-c0d3/ssl-kill-switch2

Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and macOS applications.

blackbox cydia ios macos reverse-engineering security ssl ssl-pinning

Last synced: 03 Jan 2025

https://github.com/kishikawakatsumi/UICKeyChainStore

UICKeyChainStore is a simple wrapper for Keychain on iOS, watchOS, tvOS and macOS. Makes using Keychain APIs as easy as NSUserDefaults.

keychain security touch-id

Last synced: 06 Dec 2024

https://github.com/kishikawakatsumi/uickeychainstore

UICKeyChainStore is a simple wrapper for Keychain on iOS, watchOS, tvOS and macOS. Makes using Keychain APIs as easy as NSUserDefaults.

keychain security touch-id

Last synced: 02 Jan 2025

https://github.com/PurpleI2P/i2pd

🛡 I2P: End-to-End encrypted and anonymous Internet

anonymity c-plus-plus communication cryptography i2p i2p-client openssl p2p privacy security vpn

Last synced: 26 Oct 2024

https://github.com/maestron/botnets

This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY

botnet botnets malware security virus

Last synced: 03 Nov 2024

https://github.com/bleachbit/bleachbit

BleachBit system cleaner for Windows and Linux

antiforensics bleachbit disk-cleaner gplv3 gtk linux privacy python security windows

Last synced: 01 Jan 2025

https://github.com/sozu-proxy/sozu

Sōzu HTTP reverse proxy, configurable at runtime, fast and safe, built in Rust. It is awesome!

http http-proxy performance proxy rust security

Last synced: 30 Dec 2024

https://github.com/blokadaorg/blokada

The official repo for Blokada apps.

adblocker adblocking android blocker blokada dns ios privacy security vpn

Last synced: 01 Jan 2025

https://github.com/animir/node-rate-limiter-flexible

Atomic counters and rate limiting tools. Limit resource access at any scale.

bruteforce dynamodb express hapi koa limit mysql nestjs postgresql prisma rate rate-limiting ratelimter redis security throttle

Last synced: 30 Dec 2024

https://github.com/snooppr/snoop

Snoop — инструмент разведки на основе открытых данных (OSINT world)

blueteam ctf geo geocoder infosec ip nickname osint parser pentest police redteam scanner scraping security termux username username-checker username-search web-scraping

Last synced: 01 Jan 2025

Security Awesome Lists
the-book-of-secret-knowledge 74 Awesome-Hacking 84 personal-security-checklist 243 awesome-security 321 awesome-web-security 405 awesome-ctf 220 android-security-awesome 211 awesome-incident-response 218 awesome-hacker-search-engines 501 Awesome-WAF 172 awesome-privacy 639 awesome-security-hardening 204 DevSecOps 181 awesome-infosec 213 awesome-cybersecurity-blueteam 252 awesome-sec-talks 264 WebHackersWeapons 408 awesome-vehicle-security 220 awesome-api-security 199 awesome-nodejs-security 179 awesome-game-security 90 backend-cheats 961 awesome-cloud-security 153 awesome-iot-hacks 70 awesome-golang-security 34 alternative-frontends 119 awesome-windows-domain-hardening 70 DevSecOps 48 awesome-embedded-and-iot-security 131 awesome-iam 274 Awesome-FL 2,323 Crypto-OpSec-SelfGuard-RoadMap 473 awesome-azure-architecture 309 awesome-ethereum-security 81 osx-and-ios-security-awesome 57 Awesome-Cybersecurity-Datasets 54 awesome-executable-packing 666 awesome-aws-security 164 awesome-he 82 awesome-python-security 35 security-apis 112 awesome-vulnerable-apps 88 graph-adversarial-learning-literature 314 awesome-opa 224 MobileHackersWeapons 71 awesome-runners 36 awesome-russian-it 514 SmartContracts-audit-checklist 46 awesome-llm-security 94 awesome-lists 572
Security Categories
Uncategorized 2,525 fl in top-tier journal 1,466 :books: Literature 1,364 Pentesting 1,312 Tools 869 fl in top ml conference and journal 847 Attack 642 Operating Systems 626 **Мероприятия** 453 Weapons 448 Threat Hunting: 445 Blue Team 432 Papers 418 Other Lists 414 Defense 371 fl on graph data and graph neural networks 330 Programming Language 324 Resources 313 Malware Analysis 297 fl in top ai conference and journal 289