https://github.com/nao-sec/tknk_scanner |
Community-based integrated malware identification system |
nao-sec |
mit |
81 |
|
|
https://github.com/D1rkMtr/VirusTotalC2 |
Abusing VirusTotal API to host our C2 traffic, usefull for bypassing blocking firewall rules if VirusTotal is in the target white list , and in case you don’t have C2 infrastructure , now you have a free one |
D1rkMtr |
|
447 |
|
|
https://github.com/fox-it/spookyssl-pcaps |
SpookySSL PCAPS and Network Coverage |
fox-it |
mit |
3 |
|
|
https://github.com/NVISOsecurity/nviso-cti |
|
NVISOsecurity |
|
33 |
|
|
https://github.com/threatray/tigerrat |
Scripts and IOCs for the Andariel APT group research |
threatray |
mit |
6 |
|
|
https://github.com/a0rtega/metame |
metame is a metamorphic code engine for arbitrary executables |
a0rtega |
mit |
467 |
|
|
https://github.com/NCSC-NL/OpenSSL-2022 |
Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3 |
NCSC-NL |
mit |
456 |
|
|
https://github.com/ek0/hxemu |
Triton based symbolic emulator |
ek0 |
|
11 |
|
|
https://github.com/antonioCoco/RogueWinRM |
Windows Local Privilege Escalation from Service Account to System |
antonioCoco |
gpl-3.0 |
449 |
|
|
https://github.com/Rogdham/python-xz |
Pure Python implementation of the XZ file format with random access support |
Rogdham |
mit |
11 |
|
|
https://github.com/open-obfuscator/o-mvll |
:electron: O-MVLL is a LLVM-based obfuscator for native code (Android & iOS) |
open-obfuscator |
apache-2.0 |
159 |
|
|
https://github.com/eshard/obfuscator-llvm |
|
eshard |
other |
58 |
|
|
https://github.com/PayDevs/awful-oss-incidents |
🤬 A categorized list of incidents caused by unappreciated OSS maintainers or underfunded OSS projects. Feedback welcome! |
PayDevs |
cc0-1.0 |
245 |
|
|
https://github.com/epilys/tade |
tade is a discussion/forum/link aggregator application. It provides three interfaces: a regular web page, a mailing list bridge and an NNTP server |
epilys |
agpl-3.0 |
22 |
|
|
https://github.com/Accenture/Spartacus |
Spartacus DLL Hijacking Discovery Tool |
Accenture |
mit |
206 |
|
|
https://github.com/vnmabus/dcor |
Distance correlation and related E-statistics in Python |
vnmabus |
mit |
105 |
|
|
https://github.com/roaldarbol/LaPreprint |
📝 A nicely formatted LaTeX preprint template |
roaldarbol |
mit |
398 |
|
|
https://github.com/friendica/friendica |
Friendica Communications Platform |
friendica |
agpl-3.0 |
1076 |
|
|
https://github.com/GreyNoise-Intelligence/wasm_ipv4_heatmap |
WebAssembly module to produce an IPv4 heatmap mapped to a Hilbert Curve |
GreyNoise-Intelligence |
|
4 |
|
|
https://github.com/uNetworking/uWebSockets |
Simple, secure & standards compliant web server for the most demanding of applications |
uNetworking |
apache-2.0 |
14785 |
|
|
https://github.com/Cloud-Architekt/AzureAD-Attack-Defense |
This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected. |
Cloud-Architekt |
|
1065 |
|
|
https://github.com/Qianlitp/WatchAD |
AD Security Intrusion Detection System |
Qianlitp |
gpl-3.0 |
1087 |
|
|
https://github.com/SamuelTulach/RwxMeme |
State of the art DLL injector that took 20 minutes to make |
SamuelTulach |
mit |
15 |
|
|
https://github.com/jevinskie/aarch64-experimental-disasm |
Experimental methods of decoding/disassembling AArch64 instructions |
jevinskie |
bsd-2-clause |
1 |
|
|
https://github.com/wikireader/wikireader |
Official Source code for the WikiReader (by Openmoko) |
wikireader |
other |
173 |
|
|
https://github.com/hashview/hashview |
A web front-end for password cracking and analytics |
hashview |
gpl-3.0 |
255 |
|
|
https://github.com/Tripwire/tripwire-open-source |
Open Source Tripwire® |
Tripwire |
gpl-2.0 |
663 |
|
|
https://github.com/evilsocket/mpcfw |
Reverse engineering of Apple MultipeerConnectivity Framework |
evilsocket |
|
44 |
|
|
https://github.com/FreeTAKTeam/openTAKpickList |
a list of hardware and software to be used in conjunction with the ATAKplatform |
FreeTAKTeam |
epl-2.0 |
73 |
|
|
https://github.com/T145/black-mirror |
Blacklists and whitelists that aim to promote security, safety, and sanity across the internet! |
T145 |
agpl-3.0 |
105 |
|
|
https://github.com/ail-project/PyLacus |
Python module to enqueue and query a remote Lacus instance |
ail-project |
bsd-3-clause |
2 |
|
|
https://github.com/deptofdefense/AndroidTacticalAssaultKit-CIV |
|
deptofdefense |
other |
507 |
|
|
https://github.com/TAK-Product-Center/Server |
TAK Server |
TAK-Product-Center |
other |
110 |
|
|
https://github.com/docintelapp/DocIntel |
Open Source Platform for storing, organizing, and searching documents related to cyber threats |
docintelapp |
other |
64 |
|
|
https://github.com/feathericons/feather |
Simply beautiful open source icons |
feathericons |
mit |
22783 |
|
|
https://github.com/EttusResearch/gr-ettus |
Out-of-tree GNU Radio Module for Experimental Ettus Research Features |
EttusResearch |
other |
42 |
|
|
https://github.com/gmh5225/YARA-yaralyzer |
Visually inspect YARA and regex matches found in both binary and text data. |
gmh5225 |
gpl-3.0 |
3 |
|
|
https://github.com/akamai/akamai-security-research |
This repository includes code and IoCs that are the product of research done in Akamai’s various security research teams. |
akamai |
apache-2.0 |
176 |
|
|
https://github.com/matplotlib/matplotlib |
matplotlib: plotting with Python |
matplotlib |
|
16357 |
|
|
https://github.com/palewire/amsat-satellite-index |
An interactive list of active amateur radio satellites for amsat.org |
palewire |
mit |
1 |
|
|
https://github.com/J4NN0/linkedin-web-scraper |
Python Web Scraper for LinkedIn. Collect data and store it into .xls file. |
J4NN0 |
gpl-3.0 |
9 |
|
|
https://github.com/Its-Vichy/HBot |
🐛 Self spreading Botnet based on Mirai C&C Arch, spreading through SSH and Telnet protocol. Modern script fullly written in python3. |
Its-Vichy |
apache-2.0 |
135 |
|
|
https://github.com/DarkCoderSc/PsyloDbg |
User-friendly Microsoft Windows Debugger for Malware Analysts. |
DarkCoderSc |
apache-2.0 |
125 |
|
|
https://github.com/horizon3ai/CVE-2022-40684 |
A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager |
horizon3ai |
|
277 |
|
|
https://github.com/D1rkMtr/FilelessRemotePE |
Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique |
D1rkMtr |
|
544 |
|
|
https://github.com/RansomLook/RansomLook |
Yet another Ransomware gang tracker |
RansomLook |
gpl-3.0 |
69 |
|
|
https://github.com/COSSAS/sacti |
SACTI - Securely aggregate CTI sightings and report them on MISP |
COSSAS |
apache-2.0 |
9 |
|
|
https://github.com/sepinf-inc/IPED |
IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners. |
sepinf-inc |
other |
464 |
|
|
https://github.com/mgeeky/ShellcodeFluctuation |
An advanced in-memory evasion technique fluctuating shellcode’s memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents |
mgeeky |
mit |
591 |
|
|
https://github.com/CScorza/Image-OSINT-Forensics |
Ricerca e Analisi delle Immagini |
CScorza |
|
71 |
|
|
https://github.com/NHAS/reverse_ssh |
SSH based reverse shell |
NHAS |
bsd-3-clause |
204 |
|
|
https://github.com/slaeryan/AQUARMOURY |
My musings in C and offensive tooling |
slaeryan |
|
499 |
|
|
https://github.com/ail-project/LacusCore |
The modulable part of Lacus |
ail-project |
bsd-3-clause |
2 |
|
|
https://github.com/msiemens/tinydb |
TinyDB is a lightweight document oriented database optimized for your happiness :) |
msiemens |
mit |
5451 |
|
|
https://github.com/avast/yari |
YARI is an interactive debugger for YARA Language. |
avast |
mit |
71 |
|
|
https://github.com/Xetnus/osm-finder |
A “line-network” geolocation tool created for Bellingcat’s September 2022 Hackathon: https://www.bellingcat.com/resources/2022/10/06/automated-map-searches-scam-busting-tools-and-twitter-search-translations-here-are-the-results-of-bellingcats-second-hackathon/ |
Xetnus |
mit |
82 |
|
|
https://github.com/mxrch/GitFive |
🐙 Track down GitHub users. |
mxrch |
mpl-2.0 |
381 |
|
|
https://github.com/cncf/tag-security |
🔐CNCF Security Technical Advisory Group – secure access, policy control, privacy, auditing, explainability and more! |
cncf |
other |
1501 |
|
|
https://github.com/pry0cc/axiom |
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more! |
pry0cc |
mit |
2948 |
|
|
https://github.com/vdjagilev/nmap-formatter |
A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it’s nmap converter. |
vdjagilev |
mit |
128 |
|
|
https://github.com/DISARMFoundation/DISARMframeworks |
Master copies of the DISARM frameworks, with generated files to help you explore the data |
DISARMFoundation |
cc-by-sa-4.0 |
37 |
|
|
https://github.com/e2guardian/e2guardian |
E2guardian is a web content filter that can work in proxy, transparent or icap server modes |
e2guardian |
gpl-2.0 |
399 |
|
|
https://github.com/codeyourweb/fastfinder |
Incident Response - Fast suspicious file finder |
codeyourweb |
mit |
162 |
|
|
https://github.com/deepfence/PacketStreamer |
:star: :star: Distributed tcpdump for cloud native environments :star: :star: |
deepfence |
apache-2.0 |
777 |
|
|
https://github.com/trickest/wordlists |
Real-world infosec wordlists, updated regularly |
trickest |
mit |
445 |
|
|
https://github.com/tamimhasan404/image-upload-exploits |
This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty. |
tamimhasan404 |
|
3 |
|
|
https://github.com/HavocFramework/Havoc |
The Havoc Framework |
HavocFramework |
gpl-3.0 |
2634 |
|
|
https://github.com/soxoj/maigret |
🕵️♂️ Collect a dossier on a person by username from thousands of sites |
soxoj |
mit |
7274 |
|
|
https://github.com/nccgroup/mimikatz-detector-busylight |
USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is executed, a thread is spwaned by default that tries to locate one of the busylights that is supported. All HID devices are enumerated, if PID/VID is matching then packets are sent to flash the busylight in different colours. |
nccgroup |
|
16 |
|
|
https://github.com/raghur/mermaid-filter |
Pandoc filter for creating diagrams in mermaid syntax blocks in markdown docs |
raghur |
|
280 |
|
|
https://github.com/Xu0Tex1/CVE-2022-3236 |
Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool |
Xu0Tex1 |
|
1 |
|
|
https://github.com/quarkslab/quokka |
Quokka: A Fast and Accurate Binary Exporter |
quarkslab |
apache-2.0 |
102 |
|
|
https://github.com/tintinweb/ethereum-dasm |
An ethereum evm bytecode disassembler and static/dynamic analysis tool |
tintinweb |
gpl-2.0 |
169 |
|
|
https://github.com/CYB3RMX/C2Data |
A database for captured data (malicious files etc.) from command and control servers. |
CYB3RMX |
mit |
3 |
|
|
https://github.com/DavidBuchanan314/monomorph |
MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash |
DavidBuchanan314 |
mit |
683 |
|
|
https://github.com/ORCx41/KnownDllUnhook |
Replace the .txt section of the current loaded modules from \KnownDlls\ to bypass edrs |
ORCx41 |
mit |
193 |
|
|
https://github.com/netspooky/xx |
The xx file format. Turn your hex dumps into art, then into binary data. |
netspooky |
0bsd |
280 |
|
|
https://github.com/gwen001/dnspy |
Find subdomain takeovers |
gwen001 |
mit |
66 |
|
|
https://github.com/lkarlslund/ldapnomnom |
Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP) |
lkarlslund |
mit |
556 |
|
|
https://github.com/williballenthin/EVTXtract |
EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images. |
williballenthin |
apache-2.0 |
158 |
|
|
https://github.com/malfp/tormalwarefp |
Traffic analysis for Tor-based malware detection and classification |
malfp |
mit |
7 |
|
|
https://github.com/corkami/collisions |
Hash collisions and exploitations |
corkami |
|
1928 |
|
|
https://github.com/D1rkMtr/DumpThatLSASS |
Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation , it contains Anti-sandbox , if you run it under unperformant Virtual Machine you need to uncomment the code related to it and recompile. |
D1rkMtr |
|
409 |
|
|
https://github.com/S12cybersecurity/Infinite-Backdoors |
Bash Script with 4 ways to get persistence in Linux systems WITHOUT root permisions |
S12cybersecurity |
|
8 |
|
|
https://github.com/jgromes/RadioLib |
Universal wireless communication library for embedded devices |
jgromes |
mit |
724 |
|
|
https://github.com/Processus-Thief/HEKATOMB |
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them. |
Processus-Thief |
gpl-3.0 |
214 |
|
|
https://github.com/openai/whisper |
Robust Speech Recognition via Large-Scale Weak Supervision |
openai |
mit |
14019 |
|
|
https://github.com/memN0ps/srdi-rs |
Rusty Shellcode Reflective DLL Injection (sRDI) |
memN0ps |
mit |
156 |
|
|
https://github.com/hellman/wboxkit |
White-box Design and Analysis kit |
hellman |
mit |
9 |
|
|
https://github.com/Rupan/idapin |
A debugger backend for IDA Pro built on top of of Intel’s PIN framework |
Rupan |
|
17 |
|
|
https://github.com/benedekrozemberczki/awesome-fraud-detection-papers |
A curated list of data mining papers about fraud detection. |
benedekrozemberczki |
cc0-1.0 |
1220 |
|
|
https://github.com/hasherezade/pe-bear |
Portable Executable reversing tool with a friendly GUI |
hasherezade |
gpl-2.0 |
1492 |
|
|
https://github.com/jhassine/server-ip-addresses |
Daily updated list of IP addresses / CIDR blocks used by data centers, cloud service providers, servers, etc. |
jhassine |
|
85 |
|
|
https://github.com/Eventual-Inc/Daft |
The Python DataFrame for Media Data |
Eventual-Inc |
apache-2.0 |
395 |
|
|
https://github.com/TheNerdlist/nerdlist |
list of passwords more likely to be used by sysadmins, general nerds, and folk with access |
TheNerdlist |
mit |
232 |
|
|
https://github.com/apache/age |
Graph database optimized for fast analysis and real-time data processing. It is provided as an extension to PostgreSQL. |
apache |
apache-2.0 |
942 |
|
|
https://github.com/CybercentreCanada/assemblyline |
AssemblyLine 4 - File triage and malware analysis |
CybercentreCanada |
mit |
62 |
|
|
https://github.com/CrowdStrike/SuperMem |
A python script developed to process Windows memory images based on triage type. |
CrowdStrike |
mit |
192 |
|
|
https://github.com/NytroRST/ShellcodeCompiler |
Shellcode Compiler |
NytroRST |
gpl-3.0 |
860 |
|
|
https://github.com/GreyNoise-Intelligence/pygreynoise |
Python3 library and command line for GreyNoise |
GreyNoise-Intelligence |
mit |
134 |
|
|
https://github.com/breck7/pldb |
PLDB: a Programming Language Database. A public domain knowledge graph focused on programming languages distributed as a CSV file. |
breck7 |
|
592 |
|
|
https://github.com/Phantom1003/QARMA64 |
QARMA block cipher in C |
Phantom1003 |
mit |
19 |
|
|
https://github.com/kurtfu/present |
PRESENT block cipher |
kurtfu |
mit |
3 |
|
|
https://github.com/MISP/misp-guard |
[experimental] misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based on a set of customizable block rules. |
MISP |
agpl-3.0 |
7 |
|
|
https://github.com/vmware/splinterdb |
High Performance Embedded Key-Value Store |
vmware |
apache-2.0 |
441 |
|
|
https://github.com/CIRCL/ssdc |
ssdeep based clustering tool |
CIRCL |
mit |
14 |
|
|
https://github.com/LeeBrotherston/badflare |
OSINT tool for discovering the real IP addresses of services which are behind Cloudflare but not properly locked down |
LeeBrotherston |
other |
100 |
|
|
https://github.com/ail-project/lacus |
Lacus is a capturing system using playwright, as a web service. |
ail-project |
bsd-3-clause |
4 |
|
|
https://github.com/Te-k/cobaltstrike |
Code and yara rules to detect and analyze Cobalt Strike |
Te-k |
mit |
220 |
|
|
https://github.com/attify/firmware-analysis-toolkit |
Toolkit to emulate firmware and analyse it for security vulnerabilities |
attify |
mit |
1004 |
|
|
https://github.com/p0dalirius/Coercer |
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods. |
p0dalirius |
|
709 |
|
|
https://github.com/impira/docquery |
An easy way to extract information from documents |
impira |
mit |
1160 |
|
|
https://github.com/DirkR/capturadio |
Capture mp3 streams from internet radio stations and store in on the local disk. |
DirkR |
|
26 |
|
|
https://github.com/streetwriters/notesnook |
A fully open source & end-to-end encrypted note taking alternative to Evernote. |
streetwriters |
gpl-3.0 |
4200 |
|
|
https://github.com/gl4ssesbo1/Nebula |
Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components. |
gl4ssesbo1 |
other |
308 |
|
|
https://github.com/sleuthkit/autopsy |
Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera’s memory card. |
sleuthkit |
|
1705 |
|
|
https://github.com/TheSpeedX/PROXY-List |
Get PROXY List that gets updated everyday |
TheSpeedX |
|
1285 |
|
|
https://github.com/codingo/VHostScan |
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages. |
codingo |
gpl-3.0 |
991 |
|
|
https://github.com/BigNerd95/WinboxExploit |
Proof of Concept of Winbox Critical Vulnerability |
BigNerd95 |
mit |
188 |
|
|
https://github.com/Lookyloo/pysecuritytxt |
Tries to get and parse .well-known/security.txt from a domain |
Lookyloo |
bsd-3-clause |
4 |
|
|
https://github.com/ail-project/ail-feeder-apk |
This AIL feeder pushes annotated APK to an AIL instance |
ail-project |
agpl-3.0 |
2 |
|
|
https://github.com/enkomio/thematrix |
a PE Loader and Windows API tracer. Useful in malware analysis. |
enkomio |
|
113 |
|
|
https://github.com/akunull/piloslib |
Multi-platform open-source set of audio and modulation tools that focus on synthesis, live electronic music, interconnection, probability, unique sounds, and intuitive interfacing built by Akunull in Pure Data starting in 2014 |
akunull |
mit |
112 |
|
|
https://github.com/kevinzg/facebook-scraper |
Scrape Facebook public pages without an API key |
kevinzg |
mit |
1430 |
|
|
https://github.com/CYB3RMX/BlackHeart |
BlackHeart is a simple python script to generate powershell scripts that demonstrate reverse shell gaining without Microsoft Defender restrictions. (FOR EDUCATIONAL PURPOSES!!) |
CYB3RMX |
mit |
15 |
|
|
https://github.com/binarly-io/fwhunt-scan |
Tools for analyzing UEFI firmware and checking UEFI modules with FwHunt rules |
binarly-io |
gpl-3.0 |
124 |
|
|
https://github.com/LongSoft/UEFITool |
UEFI firmware image viewer and editor |
LongSoft |
bsd-2-clause |
3015 |
|
|
https://github.com/AykutSarac/jsoncrack.com |
🔮 Seamlessly visualize your JSON data instantly into graphs; paste, import or fetch! |
AykutSarac |
gpl-3.0 |
18788 |
|
|
https://github.com/iilegacyyii/Shellcrypt |
A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods. |
iilegacyyii |
mit |
77 |
|
|
https://github.com/michenriksen/drawio-threatmodeling |
Draw.io libraries for threat modeling diagrams |
michenriksen |
mit |
479 |
|
|
https://github.com/adw0rd/instagrapi |
🔥 The fastest and powerful Python library for Instagram Private API 2022 |
adw0rd |
mit |
1547 |
|
|
https://github.com/bochs-emu/Bochs |
Bochs - Cross Platform x86 Emulator Project |
bochs-emu |
lgpl-2.1 |
161 |
|
|
https://github.com/jonathan-dev/tcp_reassembly_testing |
|
jonathan-dev |
|
2 |
|
|
https://github.com/datacoon/metawarc |
metawarc: a command-line tool for metadata extraction from files from WARC (Web ARChive) |
datacoon |
mit |
13 |
|
|
https://github.com/sourceincite/hekate |
|
sourceincite |
mit |
40 |
|
|
https://github.com/amazon-science/ReFinED |
ReFinED is an entity linking (EL) system. |
amazon-science |
other |
51 |
|
|
https://github.com/mandiant/Ghidrathon |
The FLARE team’s open-source extension to add Python 3 scripting to Ghidra. |
mandiant |
apache-2.0 |
375 |
|
|
https://github.com/webrecorder/har2warc |
Convert HTTP Archive (HAR) -> Web Archive (WARC) format |
webrecorder |
apache-2.0 |
38 |
|
|
https://github.com/ninoseki/misp-rb |
MISP API wrapper for Ruby |
ninoseki |
mit |
2 |
|
|
https://github.com/Idov31/Sandman |
Sandman is a NTP based backdoor for red team engagements in hardened networks. |
Idov31 |
bsd-2-clause |
413 |
|
|
https://github.com/HackerNews/API |
Documentation and Samples for the Official HN API |
HackerNews |
mit |
9452 |
|
|
https://github.com/onetrueawk/awk |
One true awk |
onetrueawk |
other |
1520 |
|
|
https://github.com/hasherezade/libpeconv |
A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl |
hasherezade |
bsd-2-clause |
795 |
|
|
https://github.com/mandiant/dncil |
The FLARE team’s open-source library to disassemble Common Intermediate Language (CIL) instructions. |
mandiant |
apache-2.0 |
81 |
|
|
https://github.com/ShawnyXiao/TextClassification-Keras |
Text classification models implemented in Keras, including: FastText, TextCNN, TextRNN, TextBiRNN, TextAttBiRNN, HAN, RCNN, RCNNVariant, etc. |
ShawnyXiao |
mit |
770 |
|
|
https://github.com/google-research/albert |
ALBERT: A Lite BERT for Self-supervised Learning of Language Representations |
google-research |
apache-2.0 |
2992 |
|
|
https://github.com/vxunderground/ThreatIntelligenceDiscordBot |
Gets updates from various clearnet domains and ransomware threat actor domains |
vxunderground |
mit |
182 |
|
|
https://github.com/x64dbg/XEDParse |
XEDParse: A MASM-like, single-line plaintext assembler |
x64dbg |
lgpl-3.0 |
134 |
|
|
https://github.com/vnhacker1337/CVE-2022-27925-PoC |
Zimbra RCE simple poc |
vnhacker1337 |
|
58 |
|
|
https://github.com/IBM/sail |
Library for streaming data and incremental learning algorithms. |
IBM |
mit |
10 |
|
|
https://github.com/fventuri/linrad |
Linrad - SDR receiver |
fventuri |
mit |
5 |
|
|
https://github.com/Flangvik/TeamFiltration |
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts |
Flangvik |
gpl-3.0 |
491 |
|
|
https://github.com/NUKnightLab/TimelineJS3 |
TimelineJS v3: A Storytelling Timeline built in JavaScript. http://timeline.knightlab.com |
NUKnightLab |
mpl-2.0 |
2589 |
|
|
https://github.com/wietze/HijackLibs |
Project for tracking publicly disclosed DLL Hijacking opportunities. |
wietze |
gpl-3.0 |
338 |
|
|
https://github.com/Threagile/threagile |
Agile Threat Modeling Toolkit |
Threagile |
mit |
397 |
|
|
https://github.com/Digital-Forensics-Discord-Server/TheHitchhikersGuidetoDFIRExperiencesFromBeginnersandExperts |
The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportunity to write a chapter of a book to get their name out there, get a publication on their resume with an actual ISBN number, and ideally lower the bar for people to contribute something back to the DFIR Community. Want to write a chapter? Let me know and let’s make it happen! |
Digital-Forensics-Discord-Server |
mit |
122 |
|
|
https://github.com/oasislinux/oasis |
a small statically-linked linux system |
oasislinux |
other |
1920 |
|
|
https://github.com/erg-lang/erg |
A statically typed language that can deeply improve the Python ecosystem |
erg-lang |
apache-2.0 |
2016 |
|
|
https://github.com/theandrew168/derzforth |
Bare-metal Forth implementation for RISC-V |
theandrew168 |
mit |
25 |
|
|
https://github.com/mcmenaminadrian/riscyforth |
Forth for RISC-V SBCs |
mcmenaminadrian |
gpl-2.0 |
15 |
|
|
https://github.com/howerj/forth-cpu |
A Forth CPU and System on a Chip, based on the J1, written in VHDL |
howerj |
|
286 |
|
|
https://github.com/realaravinth/gitpad |
Self-Hosted alternative to GitHub Gists |
realaravinth |
agpl-3.0 |
44 |
|
|
https://github.com/trickest/containers |
Automated privilege escalation of the world’s most popular Docker images. |
trickest |
|
35 |
|
|
https://github.com/ly4k/Certipy |
Tool for Active Directory Certificate Services enumeration and abuse |
ly4k |
mit |
1211 |
|
|
https://github.com/advanced-threat-research/DotDumper |
An automatic unpacker and logger for DotNet Framework targeting files |
advanced-threat-research |
other |
126 |
|
|
https://github.com/casualwriter/casual-markdown-page |
Markdown as Web Page/Site |
casualwriter |
mit |
254 |
|
|
https://github.com/RUB-SysSec/loki |
Hardening code obfuscation against automated attacks |
RUB-SysSec |
agpl-3.0 |
32 |
|
|
https://github.com/d4rckh/gorilla |
tool for generating wordlists or extending an existing one using mutations. |
d4rckh |
|
339 |
|
|
https://github.com/armon/libart |
Adaptive Radix Trees implemented in C |
armon |
other |
673 |
|
|
https://github.com/center-for-threat-informed-defense/attack-flow |
Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows. |
center-for-threat-informed-defense |
apache-2.0 |
286 |
|
|
https://github.com/redballoonsecurity/ofrak |
OFRAK: unpack, modify, and repack binaries. |
redballoonsecurity |
other |
1166 |
|
|
https://github.com/toeverything/AFFiNE |
There can be more than Notion and Miro. AFFiNE is a next-gen knowledge base that brings planning, sorting and creating all together. Privacy first, open-source, customizable and ready to use. |
toeverything |
mit |
10747 |
|
|
https://github.com/Sc00bz/bscrypt |
A cache hard password hash/KDF |
Sc00bz |
cc0-1.0 |
19 |
|
|
https://github.com/vstinner/hachoir |
Hachoir is a Python library to view and edit a binary stream field by field |
vstinner |
gpl-2.0 |
506 |
|
|
https://github.com/luker983/nsa-codebreaker-2021 |
NSA Codebreaker Challenge 2021 Write-Ups |
luker983 |
|
49 |
|
|
https://github.com/cudeso/misp-scraper |
A web scraper to create MISP events and reports |
cudeso |
|
7 |
|
|
https://github.com/jglim/ABOVISP |
ISP for the ABOV MC81F4204 |
jglim |
|
11 |
|
|
https://github.com/yeokm1/ndp2019-wristband-teardown |
Tear-down effort of the Pixmob wristband used in NDP2019. |
yeokm1 |
|
23 |
|
|
https://github.com/EnviralDesign/GeoPix |
GeoPix is a free and open source real-time lighting control and previz software. It’s built in TouchDesigner, with a workflow and UI/UX inspired by 3d animation software. |
EnviralDesign |
mit |
182 |
|
|
https://github.com/onekey-sec/unblob |
Extract files from any kind of container formats |
onekey-sec |
other |
740 |
|
|
https://github.com/elastic/protections-artifacts |
Elastic Security detection content for Endpoint |
elastic |
other |
506 |
|
|
https://github.com/projectM-visualizer/projectm |
projectM - cross-platform music visualization. Open-source and Milkdrop-compatible |
projectM-visualizer |
lgpl-2.1 |
2460 |
|
|
https://github.com/sonic-visualiser/sonic-visualiser |
Visualisation, analysis, and annotation of music audio recordings |
sonic-visualiser |
gpl-2.0 |
279 |
|
|
https://github.com/paulnasca/paulstretch_python |
Paulstretch python version |
paulnasca |
|
488 |
|
|
https://github.com/paulnasca/paulstretch_cpp |
PaulStretch |
paulnasca |
gpl-2.0 |
732 |
|
|
https://github.com/rumblesan/wave-stretcher |
command line wave stretching program. based on Paul stretch |
rumblesan |
bsd-2-clause |
7 |
|
|
https://github.com/Elektromatic/paulStretch |
This Pure Data patch uses the Paul stretch algorithm to time stretch musical recordings. It is suitable for extreme sound stretching of the audio. |
Elektromatic |
gpl-3.0 |
9 |
|
|
https://github.com/microsoft/oss-ssc-framework |
Open Source Software Secure Supply Chain Framework |
microsoft |
other |
218 |
|
|
https://github.com/CENSUS/ghidra-frida-hook-gen |
Frida hook generator for Ghidra |
CENSUS |
bsd-2-clause |
43 |
|
|
https://github.com/CZ-NIC/dns-fuzzing |
Repository to store unique seeds for DNS server fuzzing |
CZ-NIC |
|
42 |
|
|
https://github.com/williballenthin/INDXParse |
Tool suite for inspecting NTFS artifacts. |
williballenthin |
apache-2.0 |
172 |
|
|
https://github.com/GendarmerieNationale/ReceptionInfoDrone |
|
GendarmerieNationale |
other |
29 |
|
|
https://github.com/VerbalExpressions/PythonVerbalExpressions |
Python regular expressions made easy |
VerbalExpressions |
|
1558 |
|
|
https://github.com/cardiffnlp/tweetnlp |
TweetNLP for all the NLP enthusiasts working on Twitter! The Python library tweetnlp provides a collection of useful tools to analyze/understand tweets such as sentiment analysis, emoji prediction, and named entity recognition, powered by state-of-the-art language models specialised on Twitter. |
cardiffnlp |
mit |
69 |
|
|
https://github.com/microsoft/Azure-Threat-Research-Matrix |
|
microsoft |
mit |
36 |
|
|
https://github.com/Fuziih/cctv-exposure |
|
Fuziih |
other |
30 |
|
|
https://github.com/luca364/MalwareSourceCode |
Collection of malware source code for a variety of platforms in an array of different programming languages. |
luca364 |
|
3 |
|
|
https://github.com/punk-security/dnsReaper |
dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team! |
punk-security |
agpl-3.0 |
1513 |
|
|
https://github.com/deptofdefense/hack-a-sat-library |
Public library of space documents and tutorials |
deptofdefense |
|
487 |
|
|
https://github.com/Deputation/hygieia |
Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver. |
Deputation |
|
101 |
|
|
https://github.com/cckuailong/JNDI-Injection-Exploit-Plus |
50+ Gadgets(20 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server. |
cckuailong |
mit |
239 |
|
|
https://github.com/ptrkrysik/uhd |
USRP Hardware Driver Repository |
ptrkrysik |
other |
2 |
|
|
https://github.com/si9int/cc.py |
Extracting URLs of a specific target based on the results of “commoncrawl.org” |
si9int |
mit |
256 |
|
|
https://github.com/BRANDEFENSE/Threat-Intelligence-Researches |
The Brandefense cyber threat intelligence team is always researching new threats and writing research reports. Our latest Threat Reports is available for download. This reports covers the latest activity from APT groups, as well as new information on ransomware and phishing attacks. We recommend that all Brandefense followers download this reports and keep it handy in case they need to refer to it in the future. |
BRANDEFENSE |
|
17 |
|
|
https://github.com/MystenLabs/ed25519-unsafe-libs |
List of unsafe ed25519 signature libs |
MystenLabs |
mit |
169 |
|
|
https://github.com/FiloSottile/edwards25519 |
filippo.io/edwards25519 — A safer, faster, and more powerful low-level edwards25519 Go implementation. |
FiloSottile |
bsd-3-clause |
94 |
|
|
https://github.com/0vercl0k/inject |
Yet another Windows DLL injector. |
0vercl0k |
mit |
26 |
|
|
https://github.com/BloodHoundAD/BARK |
BloodHound Attack Research Kit |
BloodHoundAD |
gpl-3.0 |
237 |
|
|
https://github.com/MISP/misp-workflow-blueprints |
Library of blueprints usable in MISP Workflows |
MISP |
other |
5 |
|
|
https://github.com/gtworek/VolatileDataCollector |
|
gtworek |
gpl-3.0 |
117 |
|
|
https://github.com/codership/galera |
Synchronous multi-master replication library |
codership |
gpl-2.0 |
392 |
|
|
https://github.com/LyraSearch/lyra |
🌌 Fast, in-memory, typo-tolerant, full-text search engine written in TypeScript. |
LyraSearch |
other |
3623 |
|
|
https://github.com/aydinnyunus/exifLooter |
ExifLooter finds geolocation on all image urls and directories also integrates with OpenStreetMap |
aydinnyunus |
other |
288 |
|
|
https://github.com/sam210723/wavebin |
∿ Oscilloscope waveform capture viewer and converter. |
sam210723 |
mit |
43 |
|
|
https://github.com/novafacing/symstress |
Source-assisted binary analysis tool to deduce function names based on source code patterns (read: strings). |
novafacing |
|
2 |
|
|
https://github.com/dfirdetective/WinSearchAppCache |
Windows Search App Cache parsing |
dfirdetective |
mit |
7 |
|
|
https://github.com/mikeroyal/Photogrammetry-Guide |
Photogrammetry Guide. Learn all about the process of obtaining measurements and 3D models from photos. Creating topographic maps, meshes, or point clouds based on the real-world. |
mikeroyal |
|
613 |
|
|
https://github.com/evild3ad/Collect-MemoryDump |
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR |
evild3ad |
gpl-3.0 |
78 |
|
|
https://github.com/planetscale/beam |
A simple message board for your organization or project |
planetscale |
mit |
1652 |
|
|
https://github.com/200ok-ch/organice |
An implementation of Org mode without the dependency of Emacs - built for mobile and desktop browsers |
200ok-ch |
agpl-3.0 |
2072 |
|
|
https://github.com/SQLab/CRAXplusplus |
The exploit generator CRAX++ is CRAX with x86_64 ROP techniques, s2e 2.0 upgrade, code selection, I/O states, dynamic ROP, and more! |
SQLab |
other |
73 |
|
|
https://github.com/eurecom-s3/symqemu |
SymQEMU: Compilation-based symbolic execution for binaries |
eurecom-s3 |
other |
219 |
|
|
https://github.com/Omyyyy/pycom |
A Python compiler, down to native code, using C++ |
Omyyyy |
mit |
1091 |
|
|
https://github.com/d4rckh/grc2 |
grim reaper c2 |
d4rckh |
gpl-3.0 |
287 |
|
|
https://github.com/rabitt/pysox |
Python wrapper around sox. |
rabitt |
bsd-3-clause |
440 |
|
|
https://github.com/tenacityteam/saucedacity |
A free open-source audio editor based on Audacity focusing on general improvements. Will be the new future codebase of Tenacity starting with 1.3 |
tenacityteam |
other |
135 |
|
|
https://github.com/0xsyr0/vx-underground-wordlist |
Wordlist to crack .zip-file password |
0xsyr0 |
|
70 |
|
|
https://github.com/jstrieb/hackernews-button |
Privacy-preserving Firefox extension linking to Hacker News discussion; built with Bloom filters and WebAssembly |
jstrieb |
gpl-3.0 |
73 |
|
|
https://github.com/massar/hashedrpz |
HashedRPZ - keep your RPZ entries secret |
massar |
bsd-3-clause |
4 |
|
|
https://github.com/matthw/icedid_stage1_unpack |
Automatically unpack SPLCrypt packed binaries (IcedID / BazarLoader stagers) |
matthw |
unlicense |
8 |
|
|
https://github.com/nexB/python-publicsuffix2 |
A small Python library to deal with publicsuffix data (includes a bundled PSL as “package data”) in a wheel friendly format. Fork and continuation of Tomaž Šolc’s “publicsuffix” |
nexB |
|
24 |
|
|
https://github.com/hashlookup/a-ray-grass |
a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly discard known files “pour séparer le grain de l’ivraie” |
hashlookup |
bsd-3-clause |
7 |
|
|
https://github.com/kichik/tlds |
Automatically updated list of valid TLDs for Python |
kichik |
mit |
2 |
|
|
https://github.com/dmachard/go-dns-collector |
Aggregator, analyzer, transporter and logging for your DNS logs |
dmachard |
mit |
54 |
|
|
https://github.com/dmachard/python-dnstap-receiver |
Dnstap streams receiver in Python |
dmachard |
mit |
29 |
|
|
https://github.com/dmachard/python-dnstap-protobuf |
Dnstap Protocol Buffers implementation in Python |
dmachard |
mit |
2 |
|
|
https://github.com/NLnetLabs/unbound |
Unbound is a validating, recursive, and caching DNS resolver. |
NLnetLabs |
bsd-3-clause |
1972 |
|
|
https://github.com/Findomain/Findomain |
The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more. |
Findomain |
gpl-3.0 |
2608 |
|
|
https://github.com/enkomio/AlanFramework |
A C2 post-exploitation framework |
enkomio |
other |
387 |
|
|
https://github.com/last-byte/RIPPL |
RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows |
last-byte |
mit |
220 |
|
|
https://github.com/eth0izzle/bucket-stream |
Find interesting Amazon S3 Buckets by watching certificate transparency logs. |
eth0izzle |
mit |
1644 |
|
|
https://github.com/zardus/wargame-nexus |
A sorted and updated list of security wargame sites. |
zardus |
gpl-3.0 |
606 |
|
|
https://github.com/hzqst/unicorn_pe |
Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files. |
hzqst |
mit |
559 |
|
|
https://github.com/chip-red-pill/MicrocodeDecryptor |
|
chip-red-pill |
|
1435 |
|
|
https://github.com/hashlookup/fleur |
Fleur implements a Bloom Filter library in C that is fully compatible with DCSO’s Go and python implementations. |
hashlookup |
bsd-3-clause |
114 |
|
|
https://github.com/xzkostyan/clickhouse-sqlalchemy |
ClickHouse dialect for SQLAlchemy |
xzkostyan |
other |
278 |
|
|
https://github.com/kacos2000/Prefetch-Browser |
Browse Windows Prefetch properties |
kacos2000 |
mit |
28 |
|
|
https://github.com/OISF/suricata |
Suricata git repository maintained by the OISF |
OISF |
gpl-2.0 |
2810 |
|
|
https://github.com/Moonslate/MoonHex |
A hex editor for romhackers |
Moonslate |
|
12 |
|
|
https://github.com/bgpkit/monocle |
See through all BGP data with a monocle. |
bgpkit |
mit |
18 |
|
|
https://github.com/bluesadi/Pluto-Obfuscator |
Obfuscator based on LLVM 12.0.1 |
bluesadi |
mit |
478 |
|
|
https://github.com/DODC/turncoat |
|
DODC |
|
36 |
|
|
https://github.com/packing-box/peid |
Python implementation of the Packed Executable iDentifier (PEiD) |
packing-box |
gpl-3.0 |
46 |
|
|
https://github.com/kacos2000/Evtx_Log_Browser |
Evtx Log (xml) Browser |
kacos2000 |
mit |
47 |
|
|
https://github.com/duckdb/duckdb |
DuckDB is an in-process SQL OLAP Database Management System |
duckdb |
mit |
7081 |
|
|
https://github.com/sourceincite/randy |
A pre-authenticated RCE exploit for Inductive Automation Ignition |
sourceincite |
gpl-3.0 |
36 |
|
|
https://github.com/Concinnity-Risks/RansomCoinPublic |
A DFIR tool to extract cryptocoin addresses and other indicators of compromise from binaries. |
Concinnity-Risks |
apache-2.0 |
53 |
|
|
https://github.com/D4-project/analyzer-d4-passivedns |
A Passive DNS backend and collector |
D4-project |
agpl-3.0 |
26 |
|
|
https://github.com/handiko/Arduino-APRS |
Create simple APRS modulator using Arduino UNO |
handiko |
gpl-3.0 |
59 |
|
|
https://github.com/comsec-group/retbleed |
Arbitrary Speculative Code Execution with Return Instructions |
comsec-group |
|
105 |
|
|
https://github.com/t3l3machus/toxssin |
An XSS exploitation command-line interface and payload generator. |
t3l3machus |
mit |
578 |
|
|
https://github.com/decompiler-explorer/decompiler-explorer |
Decompiler Explorer! Compare tools on the forefront of static analysis, now in your web browser! |
decompiler-explorer |
mit |
1008 |
|
|
https://github.com/MerginMaps/geodiff |
Library for handling diffs for geospatial data |
MerginMaps |
mit |
116 |
|
|
https://github.com/akvorado/akvorado |
Flow collector, hydrater and visualizer |
akvorado |
agpl-3.0 |
488 |
|
|
https://github.com/p1ngul1n0/blackbird |
An OSINT tool to search for accounts by username in social networks. |
p1ngul1n0 |
|
1193 |
|
|
https://github.com/koenrh/s3enum |
Fast and stealthy Amazon S3 bucket enumeration tool for pentesters. |
koenrh |
isc |
151 |
|
|
https://github.com/wheybags/glibc_version_header |
Build portable Linux binaries without using an ancient distro |
wheybags |
mit |
587 |
|
|
https://github.com/rudyerudite/AngErza |
Toy implementation of a Automated Exploit Generation built on Angr; stiched using radare, pwntools, pyelftools, and Angrop. |
rudyerudite |
|
9 |
|
|
https://github.com/dagrejs/dagre-d3 |
:no_entry: [DEPRECATED] - A D3-based renderer for Dagre |
dagrejs |
mit |
2704 |
|
|
https://github.com/uknowsec/SweetPotato |
Modifying SweetPotato to support load shellcode and webshell |
uknowsec |
|
512 |
|
|
https://github.com/RfidResearchGroup/proxmark3 |
The Iceman fork of Proxmark3 / RFID / NFC reader, writer, sniffer and emulator |
RfidResearchGroup |
gpl-3.0 |
2121 |
|
|
https://github.com/ail-project/ail-typo-website |
Website for ail-typo-squatting library |
ail-project |
apache-2.0 |
22 |
|
|
https://github.com/sartlabs/0days |
|
sartlabs |
|
1 |
|
|
https://github.com/adulau/mmdb-server |
mmdb-server is an open source fast API server to lookup IP addresses for their geographic location. |
adulau |
agpl-3.0 |
64 |
|
|
https://github.com/pocketbase/pocketbase |
Open Source realtime backend in 1 file |
pocketbase |
mit |
15592 |
|
|
https://github.com/pdfminer/pdfminer.six |
Community maintained fork of pdfminer - we fathom PDF |
pdfminer |
mit |
3943 |
|
|
https://github.com/py-pdf/PyPDF2 |
A pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files |
py-pdf |
other |
4857 |
|
|
https://github.com/nttgin/BGPalerter |
BGP and RPKI monitoring tool. Pre-configured for real-time detection of visibility loss, RPKI invalid announcements, hijacks, ROA misconfiguration, and more. |
nttgin |
bsd-3-clause |
569 |
|
|
https://github.com/formatc1702/WireViz |
Easily document cables and wiring harnesses |
formatc1702 |
gpl-3.0 |
2616 |
|
|
https://github.com/fventuri/nrsc5 |
NRSC-5 receiver for SDRplay API, SoapySDR, and RTL-SDR |
fventuri |
other |
7 |
|
|
https://github.com/fventuri/gr-sdrplay3 |
Out-of-tree GNU Radio module for SDRplay RSP devices - SDRplay API V3.X |
fventuri |
gpl-3.0 |
14 |
|
|
https://github.com/Arachnid/evmdis |
EVM disassembler |
Arachnid |
apache-2.0 |
456 |
|
|
https://github.com/dbarzin/pandora-box |
USB Scanning device |
dbarzin |
gpl-3.0 |
10 |
|
|
https://github.com/GlobalCyberAlliance/DomainSecurityScanner |
Single or bulk scan of domains for SPF, DKIM, or DMARC records. |
GlobalCyberAlliance |
apache-2.0 |
75 |
|
|
https://github.com/alasdairtran/radflow |
[TheWebConf 2021] Radflow: A Recurrent, Aggregated, and Decomposable Model for Networks of Time Series |
alasdairtran |
|
24 |
|
|
https://github.com/simsong/hashdb |
hashdb block hash database tool and API |
simsong |
other |
2 |
|
|
https://github.com/whichbuffer/Lockbit-Black-3.0 |
|
whichbuffer |
apache-2.0 |
14 |
|
|
https://github.com/yardenshafir/IoRingReadWritePrimitive |
Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2 |
yardenshafir |
mit |
90 |
|
|
https://github.com/TakahiroHaruyama/SpiMitm |
SPI flash read MitM attack PoC |
TakahiroHaruyama |
bsd-2-clause |
31 |
|
|
https://github.com/gusmanb/logicanalyzer |
24 channel, 100Msps logic analyzer hardware and software |
gusmanb |
gpl-3.0 |
749 |
|
|
https://github.com/espegro/timespotter |
First seen / last seen web service based on sha256 |
espegro |
mit |
3 |
|
|
https://github.com/espegro/tulip |
Simple stable bloomfilter web service |
espegro |
mit |
2 |
|
|
https://github.com/JupiterOne/security-policy-builder |
CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence |
JupiterOne |
mpl-2.0 |
52 |
|
|
https://github.com/sikkerhet/sysmon-info |
Sysmon info corpus |
sikkerhet |
|
7 |
|
|
https://github.com/h3xduck/TripleCross |
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities. |
h3xduck |
gpl-3.0 |
1206 |
|
|
https://github.com/winterknife/PINKPANTHER |
Windows x64 handcrafted token stealing kernel-mode shellcode |
winterknife |
gpl-3.0 |
444 |
|
|
https://github.com/pluribus-one/gdpr-registry-app |
Open-source web application to keep track of all data processing activities prefigured by GDPR Article 30 “Records of processing activities”. |
pluribus-one |
other |
16 |
|
|
https://github.com/cyentific-rni/security-playbook-stix-misp-exchange |
This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that make use of the Security Playbook extension and MISP Security Playbook objects. |
cyentific-rni |
mit |
10 |
|
|
https://github.com/eCrimeLabs/MISP-PurgeEvents |
Cleanup of older MISP events can require some work until now |
eCrimeLabs |
mit |
13 |
|
|
https://github.com/pydot/pydot |
Python interface to Graphviz’s Dot language |
pydot |
mit |
721 |
|
|
https://github.com/pplonski/automated-pdf-reports-python |
Automated PDF Reports with Python |
pplonski |
mit |
16 |
|
|
https://github.com/projectdiscovery/tlsx |
Fast and configurable TLS grabber focused on TLS based data collection. |
projectdiscovery |
mit |
466 |
|
|
https://github.com/multiprocessio/dsq |
Commandline tool for running SQL queries against JSON, CSV, Excel, Parquet, and more. |
multiprocessio |
other |
2861 |
|
|
https://github.com/0xsp-SRD/callback_injection-Csharp |
this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback functions |
0xsp-SRD |
mit |
75 |
|
|
https://github.com/NullArray/MaliciousDLLGen |
Malicious DLL Generator in Py3 |
NullArray |
|
20 |
|
|
https://github.com/usnistgov/macos_security |
macOS Security Compliance Project |
usnistgov |
other |
970 |
|
|
https://github.com/pts/pts-zcat |
portable and minimalistic Flate decompression filter |
pts |
|
4 |
|
|
https://github.com/vysecurity/LinkedInt |
LinkedIn Recon Tool |
vysecurity |
mit |
818 |
|
|
https://github.com/ninoseki/abuse_whois |
Yet another way to find where to report an abuse |
ninoseki |
mit |
20 |
|
|
https://github.com/facelessuser/pymdown-extensions |
Extensions for Python Markdown |
facelessuser |
other |
657 |
|
|
https://github.com/Dfte/Impersonate |
Binary and CrackMapExec module to impersonate tokens on a windows machine |
Dfte |
|
40 |
|
|
https://github.com/zhukovyuri/VIINA |
VIINA: Violent Incident Information from News Articles on the 2022 Russian Invasion of Ukraine |
zhukovyuri |
|
124 |
|
|
https://github.com/commoncrawl/cc-crawl-statistics |
Statistics of Common Crawl monthly archives mined from URL index files |
commoncrawl |
apache-2.0 |
61 |
|
|
https://github.com/aligungr/UERANSIM |
Open source 5G UE and RAN (gNodeB) implementation. |
aligungr |
gpl-3.0 |
480 |
|
|
https://github.com/optiv/Mangle |
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs |
optiv |
mit |
671 |
|
|
https://github.com/hasherezade/pe_to_shellcode |
Converts PE into a shellcode |
hasherezade |
bsd-2-clause |
1570 |
|
|
https://github.com/yandex/YaLM-100B |
Pretrained language model with 100B parameters |
yandex |
apache-2.0 |
3089 |
|
|
https://github.com/timtaylor3/UAC_processor |
|
timtaylor3 |
apache-2.0 |
3 |
|
|
https://github.com/tclahr/uac |
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts. |
tclahr |
apache-2.0 |
271 |
|
|
https://github.com/mattnotmax/hash_hunter |
Command-line tool to search for malware samples in various repositories |
mattnotmax |
|
4 |
|
|
https://github.com/D3Ext/WEF |
Wi-Fi Exploitation Framework |
D3Ext |
other |
1361 |
|
|
https://github.com/zodiacon/TotalRegistry |
Total Registry - enhanced Registry editor/viewer |
zodiacon |
mit |
1021 |
|
|
https://github.com/microsoft/avml |
AVML - Acquire Volatile Memory for Linux |
microsoft |
mit |
576 |
|
|
https://github.com/hashlookup/hashlookup-gui |
Provides a multi-platform Graphical User Interface for hashlookup |
hashlookup |
agpl-3.0 |
9 |
|
|
https://github.com/sachaos/viddy |
👀 A modern watch command. Time machine and pager etc. |
sachaos |
mit |
3775 |
|
|
https://github.com/google/cloud-forensics-utils |
Python library to carry out DFIR analysis on the Cloud |
google |
apache-2.0 |
327 |
|
|
https://github.com/kochrt/markwhen |
Make a cascading timeline from markdown-like text. Supports simple American/European date styles, ISO8601, images, links, locations, and more. |
kochrt |
agpl-3.0 |
2027 |
|
|
https://github.com/DavidCruciani/feed_Hashlookup |
|
DavidCruciani |
|
1 |
|
|
https://github.com/citusdata/citus |
Distributed PostgreSQL as an extension |
citusdata |
agpl-3.0 |
7516 |
|
|
https://github.com/webrecorder/warcio |
Streaming WARC/ARC library for fast web archive IO |
webrecorder |
apache-2.0 |
267 |
|
|
https://github.com/unreaIuser/dll-encryptor |
C++ Dll-Encryptor, makes you able to stream a dll without touching your disk. (Can be used to prevent from cracking). |
unreaIuser |
|
46 |
|
|
https://github.com/YuzukiHD/YuzukiHCC |
Ultra low cost HDMI-USB Video Acquisition (HDMI Capture Card) based on MS2109 |
YuzukiHD |
other |
31 |
|
|
https://github.com/0x000050/cve |
Gather and update all available and newest CVEs with their PoC. |
0x000050 |
mit |
1 |
|
|
https://github.com/imran-parray/Mind-Maps |
Mind-Maps of Several Things |
imran-parray |
|
1170 |
|
|
https://github.com/paulmillr/micro-otp |
One Time Password generation via RFC 6238 |
paulmillr |
mit |
21 |
|
|
https://github.com/gtworek/PSBits |
Simple (relatively) things allowing you to dig a bit deeper than usual. |
gtworek |
unlicense |
1760 |
|
|
https://github.com/DarthTon/Blackbone |
Windows memory hacking library |
DarthTon |
mit |
3768 |
|
|
https://github.com/trustedsec/SliverKeylogger |
|
trustedsec |
mit |
108 |
|
|
https://github.com/DHARPA-Project/kiara |
Data orchestration and management. |
DHARPA-Project |
mpl-2.0 |
6 |
|
|
https://github.com/CAIDA/commoncrawl-host-ip-mapper |
Crawler that retrieves commoncrawl’s crawled hosts and their corresponding IPs |
CAIDA |
other |
8 |
|
|
https://github.com/darvid/python-hyperscan |
A CPython extension for the Hyperscan regular expression matching library. |
darvid |
mit |
115 |
|
|
https://github.com/NtQuerySystemInformation/Malware-RE-papers |
Here are some of my malware reversing papers that I will be publishing |
NtQuerySystemInformation |
|
26 |
|
|
https://github.com/manticoresoftware/manticoresearch |
Easy to use open source fast database for search |
Good alternative to Elasticsearch now |
Drop-in replacement for E in the ELK soon |
manticoresoftware |
gpl-2.0 |
2218 |
https://github.com/hardenedvault/ved |
Vault Exploit Defense |
hardenedvault |
other |
80 |
|
|
https://github.com/adulau/hashlookup-server |
Fast lookup server for NSRL and other hash database used in digital forensic |
adulau |
agpl-3.0 |
32 |
|
|
https://github.com/TalEliyahu/awesome-security-newsletters |
Periodic cyber security newsletters that capture the latest news, summaries of conference talks, research, best practices, tools, events, vulnerabilities, and analysis of trending threats and attacks |
TalEliyahu |
gpl-2.0 |
347 |
|
|
https://github.com/emalderson/ThePhish |
ThePhish: an automated phishing email analysis tool |
emalderson |
agpl-3.0 |
649 |
|
|
https://github.com/CeresDB/ceresdb |
CeresDB is a high-performance, distributed, cloud native time-series database that can handle both time-series and analytics workloads. |
CeresDB |
apache-2.0 |
1683 |
|
|
https://github.com/ANSSI-FR/sftp2misp |
Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance. |
ANSSI-FR |
gpl-3.0 |
8 |
|
|
https://github.com/jcabrero/multfs_public |
The implementation of the Underground Forum Parser for the identification of related accounts. |
jcabrero |
|
3 |
|
|
https://github.com/SecIdiot/TransitionalPeriod |
Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits |
SecIdiot |
|
32 |
|
|
https://github.com/cr-marcstevens/hashclash |
Project HashClash - MD5 & SHA-1 cryptanalysis |
cr-marcstevens |
other |
500 |
|
|
https://github.com/ail-project/ail-exchange-format |
AIL Exchange Format |
ail-project |
bsd-2-clause |
3 |
|
|
https://github.com/thunlp/PL-Marker |
Source code for “Packed Levitated Marker for Entity and Relation Extraction” |
thunlp |
mit |
161 |
|
|
https://github.com/ninoseki/misp-gateway |
API gateway for MISP |
ninoseki |
mit |
11 |
|
|
https://github.com/miroslavpejic85/mirotalk |
🚀 WebRTC - P2P - Simple, Secure, Fast Real-Time Video Conferences Up to 4k and 60fps, compatible with all browsers and platforms. |
miroslavpejic85 |
agpl-3.0 |
1347 |
|
|
https://github.com/marcinguy/betterscan-ce |
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan Community Edition (CE) |
marcinguy |
other |
323 |
|
|
https://github.com/westerndigitalcorporation/libzbd |
Zoned block device manipulation library and tools |
westerndigitalcorporation |
|
38 |
|
|
https://github.com/josevcm/nfc-laboratory |
NFC signal and protocol analyzer using SDR receiver |
josevcm |
mit |
176 |
|
|
https://github.com/LMMS/lmms |
Cross-platform music production software |
LMMS |
gpl-2.0 |
6226 |
|
|
https://github.com/pierrafleur/bibliopen-source |
|
pierrafleur |
cc0-1.0 |
5 |
|
|
https://github.com/phiresky/sql.js-httpvfs |
|
phiresky |
apache-2.0 |
2926 |
|
|
https://github.com/apache/tika |
The Apache Tika toolkit detects and extracts metadata and text from over a thousand different file types (such as PPT, XLS, and PDF). |
apache |
apache-2.0 |
1537 |
|
|
https://github.com/EdwardRaff/pyBWMD |
Implementation of A New Burrows Wheeler Transform Markov Distance |
EdwardRaff |
|
9 |
|
|
https://github.com/dedupeio/dedupe |
:id: A python library for accurate and scalable fuzzy matching, record deduplication and entity-resolution. |
dedupeio |
mit |
3537 |
|
|
https://github.com/DerwenAI/kglab |
Graph Data Science: an abstraction layer in Python for building knowledge graphs, integrated with popular graph libraries – atop Pandas, NetworkX, RAPIDS, RDFlib, pySHACL, PyVis, morph-kgc, pslpython, pyarrow, etc. |
DerwenAI |
mit |
444 |
|
|
https://github.com/latchset/clevis |
Automated Encryption Framework |
latchset |
gpl-3.0 |
578 |
|
|
https://github.com/radareorg/esilsolve |
A python symbolic execution framework using radare2’s ESIL (Evaluable String Intermediate Language) |
radareorg |
mit |
136 |
|
|
https://github.com/MickaelBergem/dnsstresss |
Simple Go program to stress test DNS servers |
MickaelBergem |
|
37 |
|
|
https://github.com/bats3c/darkarmour |
Windows AV Evasion |
bats3c |
mit |
562 |
|
|
https://github.com/ossu/computer-science |
:mortar_board: Path to a free self-taught education in Computer Science! |
ossu |
mit |
126497 |
|
|
https://github.com/tap-ir/tapir |
TAPIR is a multi-user, client/server, incident response framework |
tap-ir |
gpl-3.0 |
30 |
|
|
https://github.com/LIAAD/yake |
Single-document unsupervised keyword extraction |
LIAAD |
other |
1197 |
|
|
https://github.com/EdwardRaff/LZJD |
C++ implementation of LZJD algorithm |
EdwardRaff |
apache-2.0 |
9 |
|
|
https://github.com/COSSAS/nedagen |
NEDAGEN - A Network traffic Dataset Generator for Network-based Intrusion Detection Systems |
COSSAS |
mpl-2.0 |
2 |
|
|
https://github.com/danielealbano/cachegrand |
cachegrand - a modern OSS Key-Value store built for today’s hardware |
danielealbano |
bsd-3-clause |
767 |
|
|
https://github.com/ANSSI-FR/DFIR4vSphere |
Powershell module for VMWare vSphere forensics |
ANSSI-FR |
gpl-3.0 |
93 |
|
|
https://github.com/kevthehermit/YaraManager |
Web based Manager for Yara Rules |
kevthehermit |
gpl-2.0 |
50 |
|
|
https://github.com/Lissy93/dashy |
🚀 A self-hostable personal dashboard built for you. Includes status-checking, widgets, themes, icon packs, a UI editor and tons more! |
Lissy93 |
mit |
8103 |
|
|
https://github.com/jwilk/python-syntax-errors |
no-op statements syntactically valid only since Python X.Y |
jwilk |
|
334 |
|
|
https://github.com/mattifestation/AntimalwareBlight |
Execute PowerShell code at the antimalware-light protection level. |
mattifestation |
bsd-3-clause |
115 |
|
|
https://github.com/airbus-cert/ttddbg |
Time Travel Debugging IDA plugin |
airbus-cert |
apache-2.0 |
413 |
|
|
https://github.com/commial/experiments |
Expriments |
commial |
|
358 |
|
|
https://github.com/WerWolv/Decompiler |
A WIP disassember and decompiler written in modern C++ with the goal to do as much work during compile time as possible |
WerWolv |
|
12 |
|
|
https://github.com/algorithm-archivists/algorithm-archive |
A collaborative book on algorithms |
algorithm-archivists |
mit |
2047 |
|
|
https://github.com/drb-ra/C2IntelFeeds |
Automatically created C2 Feeds |
drb-ra |
other |
215 |
|
|
https://github.com/ANSSI-FR/AnoMark |
Algorithme d’apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements “Création de Processus”, afin de détecter des anomalies dans les évènements futurs |
ANSSI-FR |
gpl-3.0 |
45 |
|
|
https://github.com/open-source-labs/Svelvet |
A lightweight Svelte component library for building interactive node-based flow diagrams |
open-source-labs |
mit |
1309 |
|
|
https://github.com/cheat/cheatsheets |
Community-sourced cheatsheets |
cheat |
|
1303 |
|
|
https://github.com/wikiZ/RedGuard |
RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check. |
wikiZ |
gpl-2.0 |
877 |
|
|
https://github.com/nikitavoloboev/alfred-my-mind |
Alfred workflow to search through my notes and bookmarks |
nikitavoloboev |
mit |
420 |
|
|
https://github.com/mushorg/glutton |
Generic Low Interaction Honeypot |
mushorg |
mit |
190 |
|
|
https://github.com/openai/openai-python |
|
openai |
mit |
808 |
|
|
https://github.com/questdb/questdb |
An open source time-series database for fast ingest and SQL queries |
questdb |
apache-2.0 |
9595 |
|
|
https://github.com/batnoter/batnoter |
An open source, markdown-based, self-hosted note taking webapp. |
batnoter |
mit |
1791 |
|
|
https://github.com/D4-project/bgp-monitor |
A tool for filtering BGP records, by AS numbers, prefixes, countries, etc … |
D4-project |
apache-2.0 |
9 |
|
|
https://github.com/LiveMirror/pcshare |
|
LiveMirror |
|
65 |
|
|
https://github.com/webix-hub/webix |
Stable releases of Webix UI - JavaScript library for building mobile and desktop web apps |
webix-hub |
gpl-3.0 |
395 |
|
|
https://github.com/lyshark/Windows-exploits |
Windows 平台提权漏洞大合集,长期收集各种提权漏洞利用工具。 A large collection of rights raising vulnerabilities on the windows platform, which collects various rights raising vulnerability utilization tools for a long time. |
lyshark |
|
749 |
|
|
https://github.com/adulau/python-bloomfilter |
Scalable Bloom Filter implemented in Python |
adulau |
mit |
7 |
|
|
https://github.com/chvancooten/follina.py |
POC to replicate the full ‘Follina’ Office RCE vulnerability for testing purposes |
chvancooten |
|
1055 |
|
|
https://github.com/4x1md/phone_rtty_interface |
AFSK interface for Android smartphones and tablets. |
4x1md |
mit |
23 |
|
|
https://github.com/BigCorvus/LORA-QWERTY-Communicator |
A tidy and feature-packed LORA QWERTY communication device based on a Blackberry Q10 keyboard, a nRF52840 and a 2.7’’ Sharp Memory LCD |
BigCorvus |
mit |
137 |
|
|
https://github.com/moonD4rk/HackBrowserData |
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。 |
moonD4rk |
mit |
6448 |
|
|
https://github.com/hashishrajan/cloud-security-vulnerabilities |
List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc |
hashishrajan |
apache-2.0 |
208 |
|
|
https://github.com/abdulkadir-gungor/JPGtoMalware |
It embeds the executable file or payload inside the jpg file. The method the program uses isn’t exactly called one of the steganography methods. For this reason, it does not cause any distortion in the JPG file. The JPG file size and payload do not have to be proportional.The JPG file is displayed normally in any viewing application or web application. It can bypass various security programs such as firewall, antivirus. If the file is examined in detail, it is easier to detect than steganography methods. However, since the payload in the JPG file is encrypted, it cannot be easily decrypted. It also uses the “garbage code insertion/dead-code insertion” method to prevent the payload from being caught by the antivirus at runtime. |
abdulkadir-gungor |
other |
276 |
|
|
https://github.com/kahing/goofys |
a high-performance, POSIX-ish Amazon S3 file system written in Go |
kahing |
apache-2.0 |
4363 |
|
|
https://github.com/BushidoUK/Open-source-tools-for-CTI |
Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers |
BushidoUK |
|
279 |
|
|
https://github.com/vega/vega |
A visualization grammar. |
vega |
bsd-3-clause |
10056 |
|
|
https://github.com/jeFF0Falltrades/YARA-Signatures |
A collection of my public YARA signatures for various malware families |
jeFF0Falltrades |
|
20 |
|
|
https://github.com/alex-cart/LEAF |
Linux Evidence Acquisition Framework |
alex-cart |
|
109 |
|
|
https://github.com/rhoot/sp |
Public domain string formatting micro-library for C++, based on python-style format strings. |
rhoot |
cc0-1.0 |
35 |
|
|
https://github.com/libyal/libyal |
Yet another library library (and tools) |
libyal |
apache-2.0 |
190 |
|
|
https://github.com/MarginResearch/cannoli |
High-performance QEMU memory and instruction tracing |
MarginResearch |
gpl-2.0 |
376 |
|
|
https://github.com/ixty/mandibule |
linux elf injector for x86 x86_64 arm arm64 |
ixty |
|
255 |
|
|
https://github.com/ManimCommunity/manim |
A community-maintained Python framework for creating mathematical animations. |
ManimCommunity |
mit |
11804 |
|
|
https://github.com/curated-intel/CTI-fundamentals |
A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence |
curated-intel |
|
307 |
|
|
https://github.com/DominicBreuker/pspy |
Monitor linux processes without root permissions |
DominicBreuker |
gpl-3.0 |
3187 |
|
|
https://github.com/alyakubov/blockpgp |
|
alyakubov |
|
19 |
|
|
https://github.com/somnathrakshit/geograpy3 |
Extract place names from a URL or text, and add context to those names – for example distinguishing between a country, region or city. |
somnathrakshit |
apache-2.0 |
74 |
|
|
https://github.com/xct/elevatedrv |
Simple Driver that elevates any process to SYSTEM |
xct |
|
5 |
|
|
https://github.com/WangYihang/SourceLeakHacker |
:bug: A multi threads web application source leak scanner |
WangYihang |
|
348 |
|
|
https://github.com/0xeb/ida-qscripts |
An IDA plugin to increase productivity when developing scripts for IDA |
0xeb |
mit |
192 |
|
|
https://github.com/Ch0pin/AVIator |
Antivirus evasion project |
Ch0pin |
gpl-3.0 |
789 |
|
|
https://github.com/scrapy/xtractmime |
https://mimesniff.spec.whatwg.org/ implementation for Python |
scrapy |
bsd-3-clause |
11 |
|
|
https://github.com/PaddlePaddle/PaddleNLP |
👑 Easy-to-use and powerful NLP library with 🤗 Awesome model zoo, supporting wide-range of NLP tasks from research to industrial applications, including 🗂Text Classification, 🔍 Neural Search, ❓ Question Answering, ℹ️ Information Extraction, 📄 Document Intelligence, 💌 Sentiment Analysis and 🖼 Diffusion AICG system etc. |
PaddlePaddle |
apache-2.0 |
6263 |
|
|
https://github.com/sailay1996/CdpSvcLPE |
Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking) |
sailay1996 |
|
233 |
|
|
https://github.com/orlikoski/CyLR |
CyLR - Live Response Collection Tool |
orlikoski |
gpl-3.0 |
511 |
|
|
https://github.com/nats-io/stan.go |
NATS Streaming System |
nats-io |
apache-2.0 |
684 |
|
|
https://github.com/MISP/MISP-RPM |
RPM packages for MISP |
MISP |
|
4 |
|
|
https://github.com/CybersecurityLuxembourg/cybersecurity.lu |
Main portal of CYBERSECURITY Luxembourg: https://cybersecurity.lu/ |
CybersecurityLuxembourg |
bsd-2-clause |
3 |
|
|
https://github.com/Cargill/OpenSIEM-Logstash-Parsing |
SIEM Logstash parsing for more than hundred technologies |
Cargill |
apache-2.0 |
144 |
|
|
https://github.com/DCSO/Blog_CyTec |
Repository to provide files related to our blog articles. |
DCSO |
|
11 |
|
|
https://github.com/eCrimeLabs/MISP2CbR |
Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed. |
eCrimeLabs |
mit |
17 |
|
|
https://github.com/facebookresearch/Kats |
Kats, a kit to analyze time series data, a lightweight, easy-to-use, generalizable, and extendable framework to perform time series analysis, from understanding the key statistics and characteristics, detecting change points and anomalies, to forecasting future trends. |
facebookresearch |
mit |
4056 |
|
|
https://github.com/COSSAS/Certitude |
CERTITUDE - A python package to classify malicious URLs |
COSSAS |
mpl-2.0 |
16 |
|
|
https://github.com/dnSpyEx/dnSpy |
Unofficial revival of the well known .NET debugger and assembly editor, dnSpy |
dnSpyEx |
gpl-3.0 |
2273 |
|
|
https://github.com/hrbrmstr/certstream-rust |
Extract all domains from a CertStream-compatible CTL websockets server to RocksDB |
hrbrmstr |
mit |
5 |
|
|
https://github.com/zitadel/zitadel |
ZITADEL - The best of Auth0 and Keycloak combined. Built for the serverless era. |
zitadel |
apache-2.0 |
1626 |
|
|
https://github.com/guidovranken/cryptofuzz |
Fuzzing cryptographic libraries. Magic bug printer go brrrr. |
guidovranken |
gpl-3.0 |
484 |
|
|
https://github.com/vlang/ui |
Cross-platform UI library written in V |
vlang |
gpl-3.0 |
1843 |
|
|
https://github.com/hughsie/libjcat |
Library for reading and writing Jcat files |
hughsie |
lgpl-2.1 |
14 |
|
|
https://github.com/kazkansouh/DNSAdmin-DLL |
Example implementation of DNSAdmin DLL PrivEsc attack |
kazkansouh |
gpl-3.0 |
21 |
|
|
https://github.com/EttusResearch/uhd |
The USRP™ Hardware Driver Repository |
EttusResearch |
other |
720 |
|
|
https://github.com/nccgroup/Sniffle |
A sniffer for Bluetooth 5 and 4.x LE |
nccgroup |
gpl-3.0 |
584 |
|
|
https://github.com/ytisf/BirDuster |
A multi threaded Python script designed to brute force directories and files names on webservers. |
ytisf |
mit |
62 |
|
|
https://github.com/veo/vbackdoor |
Hide process,port,self under Linux using the ld_preload |
veo |
|
99 |
|
|
https://github.com/iThreatopedia/iThreatopedia.github.io |
A happy place for detection engineers, purple teamers and threat hunters focusing on macOS. |
iThreatopedia |
gpl-3.0 |
17 |
|
|
https://github.com/squix78/json-streaming-parser |
Arduino library for parsing potentially huge json streams on devices with scarce memory |
squix78 |
mit |
191 |
|
|
https://github.com/HadesW/mhy_exp |
Mhy Exp (exploit signed driver) |
HadesW |
|
123 |
|
|
https://github.com/fkie-cad/socbed |
A Self-Contained Open-Source Cyberattack Experimentation Testbed |
fkie-cad |
gpl-3.0 |
18 |
|
|
https://github.com/Nisarg12/Veritas |
A hex viewer for the sleuths! |
Nisarg12 |
mit |
5 |
|
|
https://github.com/rickmark/apple-malicious-baseband |
Sample of a Malicious baseband signed by Apple |
rickmark |
|
7 |
|
|
https://github.com/beerisgood/macOS_Hardening |
A collection about macOS |
beerisgood |
gpl-3.0 |
39 |
|
|
https://github.com/llsoftsec/llsoftsecbook |
Low-Level Software Security for Compiler Developers |
llsoftsec |
other |
136 |
|
|
https://github.com/tinylabs/crypto-sat-solve |
Python framework to solve crypto problems using grainofsalt and cryptominisat |
tinylabs |
|
10 |
|
|
https://github.com/westerndigitalcorporation/zenfs |
ZenFS is a storage backend for RocksDB that enables support for ZNS SSDs and SMR HDDs. |
westerndigitalcorporation |
gpl-2.0 |
136 |
|
|
https://github.com/lowlighter/metrics |
📊 An infographics generator with 30+ plugins and 200+ options to display stats about your GitHub account and render them as SVG, Markdown, PDF or JSON! |
lowlighter |
mit |
8728 |
|
|
https://github.com/eurecom-s3/noise-sdr |
Noise-SDR: Arbitrary Modulation of Electromagnetic Noise from Unprivileged Software and Its Impact on Emission Security |
eurecom-s3 |
gpl-3.0 |
11 |
|
|
https://github.com/just-the-docs/just-the-docs |
A modern, high customizable, responsive Jekyll theme for documention with built-in search. |
just-the-docs |
mit |
5001 |
|
|
https://github.com/BishopFox/bigip-scanner |
Determine the running software version of a remote F5 BIG-IP management interface. |
BishopFox |
mit |
22 |
|
|
https://github.com/JamesCooteUK/SharpSphere |
.NET Project for Attacking vCenter |
JamesCooteUK |
|
467 |
|
|
https://github.com/lamw/vcenter-event-mapping |
|
lamw |
|
31 |
|
|
https://github.com/lainsce/notejot |
Stupidly-simple notes app. |
lainsce |
gpl-3.0 |
320 |
|
|
https://github.com/ahrm/sioyek |
Sioyek is a PDF viewer designed for reading research papers and technical books. |
ahrm |
gpl-3.0 |
4087 |
|
|
https://github.com/badkeys/keypairvuln |
Private keys generated with vulnerable keypair versions (CVE-2021-41117) |
badkeys |
cc0-1.0 |
3 |
|
|
https://github.com/alufers/mitmproxy2swagger |
Automagically reverse-engineer REST APIs via capturing traffic |
alufers |
|
4042 |
|
|
https://github.com/demisto/demisto-py |
Demisto Client for Python |
demisto |
apache-2.0 |
61 |
|
|
https://github.com/markdoc/markdoc |
A powerful, flexible, Markdown-based authoring framework. |
markdoc |
mit |
5552 |
|
|
https://github.com/COSSAS/dgad |
DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic |
COSSAS |
apache-2.0 |
24 |
|
|
https://github.com/KasperskyLab/Apihashes |
IDA Pro plugin for recognizing known hashes of API function names |
KasperskyLab |
other |
66 |
|
|
https://github.com/SciTools/cartopy |
Cartopy - a cartographic python library with matplotlib support |
SciTools |
lgpl-3.0 |
1124 |
|
|
https://github.com/mitmproxy/mitmproxy |
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers. |
mitmproxy |
mit |
29166 |
|
|
https://github.com/CERTCC/VINCE |
VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordinated vulnerability disclosure. VINCE is a Python-based web platform. |
CERTCC |
other |
38 |
|
|
https://github.com/demisto/content |
Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR’s ever-growing Content Repository. Pull Requests are always welcome and highly appreciated! |
demisto |
mit |
870 |
|
|
https://github.com/cilium/tetragon |
eBPF-based Security Observability and Runtime Enforcement |
cilium |
apache-2.0 |
1902 |
|
|
https://github.com/mantvydasb/RedTeaming-Tactics-and-Techniques |
Red Teaming Tactics and Techniques |
mantvydasb |
|
2762 |
|
|
https://github.com/hysnsec/awesome-threat-modelling |
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review. |
hysnsec |
cc0-1.0 |
778 |
|
|
https://github.com/ElectronicCats/magspoof |
MagSpoof is a portable device that can spoof/emulate any magnetic stripe or credit card “wirelessly”, even on standard magstripe readers. |
ElectronicCats |
|
41 |
|
|
https://github.com/eCrimeLabs/MISP-autotagging |
This script when executed searches for organisations with a specific UUID and add a dedicated local tag to the event. |
eCrimeLabs |
mit |
6 |
|
|
https://github.com/PacktPublishing/Cleaning-Data-for-Effective-Data-Science |
Cleaning Data for Effective Data Science, published by Packt |
PacktPublishing |
mit |
67 |
|
|
https://github.com/ossf/package-feeds |
Feed parsing for language package manager updates |
ossf |
apache-2.0 |
51 |
|
|
https://github.com/ossf/package-analysis |
Open Source Package Analysis |
ossf |
apache-2.0 |
542 |
|
|
https://github.com/hmaccelerate/DGA_Detection |
DGA Detection with ML and DL |
hmaccelerate |
mit |
22 |
|
|
https://github.com/RITRedteam/goofkit |
In line function hooking LKM rootkit |
RITRedteam |
mit |
44 |
|
|
https://github.com/pojntfx/keygaen |
Sign, verify, encrypt and decrypt data with PGP in your browser. |
pojntfx |
agpl-3.0 |
78 |
|
|
https://github.com/pojntfx/weron |
Overlay networks based on WebRTC. |
pojntfx |
agpl-3.0 |
1195 |
|
|
https://github.com/bigb0sss/RedTeam-OffensiveSecurity |
Tools & Interesting Things for RedTeam Ops |
bigb0sss |
mit |
1577 |
|
|
https://github.com/tsale/BlueSploit |
BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review. |
tsale |
apache-2.0 |
28 |
|
|
https://github.com/LemmyNet/lemmy |
🐀 A link aggregator and forum for the fediverse |
LemmyNet |
agpl-3.0 |
6874 |
|
|
https://github.com/microsoft/debugpy |
An implementation of the Debug Adapter Protocol for Python |
microsoft |
other |
990 |
|
|
https://github.com/bytecode77/r77-rootkit |
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc. |
bytecode77 |
bsd-2-clause |
929 |
|
|
https://github.com/jordan2175/rewritecap |
Tool for rebasing a PCAP file and editing layer2 and layer 3 addresses |
jordan2175 |
apache-2.0 |
15 |
|
|
https://github.com/JulienPalard/python-versions |
Studying Python release adoptions by looking at PyPI downloads |
JulienPalard |
|
9 |
|
|
https://github.com/jgraph/drawio-desktop |
Official electron build of draw.io |
jgraph |
apache-2.0 |
34943 |
|
|
https://github.com/anestisb/vdexExtractor |
Tool to decompile & extract Android Dex bytecode from Vdex files |
anestisb |
apache-2.0 |
867 |
|
|
https://github.com/TimMisiak/WinDbgCookbook |
This is a repo for small, useful scripts and extensions |
TimMisiak |
mit |
167 |
|
|
https://github.com/bbayles/network-finder |
Python library to match IP addresses to encompassing networks |
bbayles |
mit |
4 |
|
|
https://github.com/nomi-sec/PoC-in-GitHub |
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware. |
nomi-sec |
|
4474 |
|
|
https://github.com/hometown-fork/hometown |
A supported fork of Mastodon that provides local posting and a wider range of content types. |
hometown-fork |
agpl-3.0 |
388 |
|
|
https://github.com/0xbitx/dedsecimsi |
sms sniffer and imsi catcher |
0xbitx |
|
38 |
|
|
https://github.com/mikeroyal/Digital-Forensics-Guide |
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics. |
mikeroyal |
|
654 |
|
|
https://github.com/xoolive/traffic |
A toolbox for processing and analysing air traffic data |
xoolive |
mit |
251 |
|
|
https://github.com/lyusupov/SoftRF |
:airplane: Multi-functional, compatible DIY general aviation proximity awareness system |
lyusupov |
gpl-3.0 |
515 |
|
|
https://github.com/utkusen/wholeaked |
a file-sharing tool that allows you to find the responsible person in case of a leakage |
utkusen |
bsd-3-clause |
722 |
|
|
https://github.com/D4stiny/spectre |
A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine. |
D4stiny |
gpl-3.0 |
553 |
|
|
https://github.com/the-h3x/H3X-CCTV |
Good dork to find vulnerable CCTV cameras |
the-h3x |
|
55 |
|
|
https://github.com/quickwit-oss/quickwit |
Cloud-native search engine for log management & analytics |
quickwit-oss |
other |
2624 |
|
|
https://github.com/oriansj/stage0 |
A set of minimal dependency bootstrap binaries |
oriansj |
gpl-3.0 |
787 |
|
|
https://github.com/RITRedteam/Father |
LD_PRELOAD rootkit |
RITRedteam |
unlicense |
8 |
|
|
https://github.com/marcnewlin/human-detector-detector |
proof-of-concept firmware to stream IQ over USB from Seeed MR24D11C10 radar module |
marcnewlin |
mit |
24 |
|
|
https://github.com/Saul-Mirone/milkdown |
🍼 Plugin driven WYSIWYG markdown editor framework. |
Saul-Mirone |
mit |
6766 |
|
|
https://github.com/Zeex/subhook |
Simple hooking library for C/C++ (x86 only, 32/64-bit, no dependencies) |
Zeex |
bsd-2-clause |
646 |
|
|
https://github.com/cas1m1r/Titleist |
Finding suspicious domains as they are registereed |
cas1m1r |
|
4 |
|
|
https://github.com/degrigis/awesome-angr |
A collection of resources/tools and analyses for the angr binary analysis framework. |
degrigis |
|
94 |
|
|
https://github.com/1N3/IntruderPayloads |
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists. |
1N3 |
|
3133 |
|
|
https://github.com/shubham0d/low-level-hooker |
A linux kernel funtions hooking module |
shubham0d |
mit |
10 |
|
|
https://github.com/aaronkaplan/yaccviso |
A tool for visualizing yacc grammars by Aaron Kaplan (Modified slightly by me modify to build and not crash on macs) |
aaronkaplan |
gpl-2.0 |
7 |
|
|
https://github.com/microsoft/restler-fuzzer |
RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services. |
microsoft |
mit |
1789 |
|
|
https://github.com/Leeon123/CC-attack |
Using Socks4/5 or http proxies to make a multithreading Http-flood/Https-flood (cc) attack. |
Leeon123 |
gpl-2.0 |
594 |
|
|
https://github.com/janestreet/magic-trace |
magic-trace collects and displays high-resolution traces of what a process is doing |
janestreet |
mit |
3902 |
|
|
https://github.com/Lookyloo/PlaywrightCapture |
Capture a URL with Playwright |
Lookyloo |
other |
8 |
|
|
https://github.com/0x4D31/hassh-utils |
hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hassh) |
0x4D31 |
bsd-3-clause |
44 |
|
|
https://github.com/bagder/uncurled |
Uncurled - everything I know and learned about running and maintaining Open Source projects for three decades. |
bagder |
cc-by-4.0 |
448 |
|
|
https://github.com/GaloisInc/reopt |
A tool for analyzing x86-64 binaries. |
GaloisInc |
bsd-3-clause |
260 |
|
|
https://github.com/tillson/git-hound |
Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system. |
tillson |
mit |
917 |
|
|
https://github.com/mechanicalnull/phantasm |
Binary Ninja plugin for visualizing coverage over time |
mechanicalnull |
mit |
16 |
|
|
https://github.com/vmallet/ida-plugins |
An interactive list of plugins for hex-rays’ IDA Pro |
vmallet |
mit |
92 |
|
|
https://github.com/Cisco-Talos/binary_function_similarity |
|
Cisco-Talos |
mit |
119 |
|
|
https://github.com/pump-io/pump.io |
Social server with an ActivityStreams API |
pump-io |
apache-2.0 |
2129 |
|
|
https://github.com/alecalve/python-bitcoin-blockchain-parser |
A Python 3 Bitcoin blockchain parser |
alecalve |
other |
387 |
|
|
https://github.com/sebdraven/IOCmite |
Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert |
sebdraven |
mit |
26 |
|
|
https://github.com/telekom-security/misp-releases |
|
telekom-security |
|
5 |
|
|
https://github.com/aleprada/otx_2_misp |
Script for gathering IoCs from OTX (AlienVault) and sending them to MISP. |
aleprada |
|
10 |
|
|
https://github.com/monarc-project/ansible-ubuntu |
Deployment of MONARC with Ansible |
monarc-project |
|
2 |
|
|
https://github.com/krsh/seer |
Seer is a tool that recognizes the architecture of a binary file |
krsh |
bsd-3-clause |
85 |
|
|
https://github.com/cloudsecurityalliance/gsd-database |
Global Security Database |
cloudsecurityalliance |
cc0-1.0 |
176 |
|
|
https://github.com/trinodb/trino |
Official repository of Trino, the distributed SQL query engine for big data, formerly known as PrestoSQL (https://trino.io) |
trinodb |
apache-2.0 |
6459 |
|
|
https://github.com/FelixBer/FindFunc |
FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string, or conform to various other constraints. |
FelixBer |
|
197 |
|
|
https://github.com/IRATEAU/sam-bot |
Bot to create MISP events from data in Slack |
IRATEAU |
|
16 |
|
|
https://github.com/forensicanalysis/artifactcollector |
🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system |
forensicanalysis |
mit |
173 |
|
|
https://github.com/PostgREST/postgrest |
REST API for any Postgres database |
PostgREST |
mit |
19381 |
|
|
https://github.com/NextronSystems/evtx-baseline |
A repository hosting example goodware evtx logs containing sample software installation and basic user interaction |
NextronSystems |
apache-2.0 |
39 |
|
|
https://github.com/sourque/louis |
Linux EDR written in Golang and based on eBPF. |
sourque |
gpl-2.0 |
212 |
|
|
https://github.com/jcrona/rf-ctrl |
A command-line tool to control 433MHz OOK based devices |
jcrona |
gpl-2.0 |
40 |
|
|
https://github.com/abusix/xarf |
XARF - eXtended Abuse Reporting Format |
abusix |
mit |
60 |
|
|
https://github.com/ostafen/clover |
A lightweight document-oriented NoSQL database written in pure Golang. |
ostafen |
mit |
284 |
|
|
https://github.com/8C/skypehunt |
OSINT Framework for Skype |
|
|
61 |
|
|
https://github.com/firefart/stunner |
Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers. |
firefart |
other |
541 |
|
|
https://github.com/nesosuke/mastodon-install-script |
誰でもMastodonサーバーを立てられるようになるやつ(主語デカ) |
nesosuke |
gpl-3.0 |
13 |
|
|
https://github.com/minimaxir/big-list-of-naughty-strings |
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data. |
minimaxir |
mit |
44087 |
|
|
https://github.com/Perdu/wombat |
Wi-Fi tracking system for testing and demonstrational purpose |
Perdu |
gpl-3.0 |
26 |
|
|
https://github.com/d3sre/Use_Case_Applicability |
Security Monitoring Resolution Categories |
d3sre |
|
131 |
|
|
https://github.com/CAIDA/dbats |
DataBase of Aggregated Time Series |
CAIDA |
other |
2 |
|
|
https://github.com/kyleavery/TitanLdr |
Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality. |
kyleavery |
|
97 |
|
|
https://github.com/bartblaze/Yara-rules |
Collection of private Yara rules. |
bartblaze |
mit |
168 |
|
|
https://github.com/al0ne/Vxscan |
python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。 |
al0ne |
apache-2.0 |
1518 |
|
|
https://github.com/infinitumitlabs/Karakurt-Hacking-Team-CTI |
IOC Data Obtained From Karakurt Hacking Team’s Internal Infrastructure |
infinitumitlabs |
mit |
30 |
|
|
https://github.com/joshhighet/ransomwatch |
a ransomware-group observatory 🧅👹 |
joshhighet |
unlicense |
208 |
|
|
https://github.com/DataDog/security-labs-pocs |
Proof of concept code for Datadog Security Labs referenced exploits. |
DataDog |
other |
305 |
|
|
https://github.com/hash3liZer/SillyRAT |
A Cross Platform multifunctional (Windows/Linux/Mac) RAT. |
hash3liZer |
mit |
520 |
|
|
https://github.com/easystats/correlation |
:link: Methods for Correlation Analysis |
easystats |
gpl-3.0 |
356 |
|
|
https://github.com/herosi/CDIR |
CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library |
herosi |
gpl-2.0 |
5 |
|
|
https://github.com/m0n0ph1/Process-Hollowing |
Great explanation of Process Hollowing (a Technique often used in Malware) |
m0n0ph1 |
|
760 |
|
|
https://github.com/mnrkbys/macosac |
Forensic Artifact Collection Tool for macOS |
mnrkbys |
apache-2.0 |
58 |
|
|
https://github.com/mandiant/thiri-notebook |
The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat hunting rules. |
mandiant |
apache-2.0 |
129 |
|
|
https://github.com/f4exb/sdrangel |
SDR Rx/Tx software for Airspy, Airspy HF+, BladeRF, HackRF, LimeSDR, PlutoSDR, RTL-SDR, SDRplay RSP1 and FunCube |
f4exb |
gpl-3.0 |
1660 |
|
|
https://github.com/stopipv/isdi |
ISDi (IPV Spyware Discovery) tool for Android and iOS. |
stopipv |
mit |
97 |
|
|
https://github.com/arsium/EagleMonitorRAT |
Remote Access Tool Written In C# |
arsium |
agpl-3.0 |
267 |
|
|
https://github.com/packetrat/packethunting |
Resources and materials for DEF CON 2018 Packet Hunting Workshop |
packetrat |
|
75 |
|
|
https://github.com/bloomberg/fast-noise-aware-topic-clustering |
Research code and scripts used in the Silburt et al. (2021) EMNLP 2021 paper ‘FANATIC: FAst Noise-Aware TopIc Clustering’ |
bloomberg |
apache-2.0 |
7 |
|
|
https://github.com/bloomberg/memray |
Memray is a memory profiler for Python |
bloomberg |
apache-2.0 |
9504 |
|
|
https://github.com/uber/orbit |
A Python package for Bayesian forecasting with object-oriented design and probabilistic models under the hood. |
uber |
other |
1508 |
|
|
https://github.com/hmatuschek/ATU |
Simple, portable automatic antenna tuner |
hmatuschek |
other |
9 |
|
|
https://github.com/JohnWoodman/VBA-Macro-Reverse-Shell |
Fully functioning reverse shell written entirely in VBA. |
JohnWoodman |
|
72 |
|
|
https://github.com/danghvu/pwp |
Python Web framework P0wner |
danghvu |
|
73 |
|
|
https://github.com/adamgreig/ecpdap |
ECPDAP allows you to program ECP5 FPGAs and attached SPI flash using CMSIS-DAP probes in JTAG mode. |
adamgreig |
apache-2.0 |
38 |
|
|
https://github.com/natesales/q |
A tiny command line DNS client with support for UDP, TCP, DoT, DoH, DoQ and ODoH. |
natesales |
gpl-3.0 |
898 |
|
|
https://github.com/0xdea/semgrep-rules |
A collection of my Semgrep rules to facilitate vulnerability research. |
0xdea |
mit |
239 |
|
|
https://github.com/tsafavi/codex |
CoDEx: A set of knowledge graph Completion Datasets Extracted from Wikidata and Wikipedia |
tsafavi |
mit |
109 |
|
|
https://github.com/SECFORCE/sftp-exploit |
OpenSSH <=6.6 SFTP misconfiguration universal exploit |
SECFORCE |
|
27 |
|
|
https://github.com/felixwilhelm/mario_baslr |
PoC for breaking hypervisor ASLR using branch target buffer collisions |
felixwilhelm |
|
163 |
|
|
https://github.com/WB2CBA/ADX |
ADX - Arduino Digital Modes HF Transceiver |
WB2CBA |
|
32 |
|
|
https://github.com/yoeo/guesslang |
Detect the programming language of a source code |
yoeo |
mit |
600 |
|
|
https://github.com/G73st/BypassAV |
c++ shellcode loader |
G73st |
|
63 |
|
|
https://github.com/Hadi999/NXcrypt |
NXcrypt - ‘python backdoor’ framework |
Hadi999 |
|
352 |
|
|
https://github.com/cdimascio/py-readability-metrics |
📗 Score text readability using a number of formulas: Flesch-Kincaid Grade Level, Gunning Fog, ARI, Dale Chall, SMOG, and more |
cdimascio |
mit |
233 |
|
|
https://github.com/marktext/marktext |
📝A simple and elegant markdown editor, available for Linux, macOS and Windows. |
marktext |
mit |
36838 |
|
|
https://github.com/trailofbits/pe-parse |
Principled, lightweight C/C++ PE parser |
trailofbits |
mit |
590 |
|
|
https://github.com/arget13/DDexec |
A technique to run binaries filelessly and stealthily on Linux using dd to replace the shell with another process. |
arget13 |
gpl-3.0 |
439 |
|
|
https://github.com/ka9q/ka9q-radio |
Multichannel SDR based on fast convolution and IP multicasting |
ka9q |
gpl-3.0 |
60 |
|
|
https://github.com/iamckn/backdoors |
Simple linux backdoors and hiding techniques |
iamckn |
|
202 |
|
|
https://github.com/vasturiano/react-force-graph |
React component for 2D, 3D, VR and AR force directed graphs |
vasturiano |
mit |
1248 |
|
|
https://github.com/dpalmasan/TRUNAJOD2.0 |
An easy-to-use library to extract indices from texts. |
dpalmasan |
mit |
22 |
|
|
https://github.com/bonjourmalware/melody |
Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulation. |
bonjourmalware |
mit |
138 |
|
|
https://github.com/kagancapar/CVE-2022-29072 |
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. |
kagancapar |
gpl-3.0 |
673 |
|
|
https://github.com/giladreich/ida_migrator |
IDA Migrator is an IDA Pro plugin which helps migrate existing work from one database instance to another. It Conveniently migrates function names, structures and enums. |
giladreich |
mit |
65 |
|
|
https://github.com/g3gg0/dump1090 |
Dump1090 is a simple Mode S decoder for RTLSDR devices |
g3gg0 |
other |
1 |
|
|
https://github.com/CERT-Polska/training-mwdb |
MWDB exercises |
CERT-Polska |
|
14 |
|
|
https://github.com/microsoft/playwright |
Playwright is a framework for Web Testing and Automation. It allows testing Chromium, Firefox and WebKit with a single API. |
microsoft |
apache-2.0 |
44063 |
|
|
https://github.com/httpie/httpie |
🥧 HTTPie for Terminal — modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & more. |
httpie |
bsd-3-clause |
24541 |
|
|
https://github.com/ssdeep-project/ssdeep |
Fuzzy hashing API and fuzzy hashing tool |
ssdeep-project |
gpl-2.0 |
498 |
|
|
https://github.com/renatolond/mastodon-twitter-poster |
Crossposter to post statuses between Mastodon and Twitter |
renatolond |
agpl-3.0 |
567 |
|
|
https://github.com/woodruffw/steg86 |
Hiding messages in x86 programs using semantic duals |
woodruffw |
other |
206 |
|
|
https://github.com/cloudtools/ssh-cert-authority |
An implementation of an SSH certificate authority. |
cloudtools |
bsd-2-clause |
698 |
|
|
https://github.com/J535D165/recordlinkage |
A powerful and modular toolkit for record linkage and duplicate detection in Python |
J535D165 |
bsd-3-clause |
725 |
|
|
https://github.com/Johnng007/Live-Forensicator |
Powershell Script to aid Incidence Response and Live Forensics |
Johnng007 |
|
310 |
|
|
https://github.com/dnote/dnote |
A simple command line notebook for programmers |
dnote |
other |
2396 |
|
|
https://github.com/ve7it/STM32F769-FT8-Transceiver |
A DSP SDR project using a STM32f769 Disco board to field a self contained FT8 Transceiver utilizing SoftRock, UHFSDR , HobbyPCB RS-HFIQ SDR Transceiver Board and other SDR boards. |
ve7it |
|
3 |
|
|
https://github.com/ietf-tools/relaton-data-3gpp |
3GPP data in Relaton format |
ietf-tools |
|
3 |
|
|
https://github.com/VollRagm/lpmapper |
A mapper that maps shellcode into loaded large page drivers |
VollRagm |
mit |
112 |
|
|
https://github.com/hakluke/hakrawler |
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application |
hakluke |
gpl-3.0 |
3315 |
|
|
https://github.com/JustinAzoff/pynfdump |
python wrapper for the nfdump cli application |
JustinAzoff |
|
21 |
|
|
https://github.com/omerbenamram/evtx |
A Fast (and safe) parser for the Windows XML Event Log (EVTX) format |
omerbenamram |
apache-2.0 |
402 |
|
|
https://github.com/greatscottgadgets/libbtbb |
A Bluetooth baseband decoding library |
greatscottgadgets |
gpl-2.0 |
163 |
|
|
https://github.com/martynvdijke/gr-lora_sdr |
This is the fully-functional GNU Radio software-defined radio (SDR) implementation of a LoRa transceiver with all the necessary transceiver components to operate correctly even at very low SNRs. This work is a collaboration of the Telecommunication Circuits Laboratory from EPFL and the Electronic Systems group from the Technical University of Eindhoven. |
martynvdijke |
gpl-3.0 |
19 |
|
|
https://github.com/sbz/elfdbg |
Utility to determine if ELF binary is built with debug sections |
sbz |
|
8 |
|
|
https://github.com/jeffssh/exploits |
Mega repo for exploit development. Contains individual exploits and libraries to assist during exploitation |
jeffssh |
|
19 |
|
|
https://github.com/WhiteHSBG/JNDIExploit |
对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改 |
WhiteHSBG |
|
642 |
|
|
https://github.com/Microsvuln/NtQuerySection-sample |
Retrieve Memory mapped file size on windows with NtQuerySection and _SECTION_BASIC_INFORMATION |
Microsvuln |
|
1 |
|
|
https://github.com/aemmitt-ns/radius |
radius2 is a fast binary emulation and symbolic execution framework using radare2 |
aemmitt-ns |
mit |
295 |
|
|
https://github.com/arthepsy/CVE-2021-4034 |
PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034) |
arthepsy |
|
918 |
|
|
https://github.com/cyrus-and/chrome-har-capturer |
Capture HAR files from a Chrome instance |
cyrus-and |
mit |
479 |
|
|
https://github.com/pyppeteer/pyppeteer |
Headless chrome/chromium automation library (unofficial port of puppeteer) |
pyppeteer |
other |
2709 |
|
|
https://github.com/Lissy93/personal-security-checklist |
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2022 |
Lissy93 |
other |
9864 |
|
|
https://github.com/hpuhr/COMPASS |
The OpenATS COMPASS (Compliance Assessment) tool aims at providing a generalized framework for air-traffic surveillance data analysis, visualization & evaluation. |
hpuhr |
gpl-3.0 |
58 |
|
|
https://github.com/hpuhr/jASTERIX |
C++ Library for EUROCONTROL’s ASTERIX to JSON conversion. |
hpuhr |
gpl-3.0 |
23 |
|
|
https://github.com/junzis/pyModeS |
Python decoder for Mode S and ADS-B signals |
junzis |
gpl-3.0 |
407 |
|
|
https://github.com/ampledata/adsbcot |
ADS-B to Cursor on Target Gateway for TAK Products, including ATAK, WinTAK & iTAK. |
ampledata |
other |
31 |
|
|
https://github.com/TomerEven/Prefix-Filter |
Prefix Filter: Practically and Theoretically Better Than Bloom. |
TomerEven |
other |
31 |
|
|
https://github.com/NextronSystems/ransomware-simulator |
Ransomware simulator written in Golang |
NextronSystems |
mit |
273 |
|
|
https://github.com/DSecureMe/vmc |
VMC: a Scalable, Open Source and Free Vulnerability Management Platform |
DSecureMe |
apache-2.0 |
47 |
|
|
https://github.com/dataplane/serverhosting |
Server hosting providers |
dataplane |
|
22 |
|
|
https://github.com/pathtofile/bad-bpf |
A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29 |
pathtofile |
bsd-3-clause |
280 |
|
|
https://github.com/s0md3v/Smap |
a drop-in replacement for Nmap powered by shodan.io |
s0md3v |
agpl-3.0 |
2237 |
|
|
https://github.com/adamsvoboda/nim-loader |
WIP shellcode loader in nim with EDR evasion techniques |
adamsvoboda |
|
158 |
|
|
https://github.com/emptymonkey/revsh |
A reverse shell with terminal support, data tunneling, and advanced pivoting capabilities. |
emptymonkey |
mit |
441 |
|
|
https://github.com/csababarta/ntdsxtract |
Active Directory forensic framework |
csababarta |
gpl-3.0 |
269 |
|
|
https://github.com/purocean/yn |
A Hackable Markdown Note Application for Programmers. Version control, AI completion, mind map, documents encryption, code snippet running, integrated terminal, chart embedding, HTML applets, Reveal.js, plug-in, and macro replacement. |
purocean |
agpl-3.0 |
4133 |
|
|
https://github.com/krisnova/boopkit |
Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin. |
krisnova |
apache-2.0 |
1228 |
|
|
https://github.com/danobot/notorious |
Offline-first note taking and knowledge management application for desktop and the web. Supports nested notebooks, tags, real-time sync, images and file attachments. Optimised for efficiency with keyboard navigation, full-text search and version control. Never lose a thought. Private, fast, notorious 😈 |
danobot |
gpl-3.0 |
74 |
|
|
https://github.com/opensanctions/bods-ftm |
Import OpenOwnership BODS data |
opensanctions |
|
5 |
|
|
https://github.com/Guenael/rtlsdr-ft8d |
FT8 decoder of RTL devices |
Guenael |
|
23 |
|
|
https://github.com/CycloneDX/bom-examples |
A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc) |
CycloneDX |
cc0-1.0 |
63 |
|
|
https://github.com/andrewjkerr/security-cheatsheets |
🔒 A collection of cheatsheets for various infosec tools and topics. |
andrewjkerr |
mit |
1007 |
|
|
https://github.com/hashlookup/hashlookup-nsrl |
hashlookup-nsrl is a NSRL RDSv3 importer for hashlookup server |
hashlookup |
other |
4 |
|
|
https://github.com/CYBERDEVILZ/Cryptonite |
A ransomware created for Windows OS. It is easy to test in a safe environment before deploying it to the victims. Developed using Python |
CYBERDEVILZ |
mit |
119 |
|
|
https://github.com/mikeroyal/Open-Source-Security-Guide |
Open Source Security Guide. Learn all about Security Standards, Frameworks, Threat Models, Encryption, and Benchmarks. |
mikeroyal |
|
602 |
|
|
https://github.com/david-oswald/iot-fw-extraction |
Additional material for our paper “Breaking all the Things - A Systematic Survey of Firmware Extraction Techniques for IoT Devices” (CARDIS 2018) |
david-oswald |
|
13 |
|
|
https://github.com/github/securitylab |
Resources related to GitHub Security Lab |
github |
mit |
1007 |
|
|
https://github.com/cube0x0/MiniDump |
C# Lsass parser |
cube0x0 |
|
227 |
|
|
https://github.com/lscardoso/gr-dsmx-rc |
GNU Radio RC DSMX decoder |
lscardoso |
|
10 |
|
|
https://github.com/nullt3r/jfscan |
JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap’s scripting abilities to discover information about services. Generate report. |
nullt3r |
mit |
348 |
|
|
https://github.com/amitschendel/venom-rootkit |
A simple Windows kernel rootkit. |
amitschendel |
|
64 |
|
|
https://github.com/uf0o/PykDumper |
Dumping credentials through windbg and pykd |
uf0o |
|
34 |
|
|
https://github.com/MISP/misp-grafana |
A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB |
MISP |
agpl-3.0 |
9 |
|
|
https://github.com/snovvcrash/KeeThief |
Methods for attacking KeePass 2.X databases, including extracting of encryption key material from memory. |
snovvcrash |
bsd-3-clause |
78 |
|
|
https://github.com/nesg-ugr/c4darknet |
|
nesg-ugr |
other |
9 |
|
|
https://github.com/HLasse/TextDescriptives |
A Python library for calculating a large variety of statistics from text |
HLasse |
apache-2.0 |
142 |
|
|
https://github.com/sourcefrenchy/goqrexfil |
A mini project to exfiltrate data via QR codes |
sourcefrenchy |
mit |
19 |
|
|
https://github.com/hillu/local-spring-vuln-scanner |
Simple local scanner for applications containing vulnerable Spring libraries |
hillu |
gpl-3.0 |
130 |
|
|
https://github.com/pre-commit/pre-commit |
A framework for managing and maintaining multi-language pre-commit hooks. |
pre-commit |
mit |
9092 |
|
|
https://github.com/uforia/exitgather |
Tool for automatic list generation of known TOR and VPN exit nodes |
uforia |
gpl-2.0 |
25 |
|
|
https://github.com/log2timeline/plaso |
Super timeline all the things |
log2timeline |
apache-2.0 |
1363 |
|
|
https://github.com/molly/static-timeline-generator |
Create static timeline webpages. |
molly |
mit |
169 |
|
|
https://github.com/graniet/operative-framework |
operative framework is a investigation OSINT framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules. |
graniet |
apache-2.0 |
591 |
|
|
https://github.com/MISP/misp-usage-statistics |
MISP usage statistics using bokeh (as a static webpage) |
MISP |
bsd-2-clause |
3 |
|
|
https://github.com/chaosec2021/Spring-cloud-function-SpEL-RCE |
Spring-cloud-function-SpEL-RCE 批量检测脚本,反弹shell_EXP,欢迎师傅们试用 |
chaosec2021 |
|
239 |
|
|
https://github.com/0xsp-SRD/OffensivePascal |
Pascal Offsec repo for malware dev and red teaming 🚩 |
0xsp-SRD |
|
122 |
|
|
https://github.com/Neo23x0/panopticon |
A YARA Rule Performance Measurement Tool |
Neo23x0 |
mit |
51 |
|
|
https://github.com/caliskanfurkan/quick-ir |
Python and WMI based incident response script |
caliskanfurkan |
|
4 |
|
|
https://github.com/disclose/bug-bounty-platforms |
A community-powered collection of all known bug bounty platforms, vulnerability disclosure platforms, and crowdsourced security platforms currently active on the Internet. |
disclose |
cc0-1.0 |
200 |
|
|
https://github.com/mumble-voip/mumble |
Mumble is an open-source, low-latency, high quality voice chat software. |
mumble-voip |
other |
5076 |
|
|
https://github.com/JustasMasiulis/ida_bitfields |
IDA Pro plugin to make bitfield accesses easier to grep |
JustasMasiulis |
mpl-2.0 |
172 |
|
|
https://github.com/Wilfred/difftastic |
a structural diff that understands syntax 🟥🟩 |
Wilfred |
mit |
13362 |
|
|
https://github.com/Ostorlab/ostorlab |
Ostorlab is a security scanning orchestrator for the modern age. |
Ostorlab |
apache-2.0 |
255 |
|
|
https://github.com/bohops/SharpRDPHijack |
A POC Remote Desktop (RDP) session hijack utility for disconnected sessions |
bohops |
bsd-3-clause |
323 |
|
|
https://github.com/Bonfee/CVE-2022-0995 |
CVE-2022-0995 exploit |
Bonfee |
|
483 |
|
|
https://github.com/nsbogam/CVE-2022-26269 |
Suzuki connect app is used to get the car information like Fuel, Ignition status, Current location, Seat buckle status etc. In Ignis, Zeta variant car if the Fuel CAN messages and Seat buckle status is spoofed via OBD 2 port with the crafted value (e.g. zero percent fuel and Car seat is buckled ), then the same value is reflected on Suzuki connect app, which can mislead the user. |
nsbogam |
|
2 |
|
|
https://github.com/o1mate/AppLocker-Bypass |
Bypassing AppLocker with C# |
o1mate |
|
131 |
|
|
https://github.com/hktalent/spring-spel-0day-poc |
spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963 |
hktalent |
|
340 |
|
|
https://github.com/ehids/ecapture |
capture SSL/TLS text content without CA cert using eBPF. supports Linux x86_64/Aarch64, Android Aarch64. |
ehids |
agpl-3.0 |
4972 |
|
|
https://github.com/saferwall/yara-rules |
Collection of Yara Rules |
saferwall |
apache-2.0 |
3 |
|
|
https://github.com/soxoj/tiktok-scraper |
TikTok Scraper. Download video posts, collect user/trend/hashtag/music feed metadata, sign URL and etc. |
soxoj |
|
39 |
|
|
https://github.com/alexcard144803/KasperskyHook_NewKSDriver |
Started from https://github.com/iPower/KasperskyHook i updated sig and kaspersky driver |
alexcard144803 |
|
11 |
|
|
https://github.com/vxunderground/VX-API |
Collection of various WINAPI tricks / features used or abused by Malware |
vxunderground |
|
1207 |
|
|
https://github.com/daniestevez/galileo-osnma |
Galileo OSNMA (Open Service Navigation Message Authentication) |
daniestevez |
apache-2.0 |
24 |
|
|
https://github.com/hashlookup/hashlookup-lib |
hashlookup insert pipeline Python library |
hashlookup |
agpl-3.0 |
6 |
|
|
https://github.com/P1sec/gea-implementation |
Implementations of the GEA-1 and GEA-2 (GPRS Encryption Algorithm) stream ciphers in C, Python and Rust. |
P1sec |
agpl-3.0 |
12 |
|
|
https://github.com/gnuradio/gr-inspector |
Signal Analysis Toolbox for GNU Radio |
gnuradio |
gpl-3.0 |
230 |
|
|
https://github.com/crytic/not-so-smart-contracts |
Examples of Solidity security issues |
crytic |
apache-2.0 |
1754 |
|
|
https://github.com/gfek/Real-CyberSecurity-Datasets |
Public datasets to help you address various cyber security problems. |
gfek |
|
95 |
|
|
https://github.com/xpn/getsystem-offline |
Small tool to get a SYSTEM shell |
xpn |
|
113 |
|
|
https://github.com/bkerler/gr-atsc2 |
GNURadio TS Streaming server block that can be used to watch ATSC TV streams with a player like VLC in real-time provided your system can handle the processing of the rest of the flowgraph. |
bkerler |
gpl-3.0 |
3 |
|
|
https://github.com/ghostop14/gr-xcorrelate |
GNURadio OOT Module Providing Signal Cross-Correlation |
ghostop14 |
gpl-3.0 |
14 |
|
|
https://github.com/ghostop14/gr-correctiq |
GNURadio blocks to remove that IQ DC spike just like some software and drivers do! Three techniques available: auto, auto-tune to dc offset, and manual. |
ghostop14 |
gpl-3.0 |
68 |
|
|
https://github.com/welk1n/JNDI-Injection-Exploit |
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc) |
welk1n |
mit |
2039 |
|
|
https://github.com/cure53/Contracts |
A small collection of potentially useful contract templates |
cure53 |
|
299 |
|
|
https://github.com/steakknife/bloomfilter |
Face-meltingly fast, thread-safe, marshalable, unionable, probability- and optimal-size-calculating Bloom filter in go |
steakknife |
mit |
340 |
|
|
https://github.com/tcostam/awesome-command-control |
A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assessments. |
tcostam |
|
276 |
|
|
https://github.com/PaloAltoNetworks/tcpsession |
A python library to extract TCP sessions from PCAPs. |
PaloAltoNetworks |
mit |
12 |
|
|
https://github.com/caiiiycuk/httpflow |
httpflow - extract http requests from tcpflow output |
caiiiycuk |
|
8 |
|
|
https://github.com/fpietrosanti/kaspersky-risks |
Risk Evaluation of Kaspersky related Risk, if subject to Coercion by Russian Government for Intelligence and Military Purposes |
fpietrosanti |
|
7 |
|
|
https://github.com/andrmuel/gr-dab |
GNU Radio DAB (digital audio broadcasting) module |
andrmuel |
gpl-3.0 |
73 |
|
|
https://github.com/angr/binsync |
A collaborative reversing plugin for cross-decompiler collaboration, built on git. |
angr |
bsd-2-clause |
122 |
|
|
https://github.com/atlas0fd00m/rfcat |
RfCat - swiss-army knife of ISM band radio |
atlas0fd00m |
other |
439 |
|
|
https://github.com/axiros/terminal_markdown_viewer |
Styled Terminal Markdown Viewer |
axiros |
other |
1651 |
|
|
https://github.com/rushter/selectolax |
Python binding to Modest and Lexbor engines (fast HTML5 parser with CSS selectors). |
rushter |
mit |
619 |
|
|
https://github.com/awslabs/open-data-registry |
A registry of publicly available datasets on AWS |
awslabs |
apache-2.0 |
1036 |
|
|
https://github.com/snovvcrash/OffensivePipeline |
OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises. |
snovvcrash |
gpl-3.0 |
79 |
|
|
https://github.com/JPCERTCC/MalConfScan |
Volatility plugin for extracts configuration data of known malware |
JPCERTCC |
other |
436 |
|
|
https://github.com/m-chrome/py-suricataparser |
Pure python parser for Snort/Suricata rules. |
m-chrome |
apache-2.0 |
10 |
|
|
https://github.com/0xADE1A1DE/AssemblyLine |
A C library and binary for generating machine code of x86_64 assembly language and executing on the fly without invoking another compiler, assembler or linker. |
0xADE1A1DE |
apache-2.0 |
151 |
|
|
https://github.com/alexandria-org/alexandria |
Full text search engine powering Alexandria.org - the open search engine. |
alexandria-org |
other |
151 |
|
|
https://github.com/karma9874/AndroRAT |
A Simple android remote administration tool using sockets. It uses java on the client side and python on the server side |
karma9874 |
mit |
1310 |
|
|
https://github.com/nadavrot/layout |
Layout is a rust library and a command line tool that renders Graphviz dot files. |
nadavrot |
mit |
505 |
|
|
https://github.com/claroty/arya |
Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA. |
claroty |
mit |
161 |
|
|
https://github.com/Sc00bz/break-uheprng |
Attack code for UHEPRNG (Ultra High Entropy Pseudo-Random Number Generator) |
Sc00bz |
mit |
5 |
|
|
https://github.com/Sc00bz/copilot-hash-collider |
|
Sc00bz |
mit |
24 |
|
|
https://github.com/post-cyberlabs/Offensive_tools |
|
post-cyberlabs |
|
268 |
|
|
https://github.com/opensemanticsearch/open-semantic-entity-search-api |
Open Source REST API for named entity extraction, named entity linking, named entity disambiguation, recommendation & reconciliation of entities like persons, organizations and places for (semi)automatic semantic tagging & analysis of documents by linked data knowledge graph like SKOS thesaurus, RDF ontology, database(s) or list(s) of names |
opensemanticsearch |
gpl-3.0 |
142 |
|
|
https://github.com/tkuester/gr-lacrosse |
GNU Radio module for La Crosse weather stations. |
tkuester |
|
21 |
|
|
https://github.com/FunnyWolf/Viper |
Redteam operation platform with webui 图形化红队行动辅助平台 |
FunnyWolf |
bsd-3-clause |
2626 |
|
|
https://github.com/knownsec/404StarLink |
404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目 |
knownsec |
|
4225 |
|
|
https://github.com/BeichenDream/InjectJDBC |
注入JVM进程 动态获取目标进程连接的数据库 |
BeichenDream |
|
237 |
|
|
https://github.com/BeichenDream/BadPotato |
Windows 权限提升 BadPotato |
BeichenDream |
|
570 |
|
|
https://github.com/MISP/misp-training-lea |
Practical Information Sharing between Law Enforcement and CSIRT communities using MISP |
MISP |
|
22 |
|
|
https://github.com/khast3x/h8mail |
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email |
khast3x |
other |
2809 |
|
|
https://github.com/D4Vinci/Cuteit |
IP obfuscator made to make a malicious ip a bit cuter |
D4Vinci |
gpl-3.0 |
515 |
|
|
https://github.com/CalfCrusher/Poiana |
Meterpreter Reverse shell over TOR network using hidden services |
CalfCrusher |
mit |
76 |
|
|
https://github.com/r00tten/VTI-Cosplay |
Low budget VirusTotal Intelligence Cosplay |
r00tten |
gpl-3.0 |
20 |
|
|
https://github.com/mpolden/echoip |
IP address lookup service |
mpolden |
bsd-3-clause |
3598 |
|
|
https://github.com/log2timeline/dfimagetools |
Collection of tools for processing storage media images |
log2timeline |
apache-2.0 |
6 |
|
|
https://github.com/mttaggart/wtfbins |
WTF are these binaries doing?! A list of benign applications that mimic malicious behavior. |
mttaggart |
mit |
62 |
|
|
https://github.com/zeroSteiner/mayhem |
Runtime Process Manipulation |
zeroSteiner |
bsd-3-clause |
216 |
|
|
https://github.com/mborgerson/mdec |
Decompilation as a Service. Explore multiple decompilers and compare their output with minimal effort. Upload binary, get decompilation. |
mborgerson |
other |
414 |
|
|
https://github.com/cocaman/russian_root_ca |
|
cocaman |
|
5 |
|
|
https://github.com/sysdream/ligolo |
Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/ |
sysdream |
gpl-3.0 |
1270 |
|
|
https://github.com/cesena/ghidra2dwarf |
🐉 Export ghidra decompiled code to dwarf sections inside ELF binary |
cesena |
mit |
133 |
|
|
https://github.com/net-protect/google-fs-recover |
Google Filestream Forensic Tool |
net-protect |
mit |
14 |
|
|
https://github.com/flesueur/mi-lxc |
Mini-Internet using LXC for practical works |
flesueur |
agpl-3.0 |
327 |
|
|
https://github.com/emanuele-f/PCAPdroid |
No-root network monitor, firewall and PCAP dumper for Android |
emanuele-f |
gpl-3.0 |
742 |
|
|
https://github.com/simonw/shot-scraper |
A command-line utility for taking automated screenshots of websites |
simonw |
apache-2.0 |
760 |
|
|
https://github.com/cube0x0/SyscallPack |
BOF and Shellcode for full DLL unhooking using dynamic syscalls |
cube0x0 |
|
229 |
|
|
https://github.com/r-cybersecurity/list-of-security-resources-for-ukraine |
List of companies or individuals offering cybersecurity services, data, or other tangible assets to assist in Ukraine’s defense of its independence. |
r-cybersecurity |
other |
68 |
|
|
https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit |
A root exploit for CVE-2022-0847 (Dirty Pipe) |
Arinerron |
gpl-2.0 |
989 |
|
|
https://github.com/midnightslacker/exploit_training |
The best resources for learning exploit development |
midnightslacker |
|
63 |
|
|
https://github.com/thewhiteninja/ntfstool |
Forensics tool for NTFS (parser, mft, bitlocker, deleted files) |
thewhiteninja |
mit |
288 |
|
|
https://github.com/ail-project/ail-feeder-atom-rss |
|
ail-project |
|
2 |
|
|
https://github.com/TomWright/dasel |
Select, put and delete data from JSON, TOML, YAML, XML and CSV files with a single tool. Supports conversion between formats and can be used as a Go package. |
TomWright |
mit |
3768 |
|
|
https://github.com/vgo0/nginx-backdoor |
Example nginx backdoor via malicious plugin |
vgo0 |
|
19 |
|
|
https://github.com/DavidBuchanan314/libleakmydata |
A simple LD_PRELOAD library to disable SSL certificate verification. Inspired by libeatmydata. |
DavidBuchanan314 |
mit |
153 |
|
|
https://github.com/8051Enthusiast/biodiff |
Hex diff viewer using alignment algorithms from biology |
8051Enthusiast |
mit |
478 |
|
|
https://github.com/armvirus/SinMapper |
usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to map your driver over. the main focus of this project is to prevent modern anti-cheats (BattlEye, EAC) from finding your driver and having the power to hook anything due to being inside of legit memory (signed legit driver). |
armvirus |
|
160 |
|
|
https://github.com/jazzband/prettytable |
Display tabular data in a visually appealing ASCII table format |
jazzband |
other |
878 |
|
|
https://github.com/crmulliner/adbi |
Android Dynamic Binary Instrumentation Toolkit |
crmulliner |
|
1214 |
|
|
https://github.com/cryptax/misc-code |
Miscellaneous code |
cryptax |
|
58 |
|
|
https://github.com/Cybernite-Technologies/trickbot-leak |
Repo for archiving research and investigation related to the recent Trickbot leaks. |
Cybernite-Technologies |
gpl-3.0 |
54 |
|
|
https://github.com/trisulnsm/apps |
Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics. |
trisulnsm |
|
13 |
|
|
https://github.com/binarly-io/FwHunt |
The Binarly Firmware Hunt (FwHunt) rule format was designed to scan for known vulnerabilities in UEFI firmware. |
binarly-io |
cc0-1.0 |
143 |
|
|
https://github.com/vinhjaxt/eBPF-sockmap-proxy |
eBPF Sockmap Proxy |
vinhjaxt |
|
9 |
|
|
https://github.com/qeeqbox/url-sandbox |
Scalable URL Sandbox for analyzing URLs and Domains from phishing attacks |
qeeqbox |
agpl-3.0 |
114 |
|
|
https://github.com/defaultnamehere/cookie_crimes |
Read local Chrome cookies without root or decrypting |
defaultnamehere |
mit |
506 |
|
|
https://github.com/DynamiteAI/dynamite-nsm |
DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection |
DynamiteAI |
gpl-3.0 |
139 |
|
|
https://github.com/Gerapy/Gerapy |
Distributed Crawler Management Framework Based on Scrapy, Scrapyd, Django and Vue.js |
Gerapy |
mit |
2849 |
|
|
https://github.com/mgdm/htmlq |
Like jq, but for HTML. |
mgdm |
mit |
6172 |
|
|
https://github.com/kimci86/bkcrack |
Crack legacy zip encryption with Biham and Kocher’s known plaintext attack. |
kimci86 |
zlib |
786 |
|
|
https://github.com/QAX-A-Team/openssh-7.6p1-patch |
a patched sshd for red team activities |
QAX-A-Team |
|
66 |
|
|
https://github.com/MISP/dockerized_training_environment |
A training environment, with docker. |
MISP |
mit |
7 |
|
|
https://github.com/eset/malware-research |
Code written as part of our various malware investigations |
eset |
bsd-2-clause |
322 |
|
|
https://github.com/opengs/uashield |
Voluntary Ukraine security platform to protect us from Russian forces in the Internet |
opengs |
unlicense |
1089 |
|
|
https://github.com/hashcat/princeprocessor |
Standalone password candidate generator using the PRINCE algorithm |
hashcat |
other |
358 |
|
|
https://github.com/cudeso/misp-tip-of-the-week |
A collection of tips for using MISP. |
cudeso |
|
41 |
|
|
https://github.com/SMAT-Lab/Scalpel |
Scalpel: The Python Static Analysis Framework |
SMAT-Lab |
apache-2.0 |
167 |
|
|
https://github.com/hackerschoice/gsocket-relay |
Global Socket Server |
hackerschoice |
other |
13 |
|
|
https://github.com/hackerschoice/gsocket |
Connect like there is no firewall. Securely. |
hackerschoice |
bsd-2-clause |
982 |
|
|
https://github.com/adipinto/HP-Data-Protector-RCE |
HP Data Protector Arbitrary Remote Command Execution |
adipinto |
|
11 |
|
|
https://github.com/cxnder/bn-dyldsharedcache |
dyld_shared_cache processing / Single-Image loading for BinaryNinja |
cxnder |
mit |
74 |
|
|
https://github.com/mandiant/ADFSDump |
|
mandiant |
apache-2.0 |
231 |
|
|
https://github.com/erkexzcx/stoppropaganda |
A special DOS application to stop pro-Russian aggression websites. Support Ukraine! |
erkexzcx |
gpl-3.0 |
465 |
|
|
https://github.com/ajax-lives/NoRussian |
Volunteer DoS tool via HTML + JS |
ajax-lives |
gpl-3.0 |
399 |
|
|
https://github.com/Orange-Cyberdefense/russia-ukraine_IOCs |
Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake |
Orange-Cyberdefense |
|
155 |
|
|
https://github.com/curated-intel/Ukraine-Cyber-Operations |
Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine. |
curated-intel |
|
845 |
|
|
https://github.com/ail-project/ail-feeder-twitter |
External twitter feeder for AIL framework |
ail-project |
agpl-3.0 |
16 |
|
|
https://github.com/ail-project/twint |
An advanced Twitter scraping & OSINT tool written in Python that doesn’t use Twitter’s API, allowing you to scrape a user’s followers, following, Tweets and more while evading most API limitations. |
ail-project |
mit |
13 |
|
|
https://github.com/deathau/markdownload |
A Firefox and Google Chrome extension to clip websites and download them into a readable markdown file. |
deathau |
apache-2.0 |
1120 |
|
|
https://github.com/dashingsoft/pyarmor |
A tool used to obfuscate python scripts, bind obfuscated scripts to fixed machine or expire obfuscated scripts. |
dashingsoft |
other |
1833 |
|
|
https://github.com/ail-project/ail-feeder-ct |
Ail feeder for certificate transparency |
ail-project |
|
2 |
|
|
https://github.com/rjbhide/wireshark-forensics-plugin |
|
rjbhide |
|
82 |
|
|
https://github.com/ail-project/ail-feeder-github-repo |
AIL feeder for GitHub Repository |
ail-project |
|
1 |
|
|
https://github.com/aaronkaplan/countryblocker |
simple scripts which fetch CIDR blocks by country code and add them to iptables/ipset blocklists |
aaronkaplan |
gpl-3.0 |
8 |
|
|
https://github.com/flrs/visavail |
A D3.js Time Data Availability Visualization |
flrs |
mit |
280 |
|
|
https://github.com/github/advisory-database |
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software. |
github |
cc-by-4.0 |
1184 |
|
|
https://github.com/trailofbits/maat |
Open-source symbolic execution framework: https://maat.re |
trailofbits |
other |
493 |
|
|
https://github.com/banviktor/asnlookup |
CLI and Go package for fast, offline ASN lookups |
banviktor |
apache-2.0 |
9 |
|
|
https://github.com/redcode-labs/BMJ |
Code snippets for bare-metal malware development |
redcode-labs |
mit |
80 |
|
|
https://github.com/MarkBaggett/ese-analyst |
This is a set of tools for doing forensics analysis on Microsoft ESE databases. |
MarkBaggett |
|
108 |
|
|
https://github.com/JrM2628/httpworker |
A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educational use only. |
JrM2628 |
|
57 |
|
|
https://github.com/hrbrmstr/cisa-known-exploited-vulns |
Daily archiver & triage issue creator for new releases of CISA’s Known Exploited Vulnerabilities list |
hrbrmstr |
mit |
16 |
|
|
https://github.com/dataplane/fdns |
Dataplane.org DNS server daemon |
dataplane |
|
2 |
|
|
https://github.com/MolecularMatters/raw_pdb |
A C++11 library for reading Microsoft Program DataBase PDB files |
MolecularMatters |
bsd-2-clause |
453 |
|
|
https://github.com/miso-belica/jusText |
Heuristic based boilerplate removal tool |
miso-belica |
bsd-2-clause |
485 |
|
|
https://github.com/avast/yaramod |
Parsing of YARA rules into AST and building new rulesets in C++. |
avast |
mit |
83 |
|
|
https://github.com/mlodic/pdfid |
|
mlodic |
mit |
6 |
|
|
https://github.com/blueteam0ps/AllthingsTimesketch |
This repository contains helper scripts and custom configs to get the best out of Google’s Timesketch project. |
blueteam0ps |
apache-2.0 |
32 |
|
|
https://github.com/bhassani/doublepulsar |
DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64) |
bhassani |
|
19 |
|
|
https://github.com/redcode-labs/poXSSon |
A framework for easy payloads development and deployment, collection of customizable XSS payloads |
redcode-labs |
isc |
22 |
|
|
https://github.com/edgedb/edgedb |
A graph-relational database with declarative schema, built-in migration system, and a next-generation query language |
edgedb |
apache-2.0 |
9508 |
|
|
https://github.com/khalladay/hooking-by-example |
A series of increasingly complex programs demonstrating function hooking on 64 bit Windows. Culminating in a program that hooks mspaint to make it always paint orange. |
khalladay |
mit |
134 |
|
|
https://github.com/leoloobeek/COMRunner |
A simple COM server which provides a component to run shellcode |
leoloobeek |
|
129 |
|
|
https://github.com/horsicq/PDBRipper |
PDBRipper is a utility for extract an information from PDB-files. |
horsicq |
mit |
619 |
|
|
https://github.com/garage44/pyrite |
Pyrite is a web(RTC) client for the Galène videoconference server. |
garage44 |
mit |
258 |
|
|
https://github.com/drk1wi/Modlishka |
Modlishka. Reverse Proxy. |
drk1wi |
other |
4092 |
|
|
https://github.com/openvinotoolkit/anomalib |
An anomaly detection library comprising state-of-the-art algorithms and features such as experiment management, hyper-parameter optimization, and edge inference. |
openvinotoolkit |
apache-2.0 |
1370 |
|
|
https://github.com/Gyoonus/deoptfuscator |
Deobfuscator for Android Application |
Gyoonus |
mit |
271 |
|
|
https://github.com/MISP/misp-wireshark |
Lua plugin to extract data from Wireshark and convert it into MISP format |
MISP |
|
19 |
|
|
https://github.com/MISP/LuaMISP |
Lua Library to create and manipulate MISP entities |
MISP |
mit |
3 |
|
|
https://github.com/algorithmica-org/algorithmica |
A computer science textbook |
algorithmica-org |
|
1183 |
|
|
https://github.com/SecurityBrewery/catalyst |
Catalyst is an open source SOAR and ticket system that helps to automate alert handling and incident response processes |
SecurityBrewery |
agpl-3.0 |
126 |
|
|
https://github.com/profdc9/RFBitBanger |
A QRP on-off keying digital transmission device |
profdc9 |
|
17 |
|
|
https://github.com/olavolav/uniplot |
Lightweight plotting to the terminal. 4x resolution via Unicode. |
olavolav |
mit |
190 |
|
|
https://github.com/rsagroup/rsatoolbox |
Python library for Representational Similarity Analysis |
rsagroup |
mit |
91 |
|
|
https://github.com/ffuf/pencode |
Complex payload encoder |
ffuf |
mit |
143 |
|
|
https://github.com/nkrao220/accent-classification |
Accent Classification in Speech |
nkrao220 |
|
13 |
|
|
https://github.com/shaarli/Shaarli |
The personal, minimalist, super-fast, database free, bookmarking service - community repo |
shaarli |
other |
2788 |
|
|
https://github.com/slingamn/mureq |
Single-file alternative to python-requests |
slingamn |
0bsd |
260 |
|
|
https://github.com/idom-team/idom |
Create highly interactive web pages purely in Python |
idom-team |
mit |
671 |
|
|
https://github.com/mandiant/flare-floss |
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware. |
mandiant |
apache-2.0 |
2434 |
|
|
https://github.com/FelixChop/MediumArticles |
Sample of Python codes from mathematical problems |
FelixChop |
|
100 |
|
|
https://github.com/sanchikagn/topic-modeling-with-LDA |
Topic modeling (abstract topics) with LDA (Latent Dirichlet Allocation) in python |
sanchikagn |
|
3 |
|
|
https://github.com/karlicoss/promnesia |
Another piece of your extended mind |
karlicoss |
mit |
1425 |
|
|
https://github.com/MattMills/radiocapture-rf |
RF side of Radiocapture’s SDR based trunked radio bulk collection system |
MattMills |
gpl-3.0 |
48 |
|
|
https://github.com/sudrich/sf-gad |
A statistical framework for graph anomaly detection. |
sudrich |
gpl-3.0 |
15 |
|
|
https://github.com/milabs/khook |
Linux Kernel hooking engine (x86) |
milabs |
gpl-2.0 |
239 |
|
|
https://github.com/JonathanSalwan/ROPgadget |
This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectures. |
JonathanSalwan |
other |
3166 |
|
|
https://github.com/trickest/cve |
Gather and update all available and newest CVEs with their PoC. |
trickest |
mit |
3734 |
|
|
https://github.com/ydkhatri/OneDrive |
OneDrive log .ODL reader |
ydkhatri |
mit |
44 |
|
|
https://github.com/obfuscator-llvm/obfuscator |
|
obfuscator-llvm |
|
3180 |
|
|
https://github.com/hasherezade/process_overwriting |
Yet another variant of Process Hollowing |
hasherezade |
|
288 |
|
|
https://github.com/perkeep/perkeep |
Perkeep (née Camlistore) is your personal storage system for life: a way of storing, syncing, sharing, modelling and backing up content. |
perkeep |
apache-2.0 |
6046 |
|
|
https://github.com/milabs/awesome-linux-rootkits |
awesome-linux-rootkits |
milabs |
cc0-1.0 |
1164 |
|
|
https://github.com/Cyb0r9/SocialBox |
SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi |
Cyb0r9 |
mit |
1038 |
|
|
https://github.com/pysemtec/semantic-python-overview |
(subjective) overview of projects which are related both to python and semantic technologies (RDF, OWL, Reasoning, …) |
pysemtec |
cc0-1.0 |
414 |
|
|
https://github.com/jbaines-r7/staystaystay |
Proof of Concept for CVE-2021-1585: Cisco ASA Device Manager RCE |
jbaines-r7 |
bsd-3-clause |
9 |
|
|
https://github.com/intellisec/lasershark |
LaserShark: Establishing Fast, Bidirectional Communication into Air-Gapped Systems (ACSAC 2021) |
intellisec |
gpl-3.0 |
57 |
|
|
https://github.com/Flangvik/SharpDllProxy |
Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading |
Flangvik |
|
399 |
|
|
https://github.com/syloktools/misp_automation |
|
syloktools |
|
2 |
|
|
https://github.com/bg3mdo/pisdr_hat |
This is budget Raspberry Pi SDR project. |
bg3mdo |
|
12 |
|
|
https://github.com/berty/berty |
Berty is a secure peer-to-peer messaging app that works with or without internet access, cellular data or trust in the network |
berty |
other |
6175 |
|
|
https://github.com/gaasedelen/patching |
An Interactive Binary Patching Plugin for IDA Pro |
gaasedelen |
mit |
559 |
|
|
https://github.com/vlang/v |
Simple, fast, safe, compiled language for developing maintainable software. Compiles itself in <1s with zero library dependencies. Supports automatic C => V translation. https://vlang.io |
vlang |
mit |
30779 |
|
|
https://github.com/malrev/ABD |
Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories |
malrev |
other |
1009 |
|
|
https://github.com/appneta/tcpreplay |
Pcap editing and replay tools for *NIX and Windows - Users please download source from |
appneta |
|
931 |
|
|
https://github.com/Cimbali/pympress |
Pympress is a simple yet powerful PDF reader designed for dual-screen presentations |
Cimbali |
gpl-2.0 |
745 |
|
|
https://github.com/SoftSec-KAIST/TikNib |
Binary Code Similarity Analysis (BCSA) Tool |
SoftSec-KAIST |
mit |
84 |
|
|
https://github.com/ly4k/SpoolFool |
Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE) |
ly4k |
mit |
650 |
|
|
https://github.com/chuanjiesun/whatAV |
detect AV on windows via process name |
chuanjiesun |
|
9 |
|
|
https://github.com/Psmths/reave |
WIP Post-exploitation framework tailored for hypervisors. |
Psmths |
gpl-3.0 |
43 |
|
|
https://github.com/usualsuspect/yara_vt_mock |
Emulates the VirusTotal “vt” YARA module for livehunt rule debugging/testing |
usualsuspect |
mit |
18 |
|
|
https://github.com/RUB-SysSec/Nyx |
USENIX 2021 - Nyx: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types |
RUB-SysSec |
gpl-2.0 |
160 |
|
|
https://github.com/airbus-cert/Invoke-Bof |
Load any Beacon Object File using Powershell! |
airbus-cert |
apache-2.0 |
217 |
|
|
https://github.com/P4nda0s/IDABeautify |
An IDA plugin for making pseudocode better. |
P4nda0s |
|
196 |
|
|
https://github.com/nbqofficial/CTHD |
Process hiding library |
nbqofficial |
|
16 |
|
|
https://github.com/MichaelDim02/Narthex |
Modular personalized dictionary generator. |
MichaelDim02 |
gpl-3.0 |
166 |
|
|
https://github.com/cylance/PyPackerDetect |
A malware dataset curation tool which helps identify packed samples. |
cylance |
agpl-3.0 |
29 |
|
|
https://github.com/M17-Project/M17_spec |
M17 standard specification |
M17-Project |
gpl-2.0 |
115 |
|
|
https://github.com/bl4de/dictionaries |
Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks |
bl4de |
|
198 |
|
|
https://github.com/fabiospampinato/crypto-random-hexadecimal |
Generate a cryptographically-random hexadecimal string with the given number of bytes of entropy. |
fabiospampinato |
mit |
1 |
|
|
https://github.com/ytk2128/dll-merger |
Merging DLLs with a PE32 EXE without LoadLibrary |
ytk2128 |
mit |
201 |
|
|
https://github.com/CronUp/Malware-IOCs |
|
CronUp |
|
76 |
|
|
https://github.com/pwn1sher/KillDefender |
A small POC to make defender useless by removing its token privileges and lowering the token integrity |
pwn1sher |
|
559 |
|
|
https://github.com/reb311ion/CapaExplorer |
Capa analysis importer for Ghidra. |
reb311ion |
mit |
48 |
|
|
https://github.com/boku7/HOLLOW |
EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and execute shellcode |
boku7 |
|
201 |
|
|
https://github.com/inforion/idapython-cheatsheet |
Scripts and cheatsheets for IDAPython |
inforion |
|
551 |
|
|
https://github.com/FireyFly/hexd |
🔍 Colourful, human-friendly hexdump tool |
FireyFly |
mit |
131 |
|
|
https://github.com/boyter/scc |
Sloc, Cloc and Code: scc is a very fast accurate code counter with complexity calculations and COCOMO estimates written in pure Go |
boyter |
mit |
3903 |
|
|
https://github.com/cartographia/geospatial-intelligence-library |
🛰 Your geospatial intelligence tool belt for digital investigations |
cartographia |
|
82 |
|
|
https://github.com/61106960/adPEAS |
Powershell tool to automate Active Directory enumeration. |
61106960 |
|
416 |
|
|
https://github.com/dbdexter-dev/sdrpp_radiosonde |
Radiosonde decoder plugin for SDR++ |
dbdexter-dev |
mit |
32 |
|
|
https://github.com/remil1000/opensearch-ansible-playbook |
🤖 A community repository for Ansible Playbook of OpenSearch Project. |
remil1000 |
apache-2.0 |
3 |
|
|
https://github.com/xenoscr/manual-syscall-detect |
A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks. |
xenoscr |
mit |
67 |
|
|
https://github.com/tahoe-lafs/tahoe-lafs |
The Tahoe-LAFS decentralized secure filesystem. |
tahoe-lafs |
other |
1191 |
|
|
https://github.com/NumLocK15/YaraStation |
Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centralized management solution that facilitates result investigation and easier scanning capabilities. |
NumLocK15 |
|
27 |
|
|
https://github.com/dwmkerr/hacker-laws |
💻📖 Laws, Theories, Principles and Patterns that developers will find useful. #hackerlaws |
dwmkerr |
cc-by-sa-4.0 |
24314 |
|
|
https://github.com/CTFd/snicat |
TLS & SNI aware netcat |
CTFd |
apache-2.0 |
19 |
|
|
https://github.com/meilisearch/meilisearch |
A lightning-fast search engine that fits effortlessly into your apps, websites, and workflow. |
meilisearch |
mit |
30591 |
|
|
https://github.com/oasis-open/cti-taxii-server |
OASIS TC Open Repository: TAXII 2 Server Library Written in Python |
oasis-open |
bsd-3-clause |
82 |
|
|
https://github.com/0x6d696368/ghidra-data |
Supporting Data Archives for Ghidra |
0x6d696368 |
apache-2.0 |
184 |
|
|
https://github.com/klezVirus/inceptor |
Template-Driven AV/EDR Evasion Framework |
klezVirus |
other |
1060 |
|
|
https://github.com/ail-project/ail-typo-squatting |
Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems. |
ail-project |
bsd-2-clause |
27 |
|
|
https://github.com/czs108/PE-Packer |
🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering. |
czs108 |
gpl-3.0 |
162 |
|
|
https://github.com/VectorCamp/vectorscan |
A portable fork of the high-performance regular expression matching library |
VectorCamp |
other |
257 |
|
|
https://github.com/silverhack/voyeur |
VOYEUR’s main purpose is to generate a fast (and pretty) Active Directory report. The tool is developed entirely in PowerShell (a powerful scripting language) without dependencies (just .Net Framework 3.5 and Ofiice Excel if you want an useful and pretty report). The generated report is a perfect starting point for well-established forensic, incident response team, or security researchers who want to quickly analyze threats in Active Directory Services. |
silverhack |
mit |
146 |
|
|
https://github.com/bitsadmin/fakelogonscreen |
Fake Windows logon screen to steal passwords |
bitsadmin |
bsd-3-clause |
1069 |
|
|
https://github.com/cisco/mercury |
Mercury: network metadata capture and analysis |
cisco |
other |
340 |
|
|
https://github.com/microsoft/ANCE |
A novel embedding training algorithm leveraging ANN search and achieved SOTA retrieval on Trec DL 2019 and OpenQA benchmarks |
microsoft |
mit |
274 |
|
|
https://github.com/AndrewRathbun/DFIRArtifactMuseum |
The goal of this repo is to archive artifacts from all versions of various OS’s and categorizing them by type. This will help with artifact validation processes as well as increase access to artifacts that may no longer be readily available anymore. |
AndrewRathbun |
mit |
179 |
|
|
https://github.com/erthink/libmdbx |
One of the fastest embeddable key-value ACID database without WAL. libmdbx surpasses the legendary LMDB in terms of reliability, features and performance. |
erthink |
other |
1040 |
|
|
https://github.com/ekzhu/datasketch |
MinHash, LSH, LSH Forest, Weighted MinHash, HyperLogLog, HyperLogLog++, LSH Ensemble |
ekzhu |
mit |
1820 |
|
|
https://github.com/aristocratos/btop |
A monitor of resources |
aristocratos |
apache-2.0 |
9349 |
|
|
https://github.com/0vercl0k/udmp-parser |
A Windows user minidump C++ parser library. |
0vercl0k |
mit |
92 |
|
|
https://github.com/DTolm/VkFFT |
Vulkan/CUDA/HIP/OpenCL/Level Zero/Metal Fast Fourier Transform library |
DTolm |
mit |
925 |
|
|
https://github.com/bluekitchen/raccoon |
Raccoon BLE Sniffer |
bluekitchen |
|
63 |
|
|
https://github.com/andrewjfreyer/monitor |
Distributed advertisement-based BTLE presence detection reported via mqtt |
andrewjfreyer |
|
1402 |
|
|
https://github.com/csirt-tooling-org/csirt-tooling-best-practices |
CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools |
csirt-tooling-org |
|
11 |
|
|
https://github.com/frida/frida-tools |
Frida CLI tools |
frida |
other |
211 |
|
|
https://github.com/ANSSI-FR/guide-journalisation-microsoft |
Guide journalisation Microsoft |
ANSSI-FR |
|
44 |
|
|
https://github.com/patois/abyss |
abyss - augmentation of Hexrays decompiler output |
patois |
mit |
287 |
|
|
https://github.com/Nudin/iptable_vis |
visualise your iptables chains |
Nudin |
lgpl-3.0 |
543 |
|
|
https://github.com/scipag/HardeningKitty |
HardeningKitty - Checks and hardens your Windows configuration |
scipag |
mit |
549 |
|
|
https://github.com/volexity/threat-intel |
Signatures and IoCs from public Volexity blog posts. |
volexity |
other |
124 |
|
|
https://github.com/crytic/slither |
Static Analyzer for Solidity |
crytic |
agpl-3.0 |
3357 |
|
|
https://github.com/sapics/ip-location-db |
ip to location database by ASN, GeoFeed, Whois, iptoasn.com, db-ip lite, GeoLite2 |
sapics |
other |
247 |
|
|
https://github.com/norasector/turbine |
SDR software for capturing trunked radio systems |
norasector |
gpl-3.0 |
92 |
|
|
https://github.com/dhondta/webgrep |
Grep Web pages with extra features like JS deobfuscation and OCR |
dhondta |
gpl-3.0 |
87 |
|
|
https://github.com/ForensicArtifacts/artifacts-kb |
Digital Forensics Artifacts Knowledge Base |
ForensicArtifacts |
apache-2.0 |
42 |
|
|
https://github.com/ArsMasiuk/qvge |
Qt Visual Graph Editor |
ArsMasiuk |
mit |
424 |
|
|
https://github.com/VirusTotal/vt-py |
The official Python 3 client library for VirusTotal |
VirusTotal |
apache-2.0 |
276 |
|
|
https://github.com/mborgerding/kissfft |
a Fast Fourier Transform (FFT) library that tries to Keep it Simple, Stupid |
mborgerding |
other |
1017 |
|
|
https://github.com/hirve/sdr-mini-kit |
Building SDR apps by mapping IQ streams with pipes in CLI or bash scripts. |
hirve |
mit |
7 |
|
|
https://github.com/0x4D31/fatt |
FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic |
0x4D31 |
bsd-3-clause |
588 |
|
|
https://github.com/cado-security/rip_raw |
Rip Raw is a small tool to analyse the memory of compromised Linux systems. |
cado-security |
apache-2.0 |
127 |
|
|
https://github.com/RolfRolles/IDBs |
Analyses in IDA/Hex-Rays |
RolfRolles |
|
63 |
|
|
https://github.com/x64dbg/x64dbg |
An open-source x64/x32 debugger for windows. |
x64dbg |
other |
39331 |
|
|
https://github.com/stairwell-inc/threat-research |
Repository of tools, YARA rules, and code-snippets from Stairwell’s research team. |
stairwell-inc |
mit |
14 |
|
|
https://github.com/igogo-x86/HexRaysPyTools |
IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes |
igogo-x86 |
|
1136 |
|
|
https://github.com/lunixbochs/usercorn |
dynamic binary analysis via platform emulation |
lunixbochs |
mit |
824 |
|
|
https://github.com/slyd0g/DLLHijackTest |
DLL and PowerShell script to assist with finding DLL hijacks |
slyd0g |
|
283 |
|
|
https://github.com/cudeso/dfir-iris-misp-timesketch |
Scripts to integrate DFIR-IRIS, MISP and TimeSketch |
cudeso |
agpl-3.0 |
19 |
|
|
https://github.com/cybersecsi/HOUDINI |
Hundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all. |
cybersecsi |
gpl-3.0 |
1100 |
|
|
https://github.com/davidgfnet/card-cap-authenticator-android |
Android App that genereates passcode authentication codes for Postfinance cards |
davidgfnet |
bsd-3-clause |
10 |
|
|
https://github.com/RyanMarcus/dirty-json |
A parser for invalid JSON |
RyanMarcus |
agpl-3.0 |
173 |
|
|
https://github.com/googleprojectzero/0days-in-the-wild |
Repository for information about 0-days exploited in-the-wild. |
googleprojectzero |
apache-2.0 |
516 |
|
|
https://github.com/ditekshen/detection |
Detection in the form of Yara, Snort and ClamAV signatures. |
ditekshen |
other |
90 |
|
|
https://github.com/seintpl/osint |
Useful OSINT hints and links |
seintpl |
|
66 |
|
|
https://github.com/KaLendsi/CVE-2022-21882 |
win32k LPE |
KaLendsi |
|
435 |
|
|
https://github.com/JPCERTCC/jpcert-yara |
JPCERT/CC public YARA rules repository |
JPCERTCC |
|
75 |
|
|
https://github.com/pali/bmfdec |
Decompile binary MOF file (BMF) from WMI buffer |
pali |
|
37 |
|
|
https://github.com/mb21/panwriter |
Markdown editor with pandoc integration and paginated preview. |
mb21 |
gpl-3.0 |
762 |
|
|
https://github.com/doegox/EMV-CAP |
This tool emulates an EMV-CAP device, to illustrate the article “Banque en ligne : à la decouverte d’EMV-CAP” published in MISC, issue #56 |
doegox |
gpl-3.0 |
27 |
|
|
https://github.com/APTortellini/DefenderSwitch |
Stop Windows Defender using the Win32 API |
APTortellini |
|
158 |
|
|
https://github.com/scipag/nac_bypass |
Script collection to bypass Network Access Control (NAC, 802.1x) |
scipag |
mit |
165 |
|
|
https://github.com/hakluke/hakrevdns |
Small, fast tool for performing reverse DNS lookups en masse. |
hakluke |
mit |
587 |
|
|
https://github.com/jevinskie/litespih4x |
SPI flash MITM and emulation (QSPI is a WIP) |
jevinskie |
|
18 |
|
|
https://github.com/pandora-analysis/pandora |
Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results |
pandora-analysis |
agpl-3.0 |
158 |
|
|
https://github.com/berdav/CVE-2021-4034 |
CVE-2021-4034 1day |
berdav |
mit |
1686 |
|
|
https://github.com/Reloaded-Project/Reloaded.Injector |
C# DLL Injection Library capable of injecting x86 DLLs to x86 process from x64 processes. |
Reloaded-Project |
lgpl-3.0 |
79 |
|
|
https://github.com/arc298/instagram-scraper |
Scrapes an instagram user’s photos and videos |
arc298 |
unlicense |
7296 |
|
|
https://github.com/bouffalolab/bl_iot_sdk |
BL602/BL702 SDK. Any technical topic, please access the following link. |
bouffalolab |
apache-2.0 |
189 |
|
|
https://github.com/cilium/cilium |
eBPF-based Networking, Security, and Observability |
cilium |
apache-2.0 |
13403 |
|
|
https://github.com/hlldz/RefleXXion |
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array. |
hlldz |
|
389 |
|
|
https://github.com/Idov31/FunctionStomping |
A new shellcode injection technique. Given as C++ header, standalone Rust program or library. |
Idov31 |
bsd-2-clause |
592 |
|
|
https://github.com/cyentific-rni/stix2.1-coa-playbook-extension |
A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-readable security playbooks such as CACAO Security Playbooks |
cyentific-rni |
mit |
14 |
|
|
https://github.com/ZephrFish/Red-Teaming-Toolkit |
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter. |
ZephrFish |
gpl-3.0 |
9 |
|
|
https://github.com/geodienst/lighthousemap |
OpenStreetMap’s Blinking Beacons |
geodienst |
mit |
271 |
|
|
https://github.com/daem0nc0re/PrivFu |
Kernel mode WinDbg extension and PoCs for token privilege investigation. |
daem0nc0re |
bsd-3-clause |
366 |
|
|
https://github.com/executemalware/Malware-IOCs |
|
executemalware |
|
315 |
|
|
https://github.com/behas/ransomware-dataset |
Economics of Ransomware |
Dataset |
behas |
|
16 |
|
https://github.com/spenczar/usb-next |
Arduino adapter for a NeXT keyboard to work over USB |
spenczar |
bsd-3-clause |
16 |
|
|
https://github.com/lgandx/Responder |
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication. |
lgandx |
gpl-3.0 |
3901 |
|
|
https://github.com/dievus/Oh365UserFinder |
Python3 o365 User Enumeration Tool |
dievus |
mit |
400 |
|
|
https://github.com/DidierStevens/DidierStevensSuite |
Please no pull requests for this repository. Thanks! |
DidierStevens |
|
1418 |
|
|
https://github.com/AzizKpln/Social_X |
“Socialx” is a Social Engineering And Remote Access Trojan Tool. You can generate fud backdoor and you can embed any file you want inside of the exe file. |
AzizKpln |
mit |
198 |
|
|
https://github.com/forrest-orr/moneta |
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs |
forrest-orr |
gpl-3.0 |
365 |
|
|
https://github.com/tid4l/offensive-cybersec-toolkit |
A central place for offensive (and sometimes not) cybersecurity tools and resources. |
tid4l |
gpl-3.0 |
8 |
|
|
https://github.com/vuejs/petite-vue |
6kb subset of Vue optimized for progressive enhancement |
vuejs |
mit |
7056 |
|
|
https://github.com/resyncgg/ripgen |
Rust-based high performance domain permutation generator. |
resyncgg |
|
185 |
|
|
https://github.com/p0dalirius/ldap2json |
The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file. |
p0dalirius |
|
63 |
|
|
https://github.com/quarto-dev/quarto-cli |
Open-source scientific and technical publishing system built on Pandoc. |
quarto-dev |
other |
1413 |
|
|
https://github.com/adulau/active-scanning-techniques |
A compilation of network scanning strategies to find vulnerable devices |
adulau |
|
61 |
|
|
https://github.com/fkie-cad/cwe_checker |
cwe_checker finds vulnerable patterns in binary executables |
fkie-cad |
lgpl-3.0 |
745 |
|
|
https://github.com/avast/ioc |
Threat Intel IoCs + bits and pieces of dark matter |
avast |
|
251 |
|
|
https://github.com/MrNox/XRaysComments |
A simple IDA Pro plugin to show all HexRays decompiler comments written by user |
MrNox |
|
19 |
|
|
https://github.com/g-les/100DaysofYARA |
100 Days of YARA to be updated with rules & ideas as the year progresses |
g-les |
|
27 |
|
|
https://github.com/IQTLabs/SkyScan |
Automatically photograph planes that fly by! |
IQTLabs |
apache-2.0 |
237 |
|
|
https://github.com/CiscoPSIRT/openVulnQuery |
A Python-based client for the Cisco openVuln API |
CiscoPSIRT |
mit |
20 |
|
|
https://github.com/github/gemoji |
Emoji images and names. |
github |
mit |
4072 |
|
|
https://github.com/dhondta/python-codext |
Python codecs extension featuring CLI tools for encoding/decoding anything |
dhondta |
gpl-3.0 |
199 |
|
|
https://github.com/brandur/redis-cell |
A Redis module that provides rate limiting in Redis as a single command. |
brandur |
mit |
1050 |
|
|
https://github.com/jakubroztocil/podcats |
🎧 🐈🐈🐈 Podcats generates RSS feeds for podcast episodes from local audio files and, optionally, exposes both via a built-in web server. |
jakubroztocil |
other |
106 |
|
|
https://github.com/sevagas/macro_pack |
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research. |
sevagas |
apache-2.0 |
1725 |
|
|
https://github.com/typedb-osi/typedb-cti |
Open Source Threat Intelligence Platform |
typedb-osi |
apache-2.0 |
100 |
|
|
https://github.com/luigifcruz/pisdr-image |
🥧 A SDR Linux Distro for the Raspberry Pi and other SBC. Compatible out of the box with multiple SDR. |
luigifcruz |
other |
679 |
|
|
https://github.com/DanielLin1986/Function-level-Vulnerability-Detection |
A deep learning-based vulnerability detection framework |
DanielLin1986 |
|
55 |
|
|
https://github.com/void-stack/VMUnprotect |
VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect. |
void-stack |
mit |
250 |
|
|
https://github.com/AppThreat/dep-scan |
Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, Google CloudBuild. No server required! |
AppThreat |
mit |
275 |
|
|
https://github.com/geoacumen/geoacumen-country |
|
geoacumen |
apache-2.0 |
35 |
|
|
https://github.com/maxmind/MaxMind-DB-Reader-python |
Python MaxMind DB reader extension |
maxmind |
apache-2.0 |
138 |
|
|
https://github.com/maxmind/mmdbinspect |
look up records for one or more IPs/networks in one or more .mmdb databases |
maxmind |
apache-2.0 |
62 |
|
|
https://github.com/cloudflare/py-mmdb-encoder |
Create mmdb files to encode prefix lists. |
cloudflare |
bsd-3-clause |
27 |
|
|
https://github.com/upx/upx |
UPX - the Ultimate Packer for eXecutables |
upx |
other |
10245 |
|
|
https://github.com/allinurl/gwsocket |
fast, standalone, language-agnostic WebSocket server RFC6455 compliant |
allinurl |
mit |
656 |
|
|
https://github.com/RolfRolles/FinSpyVM |
Static unpacker for FinSpy VM |
RolfRolles |
|
90 |
|
|
https://github.com/ryan-weil/ReadWriteDriver |
A kernel driver for reading and writing memory |
ryan-weil |
|
81 |
|
|
https://github.com/jfmaes/SharpZipRunner |
Executes position independent shellcode from an encrypted zip |
jfmaes |
gpl-3.0 |
293 |
|
|
https://github.com/InQuest/awesome-yara |
A curated list of awesome YARA rules, tools, and people. |
InQuest |
other |
2369 |
|
|
https://github.com/adsbxchange/adsb-exchange |
ADS-B Exchange Linux Setup Scripts |
adsbxchange |
mit |
192 |
|
|
https://github.com/StamusNetworks/suricata-language-server |
Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and auto-completion to your preferred editor once it is configured. |
StamusNetworks |
gpl-3.0 |
36 |
|
|
https://github.com/PyCQA/flake8 |
flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code. |
PyCQA |
other |
2394 |
|
|
https://github.com/wavestone-cdt/wavecrack |
Wavestone’s web interface for password cracking with hashcat |
wavestone-cdt |
|
151 |
|
|
https://github.com/jerosoler/Drawflow |
Simple flow library 🖥️🖱️ |
jerosoler |
mit |
2700 |
|
|
https://github.com/jordanwildon/Telepathy |
Public release of Telepathy, an OSINT toolkit for investigating Telegram chats. |
jordanwildon |
mit |
449 |
|
|
https://github.com/orhun/rtl_map |
FFT-based visualizer for RTL-SDR devices. (RTL2832/DVB-T) |
orhun |
gpl-3.0 |
59 |
|
|
https://github.com/marp-team/marp |
The entrance repository of Markdown presentation ecosystem |
marp-team |
mit |
4349 |
|
|
https://github.com/encode/starlette |
The little ASGI framework that shines. 🌟 |
encode |
bsd-3-clause |
7534 |
|
|
https://github.com/MoserMichael/pyasmtool |
Explores the python bytecode, provides some tools to access it for fun and profit. |
MoserMichael |
mit |
275 |
|
|
https://github.com/seanmcfeely/ThreatFox |
Python library and command line tool for interacting with the ThreatFox API. |
seanmcfeely |
gpl-3.0 |
6 |
|
|
https://github.com/raghudotcc/simply-jekyll |
A simple yet highly functional jekyll theme with backlinks, wiki-style links, context menu, page preview, sidenote etc |
raghudotcc |
|
160 |
|
|
https://github.com/0vercl0k/rp |
rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM binaries. |
0vercl0k |
mit |
1383 |
|
|
https://github.com/saruman9/ghidra_dev_pres |
Ghidra’s development plugins, scripts, contributing. Presentation |
saruman9 |
|
10 |
|
|
https://github.com/felias-fogg/dw-link |
An Arduino-based debugWIRE hardware-debugger |
felias-fogg |
gpl-3.0 |
21 |
|
|
https://github.com/CYB3RMX/Qu1cksc0pe |
All-in-One malware analysis tool. |
CYB3RMX |
gpl-3.0 |
418 |
|
|
https://github.com/random-robbie/bruteforce-lists |
Some files for bruteforcing certain things. |
random-robbie |
apache-2.0 |
746 |
|
|
https://github.com/packing-box/awesome-executable-packing |
A curated list of awesome resources related to executable packing |
packing-box |
cc0-1.0 |
664 |
|
|
https://github.com/trickster0/LdrLoadDll-Unhooking |
LdrLoadDll Unhooking |
trickster0 |
|
73 |
|
|
https://github.com/Tox/ToxStatus |
Status page that keeps track of Tox bootstrap nodes |
Tox |
agpl-3.0 |
32 |
|
|
https://github.com/RedhawkSDR/core-framework |
REDHAWK is a software-defined radio (SDR) framework designed to support the development, deployment, and management of real-time software radio applications |
RedhawkSDR |
lgpl-3.0 |
39 |
|
|
https://github.com/RedhawkSDR/redhawk |
A submodule repository for distributing REDHAWK artifacts and the latest REDHAWK source code. Use ‘git clone –recurse-submodules git@github.com:RedhawkSDR/redhawk.git’ to also clone all submodules. |
RedhawkSDR |
other |
362 |
|
|
https://github.com/hrvach/babyping |
A computer from 1948 in ICMP packets |
hrvach |
mit |
74 |
|
|
https://github.com/0xC01DF00D/Collabfiltrator |
Exfiltrate blind remote code execution output over DNS via Burp Collaborator. |
0xC01DF00D |
gpl-3.0 |
226 |
|
|
https://github.com/klinix5/ReverseRDP_RCE |
|
klinix5 |
mit |
267 |
|
|
https://github.com/opensemanticsearch/open-semantic-search |
Open Source research tool to search, browse, analyze and explore large document collections by Semantic Search Engine and Open Source Text Mining & Text Analytics platform (Integrates ETL for document processing, OCR for images & PDF, named entity recognition for persons, organizations & locations, metadata management by thesaurus & ontologies, search user interface & search apps for fulltext search, faceted search & knowledge graph) |
opensemanticsearch |
gpl-3.0 |
659 |
|
|
https://github.com/1N3/ReverseAPK |
Quickly analyze and reverse engineer Android packages |
1N3 |
|
586 |
|
|
https://github.com/gocolly/colly |
Elegant Scraper and Crawler Framework for Golang |
gocolly |
apache-2.0 |
18145 |
|
|
https://github.com/gnuradio/SigMF |
The Signal Metadata Format Specification |
gnuradio |
cc-by-sa-4.0 |
227 |
|
|
https://github.com/xbyl1234/android_analysis |
android analysis tools, jni trace by native hook, libc hook, write log with caller’s addr in file or AndroidLog |
xbyl1234 |
|
61 |
|
|
https://github.com/odedshimon/BruteShark |
Network Analysis Tool |
odedshimon |
gpl-3.0 |
2519 |
|
|
https://github.com/osmocom/rtl-sdr |
library for turning a RTL2832 based DVB dongle into a Software DefinedReceiver; mirror from https://gitea.osmocom.org/sdr/rtl-sdr |
osmocom |
gpl-2.0 |
483 |
|
|
https://github.com/digitalevidencetoolkit/deptoolkit |
The Toolkit API, app, and browser extension. Start preserving now. |
digitalevidencetoolkit |
other |
40 |
|
|
https://github.com/shareef12/ExtractBB |
LLVM Obfuscation Pass via Extracted Basic Blocks |
shareef12 |
|
15 |
|
|
https://github.com/pnkraemer/tueplots |
Figure sizes, font sizes, fonts, and more configurations at minimal overhead. Fix your journal papers, conference proceedings, and other scientific publications. |
pnkraemer |
mit |
476 |
|
|
https://github.com/splunk/salo |
Synthetic Adversarial Log Objects: A Framework for synthentic log generation |
splunk |
apache-2.0 |
40 |
|
|
https://github.com/jina-ai/docarray |
🧬 The data structure for unstructured multimodal data · Neural Search · Vector Search · Document Store |
jina-ai |
apache-2.0 |
1274 |
|
|
https://github.com/coral-xyz/sealevel-attacks |
☠️ Common Security Exploits and Protections on Solana |
coral-xyz |
|
337 |
|
|
https://github.com/knight0x07/pyc2bytecode |
A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*) |
knight0x07 |
|
87 |
|
|
https://github.com/hausec/ADAPE-Script |
Active Directory Assessment and Privilege Escalation Script |
hausec |
|
1018 |
|
|
https://github.com/swimlane/pyattck |
A Python package to interact with the Mitre ATT&CK Framework |
swimlane |
mit |
402 |
|
|
https://github.com/FirmWire/FirmWire |
FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares |
FirmWire |
bsd-3-clause |
552 |
|
|
https://github.com/terryyin/lizard |
A simple code complexity analyser without caring about the C/C++ header files or Java imports, supports most of the popular languages. |
terryyin |
other |
1460 |
|
|
https://github.com/3vangel1st/100DaysOfYARA |
|
3vangel1st |
|
24 |
|
|
https://github.com/certsocietegenerale/abuse_finder |
Find abuse contacts for observables |
certsocietegenerale |
gpl-3.0 |
54 |
|
|
https://github.com/wbolster/jsonlines |
python library to simplify working with jsonlines and ndjson data |
wbolster |
other |
203 |
|
|
https://github.com/obsidianforensics/unfurl |
Extract and Visualize Data from URLs using Unfurl |
obsidianforensics |
apache-2.0 |
468 |
|
|
https://github.com/sthagen/miyuchina-mistletoe |
A fast, extensible and spec-compliant Markdown parser in pure Python. |
sthagen |
mit |
2 |
|
|
https://github.com/ShutdownRepo/ShadowCoerce |
MS-FSRVP coercion abuse PoC |
ShutdownRepo |
gpl-3.0 |
211 |
|
|
https://github.com/drmpeg/dtv-utils |
Utilities for SDR digital television |
drmpeg |
gpl-3.0 |
46 |
|
|
https://github.com/puckiestyle/JNDI-Exploit-Kit |
|
puckiestyle |
mit |
19 |
|
|
https://github.com/Li4n0/revsuit |
RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration. |
Li4n0 |
apache-2.0 |
322 |
|
|
https://github.com/getCUJO/ThreatIntel |
|
getCUJO |
bsd-3-clause-clear |
102 |
|
|
https://github.com/hijiki51/gotools |
Plugin for Ghidra to assist reversing Golang binaries |
hijiki51 |
mit |
6 |
|
|
https://github.com/Dump-GUY/Malware-analysis-and-Reverse-engineering |
Some of my publicly available Malware analysis and Reverse engineering. |
Dump-GUY |
|
460 |
|
|
https://github.com/fidgetingbits/IDArling |
Collaborative Reverse Engineering plugin for IDA Pro & Hex-Rays |
fidgetingbits |
gpl-3.0 |
94 |
|
|
https://github.com/cudeso/tools |
Different tools, koen.vanimpe@cudeso.be |
cudeso |
other |
87 |
|
|
https://github.com/corelight/zeek-cheatsheets |
Bro Log Cheatsheets |
corelight |
other |
232 |
|
|
https://github.com/SecWiki/windows-kernel-exploits |
windows-kernel-exploits Windows平台提权漏洞集合 |
SecWiki |
mit |
6754 |
|
|
https://github.com/optiv/Ivy |
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode. |
optiv |
mit |
639 |
|
|
https://github.com/AlexandreRouma/SDRPlusPlus |
Cross-Platform SDR Software |
AlexandreRouma |
gpl-3.0 |
2070 |
|
|
https://github.com/yrp604/rappel |
A linux-based assembly REPL for x86, amd64, armv7, and armv8 |
yrp604 |
other |
1002 |
|
|
https://github.com/s-macke/VoxelSpace |
Terrain rendering algorithm in less than 20 lines of code |
s-macke |
mit |
5533 |
|
|
https://github.com/alphacep/vosk-api |
Offline speech recognition API for Android, iOS, Raspberry Pi and servers with Python, Java, C# and Node |
alphacep |
apache-2.0 |
4760 |
|
|
https://github.com/intelowlproject/GreedyBear |
Threat Intel Platform for T-POTs |
intelowlproject |
mit |
62 |
|
|
https://github.com/rgerganov/aprs-sdr |
APRS tracker with an SDR |
rgerganov |
mit |
19 |
|
|
https://github.com/fabiangreffrath/crispy-doom |
Crispy Doom is a limit-removing enhanced-resolution Doom source port based on Chocolate Doom. |
fabiangreffrath |
gpl-2.0 |
609 |
|
|
https://github.com/iconoir-icons/iconoir |
An open source icons library with 1K+ icons, supporting React, React Native, Flutter, CSS, Figma, and Framer. |
iconoir-icons |
mit |
2858 |
|
|
https://github.com/trapexit/mergerfs |
a featureful union filesystem |
trapexit |
other |
2734 |
|
|
https://github.com/niczem/trawler |
scraper for facebook, gab, google and tiktok |
niczem |
|
20 |
|
|
https://github.com/google/grr |
GRR Rapid Response: remote live forensics for incident response |
google |
apache-2.0 |
4223 |
|
|
https://github.com/ioncodes/ceload |
Loading dbk64.sys and grabbing a handle to it |
ioncodes |
|
120 |
|
|
https://github.com/curran/data |
A collection of public data sets |
curran |
mit |
450 |
|
|
https://github.com/deepchecks/deepchecks |
Test Suites for Validating ML Models & Data. Deepchecks is a Python package for comprehensively validating your machine learning models and data with minimal effort. |
deepchecks |
other |
2175 |
|
|
https://github.com/profdc9/QRPAmplifier |
Layout of WA2EBY amplifier in Kicad, licensed CC-BY-SA 4.0 |
profdc9 |
|
15 |
|
|
https://github.com/FChannel0/FChannel-Server |
|
FChannel0 |
agpl-3.0 |
82 |
|
|
https://github.com/GeneralMills/pytrends |
Pseudo API for Google Trends |
GeneralMills |
other |
2556 |
|
|
https://github.com/benlk/misc-licenses |
A collection of various licenses, with mild commentary upon them. |
benlk |
other |
75 |
|
|
https://github.com/aj-code/TimingIntrusionTool5000 |
A tool for performing network timing attacks on plaintext and hashed password authentication. |
aj-code |
gpl-3.0 |
20 |
|
|
https://github.com/squidfunk/mkdocs-material |
Documentation that simply works |
squidfunk |
mit |
11548 |
|
|
https://github.com/NVISOsecurity/DLLoader |
|
NVISOsecurity |
gpl-3.0 |
17 |
|
|
https://github.com/R4yGM/garlicshare |
Private and self-hosted file sharing over the Tor network written in golang |
R4yGM |
apache-2.0 |
105 |
|
|
https://github.com/travisbrown/stop-the-steal |
Stop the Steal / J6 Twitter user profiles |
travisbrown |
|
18 |
|
|
https://github.com/worldveil/dejavu |
Audio fingerprinting and recognition in Python |
worldveil |
mit |
5919 |
|
|
https://github.com/jonathandata1/pegasus_spyware |
decompiled pegasus_spyware |
jonathandata1 |
mit |
1574 |
|
|
https://github.com/tillmannw/yara-rules |
|
tillmannw |
|
8 |
|
|
https://github.com/trailofbits/manticore |
Symbolic execution tool |
trailofbits |
agpl-3.0 |
3183 |
|
|
https://github.com/forrest-orr/Exploits |
A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I’ve written to be used in conjunction with these exploits. |
forrest-orr |
gpl-3.0 |
80 |
|
|
https://github.com/spaze/hashes |
Magic hashes – PHP hash “collisions” |
spaze |
|
505 |
|
|
https://github.com/uubs/firmware-collection |
|
uubs |
|
5 |
|
|
https://github.com/desertbit/glue |
Glue - Robust Go and Javascript Socket Library (Alternative to Socket.io) |
desertbit |
mit |
406 |
|
|
https://github.com/MattETurner/DFIRlogbook |
Logbook for Digital Forensics and Incident Response |
MattETurner |
|
40 |
|
|
https://github.com/BatchDrake/SigDigger |
Qt-based digital signal analyzer, using Suscan core and Sigutils DSP library |
BatchDrake |
gpl-3.0 |
607 |
|
|
https://github.com/directus/directus |
The Modern Data Stack 🐰 — Directus is an instant REST+GraphQL API and intuitive no-code data collaboration app for any SQL database. |
directus |
gpl-3.0 |
18144 |
|
|
https://github.com/mzfr/liffy |
Local file inclusion exploitation tool |
mzfr |
gpl-3.0 |
523 |
|
|
https://github.com/PaddlePaddle/PaddleOCR |
Awesome multilingual OCR toolkits based on PaddlePaddle (practical ultra lightweight OCR system, support 80+ languages recognition, provide data annotation and synthesis tools, support training and deployment among server, mobile, embedded and IoT devices) |
PaddlePaddle |
apache-2.0 |
26342 |
|
|
https://github.com/seemoo-lab/opendrop |
An open Apple AirDrop implementation written in Python |
seemoo-lab |
gpl-3.0 |
7380 |
|
|
https://github.com/cert-ee/cuckoo3 |
Cuckoo 3 is a Python 3 open source automated malware analysis system. |
cert-ee |
eupl-1.2 |
409 |
|
|
https://github.com/pussycat0x/malicious-pdf |
Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator |
pussycat0x |
bsd-2-clause |
163 |
|
|
https://github.com/NUKIB/misp |
Docker image for MISP |
NUKIB |
gpl-3.0 |
43 |
|
|
https://github.com/tb0hdan/idun |
DomainsProject.org HTTP worker |
tb0hdan |
bsd-3-clause |
9 |
|
|
https://github.com/tb0hdan/domains |
World’s single largest Internet domains dataset |
tb0hdan |
bsd-3-clause |
394 |
|
|
https://github.com/HuskyHacks/PMAT-labs |
Labs for Practical Malware Analysis & Triage |
HuskyHacks |
|
436 |
|
|
https://github.com/doomedraven/sflock |
Sample staging & detonation utility to be used in combination with Cuckoo Sandbox. |
doomedraven |
|
8 |
|
|
https://github.com/hrbrmstr/hashlookup |
#️⃣ 👀👆🏽Query and Orchestrate the CIRCL Hash Lookup Service |
hrbrmstr |
other |
4 |
|
|
https://github.com/benthosdev/benthos-plugin-example |
Benthos plugin examples |
benthosdev |
mit |
59 |
|
|
https://github.com/hatching/sflock |
Sample staging & detonation utility to be used in combination with Cuckoo Sandbox. |
hatching |
|
74 |
|
|
https://github.com/Zhuagenborn/Dll-Injector |
💉 A Windows dynamic-link library injection tool written in C++20. It can inject a dynamic-link library into a running process by its window title or create a new process with an injection. |
Zhuagenborn |
gpl-3.0 |
48 |
|
|
https://github.com/sdasgup3/binary-decompilation |
Extracting high level semantic information from binary code |
sdasgup3 |
other |
57 |
|
|
https://github.com/adulau/dcfldd |
dcfldd - enhanced version of dd for forensics and security |
adulau |
gpl-2.0 |
58 |
|
|
https://github.com/infoskirmish/hive |
The CIA Hive source code as released by Wikileaks |
infoskirmish |
|
46 |
|
|
https://github.com/peazip/PeaZip |
Free Zip / Unzip software and Rar file extractor. Cross-platform file and archive manager. Features volume spanning, compression, authenticated encryption. Supports 7Z, 7-Zip sfx, ACE, ARJ, Brotli, BZ2, CAB, CHM, CPIO, DEB, GZ, ISO, JAR, LHA/LZH, NSIS, OOo, PAQ/LPAQ, PEA, QUAD, RAR, RPM, split, TAR, Z, ZIP, ZIPX, Zstandard. |
peazip |
lgpl-3.0 |
2232 |
|
|
https://github.com/magwyz/mediaLexicometer |
Tools to do lexicometry on media |
magwyz |
agpl-3.0 |
40 |
|
|
https://github.com/payloadbox/xss-payload-list |
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List |
payloadbox |
mit |
3806 |
|
|
https://github.com/swisscom/ArtifactCollectionMatrix |
Forensic Artifact Collection Tool Matrix |
swisscom |
other |
29 |
|
|
https://github.com/HoShiMin/Sig |
The most powerful and customizable binary pattern scanner |
HoShiMin |
mit |
143 |
|
|
https://github.com/cariboulabs/cariboulite |
CaribouLite turns any 40-pin Raspberry-Pi into a Tx/Rx 6GHz SDR |
cariboulabs |
|
846 |
|
|
https://github.com/threathunters-io/laurel |
Transform Linux Audit logs for SIEM usage |
threathunters-io |
gpl-3.0 |
440 |
|
|
https://github.com/benthosdev/benthos |
Fancy stream processing made operationally mundane |
benthosdev |
mit |
4912 |
|
|
https://github.com/kevthehermit/volatility_symbols |
Volatility Symbol Generator for Linux Kernels |
kevthehermit |
|
14 |
|
|
https://github.com/mytechnotalent/Reverse-Engineering |
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures. |
mytechnotalent |
apache-2.0 |
7459 |
|
|
https://github.com/jthuraisamy/SysWhispers |
AV/EDR evasion via direct system calls. |
jthuraisamy |
apache-2.0 |
1410 |
|
|
https://github.com/dfir-iris/iris-web |
Collaborative Incident Response platform |
dfir-iris |
lgpl-3.0 |
538 |
|
|
https://github.com/tanc7/EXOCET-AV-Evasion |
EXOCET - AV-evading, undetectable, payload delivery tool |
tanc7 |
|
662 |
|
|
https://github.com/Ne0nd0g/merlin-agent |
|
Ne0nd0g |
gpl-3.0 |
95 |
|
|
https://github.com/deepset-ai/haystack |
:mag: Haystack is an open source NLP framework that leverages pre-trained Transformer models. It enables developers to quickly implement production-ready semantic search, question answering, summarization and document ranking for a wide range of NLP applications. |
deepset-ai |
apache-2.0 |
5986 |
|
|
https://github.com/fuzzuf/fuzzuf |
Fuzzing Unification Framework |
fuzzuf |
agpl-3.0 |
298 |
|
|
https://github.com/LingDong-/shan-shui-inf |
Procedurally generated Chinese landscape painting. |
LingDong- |
mit |
4922 |
|
|
https://github.com/cdnjs/cdnjs |
🤖 CDN assets - The #1 free and open source CDN built to make life easier for developers. |
cdnjs |
mit |
9689 |
|
|
https://github.com/IndrajeetPatil/ggstatsplot |
Enhancing {ggplot2} plots with statistical analysis 📊🎨📣 |
IndrajeetPatil |
gpl-3.0 |
1586 |
|
|
https://github.com/juju4/ansible-hashlookupserver |
Install hashlookup-server, minimal and fast open source server (ReST/API) to lookup quickly hash value from large datase t. |
juju4 |
bsd-2-clause |
1 |
|
|
https://github.com/daniestevez/jupyter_notebooks |
Assorted Jupyter notebooks by Daniel Estévez |
daniestevez |
gpl-3.0 |
97 |
|
|
https://github.com/constellation-app/constellation |
A graph-focused data visualisation and interactive analysis application. |
constellation-app |
apache-2.0 |
349 |
|
|
https://github.com/archanchoudhury/SOC-OpenSource |
This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC architecture. |
archanchoudhury |
cc0-1.0 |
247 |
|
|
https://github.com/hashlookup/hashlookup-forensic-analyser |
Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https://circl.lu/services/hashlookup/ |
hashlookup |
other |
91 |
|
|
https://github.com/ubfx/BinDiffHelper |
Ghidra Extension to integrate BinDiff for function matching |
ubfx |
|
174 |
|
|
https://github.com/Cracked5pider/KaynLdr |
KaynLdr is a Reflective Loader written in C/ASM |
Cracked5pider |
|
406 |
|
|
https://github.com/cursey/regenny |
A reverse engineering tool to interactively reconstruct structures and generate header files |
cursey |
mit |
79 |
|
|
https://github.com/gkiril/benchie |
Comprehensive evaluation framework for Open Information Extraction. |
gkiril |
other |
26 |
|
|
https://github.com/Yamato-Security/WELA |
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ) |
Yamato-Security |
gpl-3.0 |
462 |
|
|
https://github.com/rescuezilla/rescuezilla |
The Swiss Army Knife of System Recovery |
rescuezilla |
gpl-3.0 |
667 |
|
|
https://github.com/NUKIB/misp-modules |
Docker image for MISP modules |
NUKIB |
gpl-3.0 |
4 |
|
|
https://github.com/dragnet-org/dragnet |
Just the facts – web page content extraction |
dragnet-org |
mit |
1075 |
|
|
https://github.com/jstrosch/learning-malware-analysis |
This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to worry about handling live malware. |
jstrosch |
|
124 |
|
|
https://github.com/Fare9/KUNAI-static-analyzer |
Tool aimed to provide a binary analysis of different file formats through the use of an Intermmediate Representation. |
Fare9 |
mit |
75 |
|
|
https://github.com/SamuelTulach/efi-memory |
PoC EFI runtime driver for memory r/w & kdmapper fork |
SamuelTulach |
|
330 |
|
|
https://github.com/LanikSJ/dfimage |
Reverse-engineer a Dockerfile from a Docker image. |
LanikSJ |
mit |
208 |
|
|
https://github.com/ssthouse/tree-chart |
Flexible tree chart using Canvas and Svg, powered by D3.js; ✅Support Vue, Vue3 and React; |
ssthouse |
mit |
328 |
|
|
https://github.com/StrangerealIntel/Orion |
A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses … |
StrangerealIntel |
|
112 |
|
|
https://github.com/bats3c/shad0w |
A post exploitation framework designed to operate covertly on heavily monitored environments |
bats3c |
mit |
1796 |
|
|
https://github.com/Mr-Un1k0d3r/DKMC |
DKMC - Dont kill my cat - Malicious payload evasion tool |
Mr-Un1k0d3r |
other |
1220 |
|
|
https://github.com/Yamato-Security/hayabusa |
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs. |
Yamato-Security |
gpl-3.0 |
815 |
|
|
https://github.com/Srakai/Adun |
A way to backdoor every process |
Srakai |
gpl-3.0 |
58 |
|
|
https://github.com/ChrisTheCoolHut/Zeratool |
Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems |
ChrisTheCoolHut |
gpl-3.0 |
950 |
|
|
https://github.com/janmojzis/tinyssh |
TinySSH is small server (less than 100000 words of code) |
janmojzis |
other |
881 |
|
|
https://github.com/gqrx-sdr/gqrx |
Software defined radio receiver powered by GNU Radio and Qt. |
gqrx-sdr |
gpl-3.0 |
2257 |
|
|
https://github.com/cve-search/git-vuln-finder |
Finding potential software vulnerabilities from git commit messages |
cve-search |
|
320 |
|
|
https://github.com/wader/fq |
jq for binary formats |
wader |
other |
4534 |
|
|
https://github.com/dgtlmoon/changedetection.io |
changedetection.io - The best and simplest self-hosted free open source website change detection tracking, monitoring and notification service. An alternative to Visualping, Watchtower etc. Designed for simplicity - the main goal is to simply monitor which websites had a text change for free. Free Open source web page change detection |
dgtlmoon |
apache-2.0 |
6310 |
|
|
https://github.com/dafthack/DomainPasswordSpray |
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS! |
dafthack |
mit |
1254 |
|
|
https://github.com/j3ssie/osmedeus |
A Workflow Engine for Offensive Security |
j3ssie |
mit |
4082 |
|
|
https://github.com/ziesemer/ad-privileged-audit |
Provides various Windows Server Active Directory (AD) security-focused reports. |
ziesemer |
|
44 |
|
|
https://github.com/mufeedvh/moonwalk |
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. |
mufeedvh |
mit |
1043 |
|
|
https://github.com/boun-tabi/RELX |
The RELX Dataset and Matching the Multilingual Blanks for Cross-Lingual Relation Classification, EMNLP-Findings 2020. |
boun-tabi |
mit |
19 |
|
|
https://github.com/svenstaro/genact |
🌀 A nonsense activity generator |
svenstaro |
mit |
6632 |
|
|
https://github.com/TheCruZ/EFI_Driver_Access |
Efi Driver Access is a simply project to load a driver during system boot with the idea to give the user kernel access for read/write memory without restrictions |
TheCruZ |
|
212 |
|
|
https://github.com/phoboslab/qoi |
The “Quite OK Image Format” for fast, lossless image compression |
phoboslab |
|
5855 |
|
|
https://github.com/tylerhou/fiber |
|
tylerhou |
apache-2.0 |
225 |
|
|
https://github.com/bohops/RogueAssemblyHunter |
Rogue Assembly Hunter is a utility for discovering ‘interesting’ .NET CLR modules in running processes. |
bohops |
mit |
104 |
|
|
https://github.com/msrkp/exploits |
’>”><img src=x onerror=alert(1) />asd |
msrkp |
|
46 |
|
|
https://github.com/go-gitea/gitea |
Git with a cup of tea, painless self-hosted git service |
go-gitea |
mit |
33084 |
|
|
https://github.com/SigmaHQ/pySigma |
Python library to parse and convert Sigma rules into queries (and whatever else you could imagine) |
SigmaHQ |
lgpl-2.1 |
143 |
|
|
https://github.com/MISP/cexf |
Common Exercise Format - CEXF |
MISP |
|
9 |
|
|
https://github.com/johnkerl/miller |
Miller is like awk, sed, cut, join, and sort for name-indexed data such as CSV, TSV, and tabular JSON |
johnkerl |
other |
5779 |
|
|
https://github.com/enisaeu/CNW |
The CSIRTs Network is a network composed of EU Member States’ appointed CSIRTs and CERT-EU. It provides a forum where members can cooperate, exchange information and build trust. |
enisaeu |
|
17 |
|
|
https://github.com/wagoodman/dive |
A tool for exploring each layer in a docker image |
wagoodman |
mit |
34295 |
|
|
https://github.com/Its-Vichy/GoriaNet |
🐼 IoT worm written in pure golang. |
Its-Vichy |
gpl-3.0 |
68 |
|
|
https://github.com/MaxHalford/procedural-art |
:milky_way: Procedural art with vanilla JavaScript |
MaxHalford |
mit |
85 |
|
|
https://github.com/lucidworks/banana |
Banana for Solr - A Port of Kibana |
lucidworks |
other |
667 |
|
|
https://github.com/gamozolabs/elfloader |
An architecture-agnostic ELF file flattener for shellcode |
gamozolabs |
mit |
188 |
|
|
https://github.com/vfsfitvnm/intruducer |
A Rust crate to load a shared library into a Linux process without using ptrace. |
vfsfitvnm |
mit |
85 |
|
|
https://github.com/saferwall/pe |
A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations. |
saferwall |
mit |
152 |
|
|
https://github.com/bongtrop/hbctool |
Hermes Bytecode Reverse Engineering Tool (Assemble/Disassemble Hermes Bytecode) |
bongtrop |
mit |
185 |
|
|
https://github.com/scottrogowski/code2flow |
Pretty good call graphs for dynamic languages |
scottrogowski |
mit |
2812 |
|
|
https://github.com/ius/rsatool |
rsatool can be used to calculate RSA and RSA-CRT parameters |
ius |
bsd-2-clause |
856 |
|
|
https://github.com/fomantic/Fomantic-UI |
Fomantic-UI is the official community fork of Semantic-UI |
fomantic |
mit |
3074 |
|
|
https://github.com/Semantic-Org/Semantic-UI |
Semantic is a UI component framework based around useful principles from natural language. |
Semantic-Org |
mit |
50214 |
|
|
https://github.com/elihunter173/java-manifest-py |
Encode/decode Java’s META-INF/MANIFEST.MF in Python. |
elihunter173 |
agpl-3.0 |
4 |
|
|
https://github.com/RedHatProductSecurity/vulnerability-detection-scripts |
Vulnerability detection scripts for Red Hat Enterprise Linux |
RedHatProductSecurity |
gpl-3.0 |
15 |
|
|
https://github.com/obriencj/python-javatools |
Tools for examining Java bytecode in Python |
obriencj |
lgpl-3.0 |
80 |
|
|
https://github.com/haimgel/display-switch |
Turn a $30 USB switch into a full-featured multi-monitor KVM switch |
haimgel |
mit |
2250 |
|
|
https://github.com/curated-intel/Log4Shell-IOCs |
A collection of intelligence about Log4Shell and its exploitation activity. |
curated-intel |
|
170 |
|
|
https://github.com/zyantific/zasm |
x86-64 Assembler based on Zydis |
zyantific |
mit |
158 |
|
|
https://github.com/frohoff/ysoserial |
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. |
frohoff |
mit |
5833 |
|
|
https://github.com/push0ebp/xMalHunter |
x64dbg Malware Plugin. Detect malicious materials |
push0ebp |
mit |
13 |
|
|
https://github.com/0dayCTF/reverse-shell-generator |
Hosted Reverse Shell generator with a ton of functionality. – (Great for CTFs) |
0dayCTF |
mit |
1548 |
|
|
https://github.com/AFLplusplus/StdFuzzer |
StdFuzzer is the reference implementation of a generic bit-level fuzzer with LibAFL |
AFLplusplus |
|
41 |
|
|
https://github.com/unipacker/unipacker |
Automatic and platform-independent unpacker for Windows binaries based on emulation |
unipacker |
gpl-2.0 |
493 |
|
|
https://github.com/staaldraad/dnstrap |
Trap dns requests |
staaldraad |
|
4 |
|
|
https://github.com/androguard/androguard |
Reverse engineering and pentesting for Android applications |
androguard |
apache-2.0 |
4163 |
|
|
https://github.com/h2non/jsonpath-ng |
Finally, a JSONPath implementation for Python that aims to be standard compliant. That’s all. Enjoy it. |
h2non |
apache-2.0 |
358 |
|
|
https://github.com/proferosec/log4jScanner |
log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services |
proferosec |
gpl-3.0 |
479 |
|
|
https://github.com/NotSoSecure/password_cracking_rules |
One rule to crack all passwords. or atleast we hope so. |
NotSoSecure |
mit |
977 |
|
|
https://github.com/cbaziotis/ekphrasis |
Ekphrasis is a text processing tool, geared towards text from social networks, such as Twitter or Facebook. Ekphrasis performs tokenization, word normalization, word segmentation (for splitting hashtags) and spell correction, using word statistics from 2 big corpora (english Wikipedia, twitter - 330mil english tweets). |
cbaziotis |
mit |
587 |
|
|
https://github.com/jbesomi/texthero |
Text preprocessing, representation and visualization from zero to hero. |
jbesomi |
mit |
2616 |
|
|
https://github.com/chartbeat-labs/textacy |
NLP, before and after spaCy |
chartbeat-labs |
other |
1991 |
|
|
https://github.com/facebookresearch/cc_net |
Tools to download and cleanup Common Crawl data |
facebookresearch |
mit |
469 |
|
|
https://github.com/naim94a/lumen |
A private Lumina server for IDA Pro |
naim94a |
mit |
557 |
|
|
https://github.com/hydra-synth/hydra |
Livecoding networked visuals in the browser |
hydra-synth |
agpl-3.0 |
1796 |
|
|
https://github.com/mrexodia/dumpulator |
An easy-to-use library for emulating code in minidump files. |
mrexodia |
bsl-1.0 |
339 |
|
|
https://github.com/trailofbits/it-depends |
A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories. |
trailofbits |
lgpl-3.0 |
265 |
|
|
https://github.com/facebook/mariana-trench |
Our security focused static analysis tool for Android and Java applications. |
facebook |
mit |
896 |
|
|
https://github.com/D4-project/pybgpranking |
Python API for BGP Ranking |
D4-project |
bsd-3-clause |
3 |
|
|
https://github.com/RolfRolles/Miscellaneous |
Small programs and scripts that do not require their own repositories |
RolfRolles |
gpl-3.0 |
110 |
|
|
https://github.com/easystats/see |
:art: Visualisation toolbox for beautiful and publication-ready figures |
easystats |
gpl-3.0 |
677 |
|
|
https://github.com/milvus-io/milvus |
Vector database for scalable similarity search and AI applications. |
milvus-io |
apache-2.0 |
14128 |
|
|
https://github.com/adulau/ssldump |
ssldump - (de-facto repository gathering patches around the cyberspace) |
adulau |
other |
168 |
|
|
https://github.com/hectorm/demergi |
A proxy server that helps to bypass the DPI systems implemented by various ISPs. |
hectorm |
mit |
8 |
|
|
https://github.com/e-m-b-a/embark |
EMBArk - The firmware security scanning environment |
e-m-b-a |
mit |
169 |
|
|
https://github.com/monoxgas/sRDI |
Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode |
monoxgas |
other |
1523 |
|
|
https://github.com/knownsec/404StarLink-Project |
Focus on promoting the evolution of tools in different aspects of security research.专注于推动安全研究各个领域工具化.(项目收录逐步迁移至 https://github.com/knownsec/404StarLink) |
knownsec |
|
738 |
|
|
https://github.com/yogeshojha/rengine |
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine’s correlation, it just makes recon effortless. |
yogeshojha |
gpl-3.0 |
4818 |
|
|
https://github.com/unixpickle/gobfuscate |
Obfuscate Go binaries and packages |
unixpickle |
bsd-2-clause |
1216 |
|
|
https://github.com/0xsp-SRD/mortar |
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR) |
0xsp-SRD |
mit |
980 |
|
|
https://github.com/redcode-labs/REVENANT |
Volatile ELF payloads generator with Metasploit integrations for testing GNU/Linux ecosystems |
redcode-labs |
|
53 |
|
|
https://github.com/anchore/grype |
A vulnerability scanner for container images and filesystems |
anchore |
apache-2.0 |
4730 |
|
|
https://github.com/ly4k/Pachine |
Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation) |
ly4k |
mit |
247 |
|
|
https://github.com/microsoft/recommenders |
Best Practices on Recommendation Systems |
microsoft |
mit |
14336 |
|
|
https://github.com/cisagov/log4j-affected-db |
A community sourced list of log4j-affected software |
cisagov |
cc0-1.0 |
1111 |
|
|
https://github.com/weslambert/velociraptor-misp |
Artifacts for integrating MISP with Velociraptor |
weslambert |
|
3 |
|
|
https://github.com/GenericException/SkidSuite |
A collection of java reverse engineering tools and informational links |
GenericException |
|
192 |
|
|
https://github.com/WazeHell/sam-the-admin |
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user |
WazeHell |
|
860 |
|
|
https://github.com/nccgroup/log4j-jndi-be-gone |
A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x “JNDI LDAP” vulnerability. |
nccgroup |
apache-2.0 |
72 |
|
|
https://github.com/paradoxwastaken/Poseidon |
stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device objects. |
paradoxwastaken |
|
188 |
|
|
https://github.com/woodpecker-appstore/log4j-payload-generator |
Log4j jndi injects the Payload generator |
woodpecker-appstore |
|
462 |
|
|
https://github.com/LeakIX/l9fuzz |
Help fuzz various protocols and waits for ping backs Integrates LDAP server and JNDI payload |
LeakIX |
|
11 |
|
|
https://github.com/CycloneDX/specification |
Software Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis |
CycloneDX |
apache-2.0 |
185 |
|
|
https://github.com/Ridter/noPac |
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user |
Ridter |
|
465 |
|
|
https://github.com/NCSC-NL/log4shell |
Operational information regarding the log4shell vulnerabilities in the Log4j logging library. |
NCSC-NL |
|
1887 |
|
|
https://github.com/CycloneDX/cyclonedx-cli |
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions. |
CycloneDX |
apache-2.0 |
117 |
|
|
https://github.com/CycloneDX/cyclonedx-python |
Creates CycloneDX Software Bill of Materials (SBOM) from Python projects and environments. |
CycloneDX |
apache-2.0 |
104 |
|
|
https://github.com/righel/log4shell_nse |
nse script to inject jndi payloads |
righel |
|
42 |
|
|
https://github.com/danieljs777/fastoverflowtk |
This Buffer Overflow Toolkit works through FTP, SMTP, POP, HTTP protocols as well file outputs for playlists exploiting customized variables/commands. Payloads can be generated through MSFVENOM or you can use your own ASM files. |
danieljs777 |
|
17 |
|
|
https://github.com/Mr-Un1k0d3r/MiniDump |
alternative to procdump |
Mr-Un1k0d3r |
|
177 |
|
|
https://github.com/jivoi/awesome-osint |
:scream: A curated list of amazingly awesome OSINT |
jivoi |
other |
10738 |
|
|
https://github.com/inconvergent/weird |
Generative art in Common Lisp |
inconvergent |
other |
1472 |
|
|
https://github.com/kjellmf/dot2tex |
Convert graphs generated by Graphviz to LaTeX friendly formats |
kjellmf |
other |
133 |
|
|
https://github.com/malpedia/signator-rules |
Collection of rules created using YARA-Signator over Malpedia |
malpedia |
|
62 |
|
|
https://github.com/MelbourneFuzzingHub/aflteam |
AFLTeam Collaborative Parallel Fuzzing |
MelbourneFuzzingHub |
apache-2.0 |
63 |
|
|
https://github.com/Cybereason/Logout4Shell |
Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell |
Cybereason |
mit |
1726 |
|
|
https://github.com/cube0x0/noPac |
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter. |
cube0x0 |
|
1152 |
|
|
https://github.com/nneonneo/ghidra-wasm-plugin |
Ghidra Wasm plugin with disassembly and decompilation support |
nneonneo |
gpl-3.0 |
88 |
|
|
https://github.com/mozilla/mig |
Distributed & real time digital forensics at the speed of the cloud |
mozilla |
mpl-2.0 |
1194 |
|
|
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words |
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks |
Puliczek |
|
858 |
|
|
https://github.com/paulbrodersen/netgraph |
Drawing utilities for publication quality plots of networks |
paulbrodersen |
gpl-3.0 |
428 |
|
|
https://github.com/cert-lv/graphoscope |
Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph |
cert-lv |
|
29 |
|
|
https://github.com/YfryTchsGD/Log4jAttackSurface |
|
YfryTchsGD |
|
2091 |
|
|
https://github.com/ptswarm/reFlutter |
Flutter Reverse Engineering Framework |
ptswarm |
gpl-3.0 |
874 |
|
|
https://github.com/MISP/misp-warninglists |
Warning lists to inform users of MISP about potential false-positives or other information in indicators |
MISP |
|
311 |
|
|
https://github.com/charmbracelet/soft-serve |
A tasty, self-hostable Git server for the command line🍦 |
charmbracelet |
mit |
2712 |
|
|
https://github.com/horizon3ai/CVE-2021-44077 |
Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077 |
horizon3ai |
|
26 |
|
|
https://github.com/hughsie/python-uswid |
A tiny tool for embedding CoSWID tags in EFI binaries |
hughsie |
lgpl-2.1 |
10 |
|
|
https://github.com/xonotic/darkplaces |
Mirror of https://gitlab.com/xonotic/darkplaces - The Quake engine that powers Xonotic https://xonotic.org |
xonotic |
gpl-2.0 |
158 |
|
|
https://github.com/LDO-CERT/orochi |
The Volatility Collaborative GUI |
LDO-CERT |
mit |
136 |
|
|
https://github.com/minos-org/minos-static |
static binaries for linux |
minos-org |
|
307 |
|
|
https://github.com/CRED-CLUB/ARTIF |
An advanced real time threat intelligence framework to identify threats and malicious web traffic on the basis of IP reputation and historical data. |
CRED-CLUB |
mit |
224 |
|
|
https://github.com/Michaelangel007/crc32 |
CRC32 Demystified |
Michaelangel007 |
|
123 |
|
|
https://github.com/joshlemon/DFIR-Reference-Frameworks |
Repository of public reference frameworks for the DFIR community. |
joshlemon |
gpl-3.0 |
87 |
|
|
https://github.com/nickjj/notes |
A zero dependency shell script that makes it really simple to manage your text notes. |
nickjj |
mit |
105 |
|
|
https://github.com/zinclabs/zinc |
ZincSearch. A lightweight alternative to elasticsearch that requires minimal resources, written in Go. |
zinclabs |
other |
12603 |
|
|
https://github.com/blugelabs/bluge |
indexing library for Go |
blugelabs |
apache-2.0 |
1474 |
|
|
https://github.com/mahaloz/objgraph |
Convert an objdump output into a CFG via Binary Ninja |
mahaloz |
bsd-2-clause |
6 |
|
|
https://github.com/idealeer/xmap |
XMap is a fast network scanner designed for performing Internet-wide IPv6 & IPv4 network research scanning. |
idealeer |
apache-2.0 |
184 |
|
|
https://github.com/ycm-core/YouCompleteMe |
A code-completion engine for Vim |
ycm-core |
gpl-3.0 |
24377 |
|
|
https://github.com/powerline/fonts |
Patched fonts for Powerline users. |
powerline |
|
24032 |
|
|
https://github.com/miguelgrinberg/promisio |
JavaScript-style async programming for Python. |
miguelgrinberg |
mit |
190 |
|
|
https://github.com/SpiderLabs/BlackByteDecryptor |
|
SpiderLabs |
apache-2.0 |
53 |
|
|
https://github.com/enisaeu/training-materials |
|
enisaeu |
eupl-1.2 |
5 |
|
|
https://github.com/zandi/eBPF_processor |
An IDA processor for eBPF bytecode |
zandi |
|
52 |
|
|
https://github.com/CIRCL/orbit-agents |
orbit-agents |
CIRCL |
|
2 |
|
|
https://github.com/nikeee/edotor.net |
Your favourite Graphviz editor |
nikeee |
mit |
145 |
|
|
https://github.com/post-cyberlabs/CVE-Advisory |
Publishing advisories for CVEs found by POST Cyberforce |
post-cyberlabs |
|
8 |
|
|
https://github.com/brimdata/zed |
A novel data lake based on super-structured data |
brimdata |
bsd-3-clause |
883 |
|
|
https://github.com/byt3bl33d3r/OffensiveNim |
My experiments in weaponizing Nim (https://nim-lang.org/) |
byt3bl33d3r |
bsd-2-clause |
1867 |
|
|
https://github.com/hashdd/sdhash |
similarity digest hashing tool |
hashdd |
apache-2.0 |
2 |
|
|
https://github.com/gigablast/open-source-search-engine |
Nov 20 2017 – A distributed open source search engine and spider/crawler written in C/C++ for Linux on Intel/AMD. From gigablast dot com, which has binaries for download. See the README.md file at the very bottom of this page for instructions. |
gigablast |
apache-2.0 |
1391 |
|
|
https://github.com/p0dalirius/webapp-wordlists |
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version. |
p0dalirius |
|
387 |
|
|
https://github.com/ipv6hitlist/ipv6hitlist.github.io |
Website for IPv6 Hitlist Service with data, software, paper of “Clusters in the Expanse: Understanding and Unbiasing IPv6 Hitlists” IMC’18 publication. |
ipv6hitlist |
|
25 |
|
|
https://github.com/DanBloomberg/leptonica |
Leptonica is an open source library containing software that is broadly useful for image processing and image analysis applications. The official github repository for Leptonica is: danbloomberg/leptonica. See leptonica.org for more documentation and recent releases. |
DanBloomberg |
other |
1313 |
|
|
https://github.com/crowdsecurity/crowdsec |
CrowdSec - the open-source and participative IPS able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global CTI database to protect the user network. |
crowdsecurity |
mit |
5727 |
|
|
https://github.com/visjs/vis-timeline |
📅 Create a fully customizable, interactive timelines and 2d-graphs with items and ranges. |
visjs |
other |
1138 |
|
|
https://github.com/visjs/vis-network |
:dizzy: Display dynamic, automatically organised, customizable network views. |
visjs |
apache-2.0 |
2241 |
|
|
https://github.com/knownsec/Kunyu |
Kunyu, more efficient corporate asset collection |
knownsec |
gpl-2.0 |
744 |
|
|
https://github.com/luispedro/jug |
Parallel programming with Python |
luispedro |
mit |
385 |
|
|
https://github.com/restic/chunker |
Implementation of Content Defined Chunking (CDC) in Go |
restic |
bsd-2-clause |
263 |
|
|
https://github.com/damoeb/rss-proxy |
RSS-proxy allows you to do create an RSS or ATOM feed of almost any website, just by analyzing just the static HTML structure. |
damoeb |
|
1362 |
|
|
https://github.com/apache/solr |
Apache Solr open-source search software |
apache |
apache-2.0 |
565 |
|
|
https://github.com/Bioruebe/UniExtract2 |
Universal Extractor 2 is a tool to extract files from any type of archive or installer. |
Bioruebe |
gpl-2.0 |
2450 |
|
|
https://github.com/dodancs/douglas-quaid-docker |
|
dodancs |
gpl-3.0 |
2 |
|
|
https://github.com/hasherezade/mal_unpack |
Dynamic unpacker based on PE-sieve |
hasherezade |
bsd-2-clause |
458 |
|
|
https://github.com/holoviz/colorcet |
A set of useful perceptually uniform colormaps for plotting scientific data |
holoviz |
other |
584 |
|
|
https://github.com/jsecurity101/MSRPC-to-ATTACK |
A repository that maps commonly used attacks using MSRPC protocols to ATT&CK |
jsecurity101 |
bsd-3-clause |
213 |
|
|
https://github.com/flashcode/gitchart |
Build SVG charts from a Git repository. |
flashcode |
gpl-3.0 |
51 |
|
|
https://github.com/CIRCL/factual-rules-generator |
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine. |
CIRCL |
agpl-3.0 |
66 |
|
|
https://github.com/fleetdm/fleet |
Fleet is the lightweight, programmable telemetry platform for servers and workstations. Get comprehensive, customizable data from all your devices and operating systems — without the downtime risk. |
fleetdm |
other |
961 |
|
|
https://github.com/mazen160/server-status_PWN |
A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-status instances. |
mazen160 |
mit |
363 |
|
|
https://github.com/NCSC-NL/flubot |
Flubot DGA domains |
NCSC-NL |
isc |
18 |
|
|
https://github.com/TingPing/flatpak-cve-checker |
|
TingPing |
gpl-3.0 |
2 |
|
|
https://github.com/DoctorWebLtd/malware-iocs |
|
DoctorWebLtd |
|
127 |
|
|
https://github.com/icyguider/DumpNParse |
A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0. |
icyguider |
gpl-3.0 |
116 |
|
|
https://github.com/phage-nz/misp-feeds |
Python Service for MISP Feed Management |
phage-nz |
|
7 |
|
|
https://github.com/crate/crate |
CrateDB is a distributed SQL database that makes it simple to store and analyze massive amounts of machine data in real-time. Built on top of Lucene. |
crate |
apache-2.0 |
3527 |
|
|
https://github.com/glitzflitz/pyxorfilter |
Python bindings for xorfilter(faster and smaller than bloom and cuckoo filters) |
glitzflitz |
apache-2.0 |
56 |
|
|
https://github.com/FastFilter/xorfilter |
Go library implementing binary fuse and xor filters |
FastFilter |
apache-2.0 |
595 |
|
|
https://github.com/pdillinger/wormhashing |
Source code and validation tests for “wide odd regenerative multiplication,” or “worm hashing” |
pdillinger |
mit |
6 |
|
|
https://github.com/dirtyfilthy/siem-from-scratch |
SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab |
dirtyfilthy |
gpl-3.0 |
34 |
|
|
https://github.com/DavidXanatos/wumgr |
Windows update managemetn tool for windows 10 |
DavidXanatos |
gpl-3.0 |
1067 |
|
|
https://github.com/stnolting/neoTRNG |
🎲 A Tiny and Platform-Independent True Random Number Generator for any FPGA. |
stnolting |
bsd-3-clause |
65 |
|
|
https://github.com/klinix5/InstallerFileTakeOver |
|
klinix5 |
mit |
1673 |
|
|
https://github.com/online-ml/river |
🌊 Online machine learning in Python |
online-ml |
bsd-3-clause |
3784 |
|
|
https://github.com/KvrocksLabs/kvrocks_exporter |
Prometheus Exporter for Kvrocks Metrics |
KvrocksLabs |
mit |
13 |
|
|
https://github.com/dveselov/python-libmagic |
Python bindings to libmagic |
dveselov |
mit |
20 |
|
|
https://github.com/pdoc3/pdoc |
:snake: :arrow_right: :scroll: Auto-generate API documentation for Python projects |
pdoc3 |
agpl-3.0 |
894 |
|
|
https://github.com/laixintao/iredis |
Interactive Redis: A Terminal Client for Redis with AutoCompletion and Syntax Highlighting. |
laixintao |
bsd-3-clause |
2175 |
|
|
https://github.com/vipshop/redis-migrate-tool |
A convenient and useful tool for migrating data between redis group. |
vipshop |
apache-2.0 |
902 |
|
|
https://github.com/righel/ms-exchange-version-nse |
Nmap script to detect a Microsoft Exchange instance version with OWA enabled. |
righel |
apache-2.0 |
26 |
|
|
https://github.com/ghuntley/thenftbay.org |
The NFT Bay is the galaxy’s most resilient NFT BitTorrent site! You wouldn’t steal a JPEG (or would you) |
ghuntley |
mit |
319 |
|
|
https://github.com/ssh-mitm/ssh-mitm |
ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation |
ssh-mitm |
gpl-3.0 |
970 |
|
|
https://github.com/JPCERTCC/EmoCheck |
Emotet detection tool for Windows OS |
JPCERTCC |
other |
616 |
|
|
https://github.com/ets-labs/python-vimrc |
VIM Configuration for Python / Cython / C Development |
ets-labs |
bsd-3-clause |
603 |
|
|
https://github.com/jtesta/ssh-audit |
SSH server & client auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc) |
jtesta |
mit |
1380 |
|
|
https://github.com/blackberry/threat-research-and-intelligence |
BlackBerry Threat Research & Intelligence |
blackberry |
apache-2.0 |
38 |
|
|
https://github.com/magicmonty/bash-git-prompt |
An informative and fancy bash prompt for Git users |
magicmonty |
bsd-2-clause |
6326 |
|
|
https://github.com/matusf/openapi-fuzzer |
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free! |
matusf |
agpl-3.0 |
385 |
|
|
https://github.com/OWASP/Python-Honeypot |
OWASP Honeypot, Automated Deception Framework. |
OWASP |
apache-2.0 |
328 |
|
|
https://github.com/trufflesecurity/driftwood |
Private key usage verification |
trufflesecurity |
apache-2.0 |
309 |
|
|
https://github.com/jmdx/TLS-poison |
|
jmdx |
mit |
639 |
|
|
https://github.com/c3rb3ru5d3d53c/binlex |
A Binary Genetic Traits Lexer Framework |
c3rb3ru5d3d53c |
unlicense |
303 |
|
|
https://github.com/manishkatyan/bbb-optimize |
Better audio quality, increase recording processing speed, dynamic video profile, pagination, fix 1007/1020 errors and use apply-config.sh to manage your customizations are some key techniques for you to optimize and smoothly run your BigBlueButton servers. |
manishkatyan |
mit |
75 |
|
|
https://github.com/greatscottgadgets/ViewSB |
open-source USB analyzer toolkit with support for a variety of capture hardware |
greatscottgadgets |
bsd-3-clause |
287 |
|
|
https://github.com/nanoc/nanoc |
A powerful web publishing system |
nanoc |
mit |
2013 |
|
|
https://github.com/niedzielski/git-diff-img |
📷 Diff Git versioned images graphically. |
niedzielski |
|
69 |
|
|
https://github.com/OpenAtomFoundation/pika |
Pika is a nosql compatible with redis, it is developed by Qihoo’s DBA and infrastructure team |
OpenAtomFoundation |
bsd-3-clause |
4844 |
|
|
https://github.com/drmpeg/gr-atsc3 |
An ATSC 3.0 Transmitter for GNU Radio |
drmpeg |
gpl-3.0 |
14 |
|
|
https://github.com/sagpant/reindexer |
|
sagpant |
apache-2.0 |
3 |
|
|
https://github.com/searxng/searxng |
SearXNG is a free internet metasearch engine which aggregates results from various search services and databases. Users are neither tracked nor profiled. |
searxng |
agpl-3.0 |
3435 |
|
|
https://github.com/tejado/telegram-nearby-map |
Discover the location of nearby Telegram users 📡🌍 |
tejado |
gpl-3.0 |
433 |
|
|
https://github.com/dlukes/rbo |
Python implementation of the rank-biased overlap list similarity measure. |
dlukes |
|
58 |
|
|
https://github.com/helpsystems/nanodump |
A crappy LSASS dumper with no ASCII art |
helpsystems |
apache-2.0 |
1022 |
|
|
https://github.com/quarkslab/titanm |
This repository contains the tools we used in our research on the Google Titan M chip |
quarkslab |
apache-2.0 |
147 |
|
|
https://github.com/SEKOIA-IO/Community |
Welcome to the SEKOIA.IO Community repository! |
SEKOIA-IO |
|
37 |
|
|
https://github.com/stratosphereips/StratosphereLinuxIPS |
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague. |
stratosphereips |
other |
336 |
|
|
https://github.com/opencybersecurityalliance/kestrel-lang |
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel. |
opencybersecurityalliance |
apache-2.0 |
183 |
|
|
https://github.com/PlumLulz/hashes.com-cli |
Command line interface to interact with hashes.com escrow service. |
PlumLulz |
|
22 |
|
|
https://github.com/Lookyloo/webext |
Web extension to submit a URL with its context to a Lookyloo instance |
Lookyloo |
bsd-3-clause |
2 |
|
|
https://github.com/mav8557/Father |
LD_PRELOAD rootkit |
mav8557 |
unlicense |
73 |
|
|
https://github.com/mmxgn/spacy-clausie |
Implementation of the ClausIE information extraction system for python+spacy |
mmxgn |
gpl-3.0 |
181 |
|
|
https://github.com/magjac/d3-graphviz |
Graphviz DOT rendering and animated transitions using D3 |
magjac |
bsd-3-clause |
1354 |
|
|
https://github.com/b4den/rsacrack |
A toolbox for extracting RSA private keys from public keys. |
b4den |
|
150 |
|
|
https://github.com/righel/gitlab-version-nse |
Nmap script to guess* a GitLab version. |
righel |
apache-2.0 |
118 |
|
|
https://github.com/mcore1976/antispy-jammer |
Simplest ultrasonic ANTISPY voice recording jammer based on ATTINY13 / ATTINY85 / ARDUINO with PAM8403 module driving piezo ultrasonic transducers (and optionally AD8933 signal generator) |
mcore1976 |
|
54 |
|
|
https://github.com/docker-forensics-toolkit/toolkit |
A toolkit for the post-mortem examination of Docker containers from forensic HDD copies |
docker-forensics-toolkit |
apache-2.0 |
54 |
|
|
https://github.com/ail-project/ail-feeder-gharchive |
AIL feeder for GitHub archive - gharchive.org |
ail-project |
|
2 |
|
|
https://github.com/NicholasMamo/multiplex-plot |
Multiplex: visualizations that tell stories—A Python library to create and annotate beautiful network graph visualizations, text visualizations and more. |
NicholasMamo |
gpl-3.0 |
90 |
|
|
https://github.com/airbus-seclab/GEA1_break |
Implementation of the key recovery attack against GEA-1 keys (Eurocrypt 2021) |
airbus-seclab |
gpl-2.0 |
47 |
|
|
https://github.com/Squiblydoo/MalAPIReader |
Reads and prints information from the website MalAPI.io |
Squiblydoo |
gpl-3.0 |
15 |
|
|
https://github.com/binref/refinery |
High Octane Triage Analysis |
binref |
other |
300 |
|
|
https://github.com/FerretDB/FerretDB |
A truly Open Source MongoDB alternative |
FerretDB |
apache-2.0 |
4901 |
|
|
https://github.com/xorhex/mlget |
A golang CLI tool to download malware from a variety of sources. |
xorhex |
|
107 |
|
|
https://github.com/netsampler/goflow2 |
High performance sFlow/IPFIX/NetFlow Collector |
netsampler |
bsd-3-clause |
210 |
|
|
https://github.com/kholia/john |
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs |
kholia |
|
13 |
|
|
https://github.com/nbriz/sneakrypt |
A simple CLI for synchronously encrypting and decrypting text files modeled on the classic hacker film Sneakers, because there’s no technical reason hacking can’t look the way it does in the movies. |
nbriz |
gpl-3.0 |
11 |
|
|
https://github.com/center-for-threat-informed-defense/attack_to_cve |
A methodology for mapping MITRE ATT&CK techniques to vulnerability records to describe the impact of a vulnerability. |
center-for-threat-informed-defense |
apache-2.0 |
127 |
|
|
https://github.com/jiesutd/NCRFpp |
NCRF++, a Neural Sequence Labeling Toolkit. Easy use to any sequence labeling tasks (e.g. NER, POS, Segmentation). It includes character LSTM/CNN, word LSTM/CNN and softmax/CRF components. |
jiesutd |
apache-2.0 |
1833 |
|
|
https://github.com/helloflask/bootstrap-flask |
Bootstrap 4 & 5 helper for your Flask projects. |
helloflask |
other |
767 |
|
|
https://github.com/EricZimmerman/KapeFiles |
This repository serves as a place for community created Targets and Modules for use with KAPE. |
EricZimmerman |
mit |
391 |
|
|
https://github.com/MiroKaku/Nt-Modules |
Collect different versions of Crucial modules. |
MiroKaku |
|
93 |
|
|
https://github.com/scottashipp/noted |
Lightweight CLI for taking markdown notes in a journal-like (time-seried) fashion |
scottashipp |
gpl-3.0 |
67 |
|
|
https://github.com/KB5201314/yark |
Yet another Linux Rootkit |
KB5201314 |
|
17 |
|
|
https://github.com/bestpractical/rtir-extension-misp |
|
bestpractical |
|
4 |
|
|
https://github.com/ajkhoury/ReClassEx |
ReClassEx |
ajkhoury |
mit |
736 |
|
|
https://github.com/V1D1AN/S1EM |
This project is a SIEM with SIRP and Threat Intel, all in one. |
V1D1AN |
|
262 |
|
|
https://github.com/hashlookup/hashlookup-importer |
Directory importer for hashlookup server |
hashlookup |
|
2 |
|
|
https://github.com/zmap/constants |
Repository of constants used in TLS and X509 parsing |
zmap |
|
10 |
|
|
https://github.com/CERTCC/kaiju |
CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is the primary, canonical repository for this project – file bug reports and wishes here! |
CERTCC |
other |
168 |
|
|
https://github.com/Mahlet-Inc/hobbits |
A multi-platform GUI for bit-based analysis, processing, and visualization |
Mahlet-Inc |
mit |
524 |
|
|
https://github.com/cerebrate-project/module-collection |
|
cerebrate-project |
agpl-3.0 |
2 |
|
|
https://github.com/nccgroup/umap2 |
Umap2 is the second revision of NCC Group’s python based USB host security assessment tool. |
nccgroup |
agpl-3.0 |
223 |
|
|
https://github.com/broccolini/swiss |
Jekyll theme inspired by Swiss design |
broccolini |
mit |
444 |
|
|
https://github.com/pantsbuild/pex |
A library and tool for generating .pex (Python EXecutable) files |
pantsbuild |
apache-2.0 |
2168 |
|
|
https://github.com/Dvd848/pytai |
Kaitai Struct: Visualizer and Hex Viewer GUI in Python |
Dvd848 |
other |
95 |
|
|
https://github.com/B2R2-org/B2R2 |
B2R2 is a collection of useful algorithms, functions, and tools for binary analysis. |
B2R2-org |
mit |
359 |
|
|
https://github.com/curated-intel/Initial-Access-Broker-Landscape |
A visualized overview of the Initial Access Broker (IAB) cybercrime landscape |
curated-intel |
|
91 |
|
|
https://github.com/canonical/section_ops |
Section operation hacks |
canonical |
mit |
3 |
|
|
https://github.com/ANSSI-FR/MLA |
Multi Layer Archive - A pure rust encrypted and compressed archive file format |
ANSSI-FR |
lgpl-3.0 |
272 |
|
|
https://github.com/center-for-threat-informed-defense/attack-workbench-rest-api |
An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains the REST API service for storing, querying, and editing ATT&CK objects. |
center-for-threat-informed-defense |
apache-2.0 |
19 |
|
|
https://github.com/Shell-Company/Public-Shell-Company |
Provision on-demand anonymous shells via SMS |
Shell-Company |
|
8 |
|
|
https://github.com/BentonEdmondson/knock |
Convert ACSM files to PDFs/EPUBs with one command on Linux |
BentonEdmondson |
gpl-3.0 |
564 |
|
|
https://github.com/SentineLabs/AlphaGolang |
IDApython Scripts for Analyzing Golang Binaries |
SentineLabs |
gpl-3.0 |
350 |
|
|
https://github.com/RH-ISAC/PyOTI |
Python library for threat intelligence |
RH-ISAC |
gpl-3.0 |
54 |
|
|
https://github.com/optiv/ScareCrow |
ScareCrow - Payload creation framework designed around EDR bypass. |
optiv |
mit |
2069 |
|
|
https://github.com/BushidoUK/CTI-Quiz |
Practice CTI Quiz |
BushidoUK |
|
7 |
|
|
https://github.com/D4-project/pyipasnhistory |
API client for IPASN History |
D4-project |
|
3 |
|
|
https://github.com/kindtime/nosferatu |
Windows NTLM Authentication Backdoor |
kindtime |
|
189 |
|
|
https://github.com/scrapinghub/article-extraction-benchmark |
Article extraction benchmark: dataset and evaluation scripts |
scrapinghub |
mit |
146 |
|
|
https://github.com/adbar/trafilatura |
Python & command-line tool to gather text on the Web: web crawling/scraping, extraction of text, metadata, comments |
adbar |
gpl-3.0 |
634 |
|
|
https://github.com/matterpoll/matterpoll |
Create polls and surveys directly within Mattermost |
matterpoll |
mit |
223 |
|
|
https://github.com/tsale/Rita-zeek_analysis |
Script to install rita and zeek and then analyze related logs |
tsale |
|
6 |
|
|
https://github.com/CQCL/lambeq |
A high-level Python library for Quantum Natural Language Processing |
CQCL |
apache-2.0 |
304 |
|
|
https://github.com/jfilter/clean-text |
🧹 Python package for text cleaning |
jfilter |
other |
716 |
|
|
https://github.com/amir-zeldes/gum |
Repository for the Georgetown University Multilayer Corpus (GUM) |
amir-zeldes |
other |
71 |
|
|
https://github.com/GitJournal/GitJournal |
Mobile first Note Taking integrated with Git |
GitJournal |
agpl-3.0 |
2715 |
|
|
https://github.com/kanidm/kanidm |
Kanidm: A simple, secure and fast identity management platform |
kanidm |
mpl-2.0 |
1179 |
|
|
https://github.com/ranaroussi/yfinance |
Download market data from Yahoo! Finance’s API |
ranaroussi |
apache-2.0 |
7852 |
|
|
https://github.com/RaRe-Technologies/gensim |
Topic Modelling for Humans |
RaRe-Technologies |
lgpl-2.1 |
13667 |
|
|
https://github.com/aliyunav/Finger |
A tool for recognizing function symbol |
aliyunav |
gpl-3.0 |
319 |
|
|
https://github.com/aquasecurity/tracee |
Linux Runtime Security and Forensics using eBPF |
aquasecurity |
apache-2.0 |
2258 |
|
|
https://github.com/jubairsaidi/urlinsane |
Multilingual domain typo permutation engine used to perform or detect typosquatting, brandjacking, URL hijacking, fraud, phishing attacks, corporate espionage and threat intelligence. |
jubairsaidi |
mit |
4 |
|
|
https://github.com/meixler/Page-Integrity |
Page Integrity is a web browser extension for Firefox, for verifying the integrity of web pages. |
meixler |
|
5 |
|
|
https://github.com/SK-CERT/Taranis-NG |
Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains a user portal for simple self asset management. Taranis NG was developed by SK-CERT with a help from wide CSIRT community. |
SK-CERT |
eupl-1.2 |
45 |
|
|
https://github.com/ail-project/ail-splash-manager |
|
ail-project |
gpl-3.0 |
4 |
|
|
https://github.com/quarkslab/mattermost-plugin-e2ee |
End-to-end encryption plugin for Mattermost |
quarkslab |
apache-2.0 |
48 |
|
|
https://github.com/OALabs/hashdb-ida |
HashDB API hash lookup plugin for IDA Pro |
OALabs |
bsd-3-clause |
223 |
|
|
https://github.com/OALabs/hashdb |
Assortment of hashing algorithms used in malware |
OALabs |
apache-2.0 |
197 |
|
|
https://github.com/mandiant/flare-ida |
IDA Pro utilities from FLARE team |
mandiant |
apache-2.0 |
1801 |
|
|
https://github.com/zqtay/Telegram-Message-Analyzer |
Process the exported Telegram chat history .html and generate a report message count by date, and most used words. |
zqtay |
|
22 |
|
|
https://github.com/mncoppola/suterusu |
An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM |
mncoppola |
mit |
580 |
|
|
https://github.com/rly0nheart/occli |
A command line tool that queries the Open Corporates Database and returns data on corporations under the copyleft Open Database License. |
rly0nheart |
gpl-3.0 |
30 |
|
|
https://github.com/bats3c/DarkLoadLibrary |
LoadLibrary for offensive operations |
bats3c |
|
728 |
|
|
https://github.com/okbob/pspg |
Unix pager (with very rich functionality) designed for work with tables. Designed for PostgreSQL, but MySQL is supported too. Works well with pgcli too. Can be used as CSV or TSV viewer too. It supports searching, selecting rows, columns, or block and export selected area to clipboard. |
okbob |
bsd-2-clause |
1910 |
|
|
https://github.com/herosi/CTO |
Call Tree Overviewer |
herosi |
mit |
255 |
|
|
https://github.com/Invoke-IR/PowerForensics |
PowerForensics provides an all in one platform for live disk forensic analysis |
Invoke-IR |
mit |
1242 |
|
|
https://github.com/xwmx/nb |
CLI and local web plain text note‑taking, bookmarking, and archiving with linking, tagging, filtering, search, Git versioning & syncing, Pandoc conversion, + more, in a single portable script. |
xwmx |
agpl-3.0 |
4872 |
|
|
https://github.com/Jeija/librenard |
Reverse Engineered Sigfox Stack - Library |
Jeija |
|
20 |
|
|
https://github.com/dariusk/corpora |
A collection of small corpuses of interesting data for the creation of bots and similar stuff. |
dariusk |
|
4536 |
|
|
https://github.com/aparrish/pycorpora |
A simple Python interface for Darius Kazemi’s Corpora Project. |
aparrish |
mit |
113 |
|
|
https://github.com/zinggAI/zingg |
Scalable identity resolution, entity resolution, data mastering and deduplication using ML |
zinggAI |
agpl-3.0 |
632 |
|
|
https://github.com/projectdiscovery/interactsh |
An OOB interaction gathering server and client library |
projectdiscovery |
mit |
1978 |
|
|
https://github.com/nil0x42/phpsploit |
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor |
nil0x42 |
gpl-3.0 |
1808 |
|
|
https://github.com/wagga40/Zircolite |
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs |
wagga40 |
|
420 |
|
|
https://github.com/jmpsec/osctrl |
Fast and efficient osquery management |
jmpsec |
mit |
251 |
|
|
https://github.com/zentralopensource/zentral |
Zentral provides a unified view for endpoint monitoring. Comprehensive features include Santa binary authorization and patch management orchestration on macOS, as well as detailed Qsquery fleet management - all paired with event based stream processing and direct support for a range of data store backends (Elastic, OpenSearch, SumoLogic, Splunk, e.g.). |
zentralopensource |
other |
650 |
|
|
https://github.com/ICIJ/datashare |
Better analyze information, in all its forms |
ICIJ |
agpl-3.0 |
438 |
|
|
https://github.com/clockfort/GitHub-Backup |
Backup all the repositories of a github user or organization automatically. |
clockfort |
cc0-1.0 |
267 |
|
|
https://github.com/HugoLB0/browser-creds |
recover Firefox and more browsers logins |
HugoLB0 |
|
42 |
|
|
https://github.com/my5G/my5G-non3GPP-access |
Implements a security connection using untrusted non3GPP |
my5G |
apache-2.0 |
30 |
|
|
https://github.com/qeeqbox/honeypots |
25 different honeypots in a single pypi package! (dns, ftp, httpproxy, http, https, imap, mysql, pop3, postgres, redis, smb, smtp, socks5, ssh, telnet, vnc, mssql, elastic, ldap, ntp, memcache, snmp, oracle, sip and irc) |
qeeqbox |
agpl-3.0 |
234 |
|
|
https://github.com/SocialConnect/auth |
:atom: Social (OAuth1\OAuth2\OpenID\OpenIDConnect) sign with PHP :shipit: |
SocialConnect |
mit |
511 |
|
|
https://github.com/mcrumm/mystex_pizza_on_broadway |
An example of batching for operations with Elixir and Broadway |
mcrumm |
apache-2.0 |
20 |
|
|
https://github.com/nltk/nltk |
NLTK Source |
nltk |
apache-2.0 |
11185 |
|
|
https://github.com/aaronland/go-flickr-api |
Go package for working with the Flickr API |
aaronland |
bsd-3-clause |
1 |
|
|
https://github.com/jbapple/libfilter |
High-speed Bloom filters and taffy filters for C, C++, and Java |
jbapple |
apache-2.0 |
24 |
|
|
https://github.com/ossf/oss-vulnerability-guide |
A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disclosure notifications. |
ossf |
cc-by-4.0 |
72 |
|
|
https://github.com/gallypette/ia-torrent |
Retrive torrent files from an Internet Archive search |
gallypette |
other |
2 |
|
|
https://github.com/stuhli/awesome-event-ids |
Collection of Event ID ressources useful for Digital Forensics and Incident Response |
stuhli |
mit |
384 |
|
|
https://github.com/shelld3v/PwnVPN |
The best exploitation tool for SSL VPN 0day vulnerabilities. |
shelld3v |
|
71 |
|
|
https://github.com/cisagov/crossfeed |
External monitoring for organization assets |
cisagov |
cc0-1.0 |
234 |
|
|
https://github.com/advanced-threat-research/DarkSide-Config-Extract |
|
advanced-threat-research |
|
30 |
|
|
https://github.com/wummel/patool |
patool is a portable command line archive file manager |
wummel |
gpl-3.0 |
312 |
|
|
https://github.com/redpanda-data/redpanda |
Redpanda is a streaming data platform for developers. Kafka API compatible. 10x faster. No ZooKeeper. No JVM! |
redpanda-data |
|
5150 |
|
|
https://github.com/apjanke/ronn-ng |
Ronn-NG: An updated fork of ronn. Build man pages from Markdown. |
apjanke |
mit |
48 |
|
|
https://github.com/rtomayko/ronn |
the opposite of roff |
rtomayko |
other |
1306 |
|
|
https://github.com/aubio/aubio |
a library for audio and music analysis |
aubio |
gpl-3.0 |
2819 |
|
|
https://github.com/slsa-framework/slsa |
Supply-chain Levels for Software Artifacts |
slsa-framework |
other |
918 |
|
|
https://github.com/alex-shpak/hugo-book |
Hugo documentation theme as simple as plain book |
alex-shpak |
mit |
2062 |
|
|
https://github.com/CESNET/ipfixprobe |
|
CESNET |
bsd-3-clause |
15 |
|
|
https://github.com/CESNET/Nemea |
System for network traffic analysis and anomaly detection. |
CESNET |
other |
70 |
|
|
https://github.com/fofapro/fapro |
Fake Protocol Server |
fofapro |
|
1324 |
|
|
https://github.com/blacklanternsecurity/MANSPIDER |
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported! |
blacklanternsecurity |
|
591 |
|
|
https://github.com/graphlab-fr/cosma |
Cosma is a document graph visualization tool. It modelizes interlinked Markdown files and renders them as an interactive network in a web interface. |
graphlab-fr |
gpl-3.0 |
40 |
|
|
https://github.com/vesoft-inc/nebula |
A distributed, fast open-source graph database featuring horizontal scalability and high availability |
vesoft-inc |
apache-2.0 |
8170 |
|
|
https://github.com/VIDA-NYU/ache |
ACHE is a web crawler for domain-specific search. |
VIDA-NYU |
apache-2.0 |
374 |
|
|
https://github.com/ascoderu/xtarfile |
Wrapper around tarfile to add support for more compression formats |
ascoderu |
apache-2.0 |
6 |
|
|
https://github.com/tylertreat/BoomFilters |
Probabilistic data structures for processing continuous, unbounded streams. |
tylertreat |
apache-2.0 |
1487 |
|
|
https://github.com/DCSO/bloom |
A highly efficient Bloom filter library and command line tool written in Go. |
DCSO |
other |
56 |
|
|
https://github.com/DCSO/tiffy |
TIE Feed Generator for MISP (replaces tie2misp) |
DCSO |
bsd-3-clause |
5 |
|
|
https://github.com/ashemery/exploitation-course |
Offensive Software Exploitation Course |
ashemery |
|
762 |
|
|
https://github.com/aaugustin/websockets |
Library for building WebSocket servers and clients in Python |
aaugustin |
bsd-3-clause |
4234 |
|
|
https://github.com/lockedbyte/CVE-2021-40444 |
CVE-2021-40444 PoC |
lockedbyte |
|
1444 |
|
|
https://github.com/splunk/attack_data |
A repository of curated datasets from various attacks |
splunk |
apache-2.0 |
336 |
|
|
https://github.com/caiobran/mstables |
MorningStar.com scraper that consolidates tens of thousands of financial records into a SQLite relational database. Class ‘dataframes’ easily converts the SQLite data into pandas DataFrames (see Jupyter notebook for examples) |
caiobran |
mit |
137 |
|
|
https://github.com/raw-packet/raw-packet |
Raw-packet Project |
raw-packet |
mit |
197 |
|
|
https://github.com/arthurdejong/python-stdnum |
A Python library to provide functions to handle, parse and validate standard numbers. |
arthurdejong |
lgpl-2.1 |
385 |
|
|
https://github.com/PassiveDNS/PassiveDNS |
Web Application for domain name monitoring / alerting |
PassiveDNS |
agpl-3.0 |
54 |
|
|
https://github.com/quotient-im/Quaternion |
A Qt5-based IM client for Matrix |
quotient-im |
gpl-3.0 |
550 |
|
|
https://github.com/otiai10/ocrserver |
A simple OCR API server, seriously easy to be deployed by Docker, on Heroku as well |
otiai10 |
mit |
531 |
|
|
https://github.com/bitfieldaudio/OTTO |
Sampler, Sequencer, Multi-engine synth and effects - in a box! [WIP] |
bitfieldaudio |
other |
2510 |
|
|
https://github.com/austinsonger/Incident-Playbook |
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly] |
austinsonger |
mit |
963 |
|
|
https://github.com/post-cyberlabs/PyMISP_Telecom |
Script examples to interact with Telecom Data / Objects via PyMISP |
post-cyberlabs |
agpl-3.0 |
6 |
|
|
https://github.com/lorien/awesome-pastebin |
List of pastebin sites. |
lorien |
|
47 |
|
|
https://github.com/eljefe7000/RestApiToText |
RestApiToText Notepad++ plugin that uses input from an editor tab to make a REST call and display the results in a new tab. |
eljefe7000 |
gpl-3.0 |
13 |
|
|
https://github.com/cristianzsh/freki |
:wolf: Malware analysis platform |
cristianzsh |
agpl-3.0 |
357 |
|
|
https://github.com/coolacid/docker-misp |
A (nearly) production ready Dockered MISP |
coolacid |
gpl-3.0 |
181 |
|
|
https://github.com/geemion/Khepri |
Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++. |
geemion |
apache-2.0 |
1375 |
|
|
https://github.com/microsoft/APSI |
APSI is a C++ library for Asymmetric (unlabeled or labeled) Private Set Intersection. |
microsoft |
mit |
107 |
|
|
https://github.com/causaltext/causal-text-papers |
Curated research at the intersection of causal inference and natural language processing. |
causaltext |
|
573 |
|
|
https://github.com/jonasmalacofilho/git-cache-http-server |
A caching Git HTTP server |
jonasmalacofilho |
other |
68 |
|
|
https://github.com/dwmetz/CSIRT-Collect |
PowerShell script to collect memory and (triage) disk forensics |
dwmetz |
mit |
188 |
|
|
https://github.com/stephenbradshaw/hlextend |
Pure Python hash length extension module |
stephenbradshaw |
other |
75 |
|
|
https://github.com/ail-project/ail-feeder-leak |
AIL LeakFeeder: A Module for AIL Framework that automate the process to feed leaked files automatically |
ail-project |
agpl-3.0 |
8 |
|
|
https://github.com/tabler/tabler-icons |
A set of over 2800 free MIT-licensed high-quality SVG icons for you to use in your web projects. |
tabler |
mit |
13024 |
|
|
https://github.com/doegox/awesome-rfid-talks |
|
doegox |
|
58 |
|
|
https://github.com/WithSecureLabs/chainsaw |
Rapidly Search and Hunt through Windows Forensic Artefacts |
WithSecureLabs |
gpl-3.0 |
1717 |
|
|
https://github.com/vertexproject/synapse |
Synapse Central Intelligence System |
vertexproject |
apache-2.0 |
247 |
|
|
https://github.com/centrifugal/centrifugo |
Scalable real-time messaging server in a language-agnostic way. Set up once and forever. |
centrifugal |
apache-2.0 |
6505 |
|
|
https://github.com/searx/searx |
Privacy-respecting metasearch engine |
searx |
agpl-3.0 |
12141 |
|
|
https://github.com/google/docsy |
A set of Hugo doc templates for launching open source content. |
google |
apache-2.0 |
1942 |
|
|
https://github.com/airbus-seclab/c-compiler-security |
Security-related flags and options for C compilers |
airbus-seclab |
cc-by-sa-4.0 |
128 |
|
|
https://github.com/EdwardRaff/pyLZJD |
Python implementation of the LZJD algorithm |
EdwardRaff |
apache-2.0 |
18 |
|
|
https://github.com/a4lg/ffuzzypp |
C++ implementation of ssdeep-compatible fast fuzzy hashing |
a4lg |
other |
35 |
|
|
https://github.com/a4lg/libffuzzy |
Fast ssdeep comparison library |
a4lg |
other |
11 |
|
|
https://github.com/libyal/libesedb |
Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format. |
libyal |
lgpl-3.0 |
305 |
|
|
https://github.com/mpetri/FM-Index |
FM-Index full-text index implementation using RRR Wavelet trees (libcds) and fast suffix sorting (libdivsufsort) including experimental results. |
mpetri |
gpl-3.0 |
87 |
|
|
https://github.com/a4lg/fast-ssdeep-clus |
Parallel ssdeep clustering kit |
a4lg |
|
16 |
|
|
https://github.com/mdecrevoisier/Microsoft-eventlog-mindmap |
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,… |
mdecrevoisier |
bsd-2-clause |
778 |
|
|
https://github.com/pykeen/pykeen |
🤖 A Python library for learning and evaluating knowledge graph embeddings |
pykeen |
mit |
1015 |
|
|
https://github.com/AndrewRathbun/DFIRMindMaps |
A repository of DFIR-related Mind Maps geared towards the visual learners! |
AndrewRathbun |
mit |
390 |
|
|
https://github.com/opsdisk/scantron |
A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows. |
opsdisk |
apache-2.0 |
121 |
|
|
https://github.com/evilsocket/medusa |
A fast and secure multi protocol honeypot. |
evilsocket |
other |
268 |
|
|
https://github.com/EquiFox/KsDumper |
Dumping processes using the power of kernel space ! |
EquiFox |
mit |
771 |
|
|
https://github.com/center-for-threat-informed-defense/attack_to_veris |
The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation. |
center-for-threat-informed-defense |
apache-2.0 |
54 |
|
|
https://github.com/falconry/falcon |
The no-magic web data plane API and microservices framework for Python developers, with a focus on reliability, correctness, and performance at scale. |
falconry |
apache-2.0 |
8930 |
|
|
https://github.com/daniestevez/gr-satellites |
GNU Radio decoder for Amateur satellites |
daniestevez |
gpl-3.0 |
602 |
|
|
https://github.com/django-oscar/django-oscar |
Domain-driven e-commerce for Django |
django-oscar |
bsd-3-clause |
5506 |
|
|
https://github.com/wdas/reposado |
Host Apple Software Updates on the hardware and OS of your choice. |
wdas |
other |
840 |
|
|
https://github.com/rizinorg/rz-ghidra |
Deep ghidra decompiler and sleigh disassembler integration for rizin |
rizinorg |
lgpl-3.0 |
667 |
|
|
https://github.com/rizinorg/rizin |
UNIX-like reverse engineering framework and command-line toolset. |
rizinorg |
lgpl-3.0 |
1635 |
|
|
https://github.com/radareorg/iaito |
Official QT frontend of radare2 |
radareorg |
gpl-3.0 |
448 |
|
|
https://github.com/lzfse/lzfse |
LZFSE compression library and command line tool |
lzfse |
bsd-3-clause |
1690 |
|
|
https://github.com/marceloprates/prettymaps |
A small set of Python functions to draw pretty maps from OpenStreetMap data. Based on osmnx, matplotlib and shapely libraries. |
marceloprates |
agpl-3.0 |
8841 |
|
|
https://github.com/encryptogroup/MobilePSI |
Implementation of precomputed PSI for smartphone |
encryptogroup |
|
10 |
|
|
https://github.com/eric-vader/PyPSI |
A Python library for private set intersection |
eric-vader |
apache-2.0 |
9 |
|
|
https://github.com/alyssaxuu/screenity |
The most powerful screen recorder & annotation tool for Chrome 🎥 |
alyssaxuu |
mit |
7714 |
|
|
https://github.com/fastfire/deepdarkCTI |
Collection of Cyber Threat Intelligence sources from the deep and dark web |
fastfire |
gpl-3.0 |
1152 |
|
|
https://github.com/IlanKalendarov/PyHook |
PyHook is an offensive API hooking tool written in python designed to catch various credentials within the API call. |
IlanKalendarov |
bsd-3-clause |
156 |
|
|
https://github.com/srossross/rpmfile |
Read rmp archive files |
srossross |
mit |
20 |
|
|
https://github.com/maana-io/ServiceReadinessLevels |
Service Readiness Levels (SRL) are a type of measurement system used to assess the maturity of software services deployed in an orchestration and management platform. SRL are loosely based on the NASA Technology Readiness Levels. |
maana-io |
mit |
2 |
|
|
https://github.com/organicmaps/organicmaps |
🍃 Organic Maps is a free Android & iOS offline maps app for travelers, tourists, hikers, and cyclists. It uses crowd-sourced OpenStreetMap data and is developed with love by MapsWithMe (MapsMe) founders and our community. No ads, no tracking, no data collection, no crapware. Your donations and positive reviews motivate and inspire our small team! |
organicmaps |
apache-2.0 |
4032 |
|
|
https://github.com/jonashaag/bjoern |
A screamingly fast Python 2/3 WSGI server written in C. |
jonashaag |
other |
2851 |
|
|
https://github.com/StrangerealIntel/SkyNeXus |
List SID of rules used by publics sandbox for hunting |
StrangerealIntel |
|
2 |
|
|
https://github.com/s0md3v/Hash-Buster |
Crack hashes in seconds. |
s0md3v |
mit |
1393 |
|
|
https://github.com/byronknoll/cmix |
cmix is a lossless data compression program aimed at optimizing compression ratio at the cost of high CPU/memory usage. |
byronknoll |
gpl-3.0 |
472 |
|
|
https://github.com/sptonkin/fuzzyhashlib |
Python hashlib-like wrapper for several fuzzy hash algorithms. |
sptonkin |
gpl-3.0 |
12 |
|
|
https://github.com/TheClimateCorporation/python-dpkg |
Python library for reading Debian package files and comparing version strings |
TheClimateCorporation |
other |
26 |
|
|
https://github.com/barneygale/pathlab |
Extends Pathlib to archives, images, remote filesystems, etc |
barneygale |
gpl-3.0 |
25 |
|
|
https://github.com/cogsec-collaborative/AMITT |
AMITT (Adversarial Misinformation and Influence Tactics and Techniques) framework for describing disinformation incidents. Includes TTPs and countermeasures. |
cogsec-collaborative |
cc-by-sa-4.0 |
145 |
|
|
https://github.com/linvon/cuckoo-filter |
Cuckoo Filter go implement, better than Bloom Filter, configurable and space optimized 布谷鸟过滤器的Go实现,优于布隆过滤器,可以定制化过滤器参数,并进行了空间优化 |
linvon |
mit |
232 |
|
|
https://github.com/hpthreatresearch/subcrawl |
SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data with optional output modules, such as MISP. |
hpthreatresearch |
mit |
117 |
|
|
https://github.com/Archive-42/My-Notes-Compilation |
This is just a running list of notes without any unifying theme or structure, however it will generally be somewhere in the realm of web development. |
Archive-42 |
|
6 |
|
|
https://github.com/kkamagui/bitleaker |
This tool can decrypt a BitLocker-locked partition with the TPM vulnerability |
kkamagui |
other |
135 |
|
|
https://github.com/sigstore/cosign |
Container Signing |
sigstore |
apache-2.0 |
2681 |
|
|
https://github.com/in-toto/docs |
Specification and other related documents. |
in-toto |
mit |
25 |
|
|
https://github.com/sigstore/rekor |
Software Supply Chain Transparency Log |
sigstore |
apache-2.0 |
610 |
|
|
https://github.com/IceFireDB/IceFireDB |
IceFireDB is a database built for web3 and web2. It strives to fill the gap between web2 and web3 with a friendly database experience, making web3 application data storage more convenient, and making it easier for web2 applications to achieve decentralization and data immutability. |
IceFireDB |
mit |
939 |
|
|
https://github.com/OpenMined/PySyft |
Data science on data without acquiring a copy |
OpenMined |
apache-2.0 |
8399 |
|
|
https://github.com/jazzband/django-payments |
Universal payment handling for Django. |
jazzband |
other |
798 |
|
|
https://github.com/OpenMined/PSI |
Private Set Intersection Cardinality protocol based on ECDH and Bloom Filters |
OpenMined |
apache-2.0 |
80 |
|
|
https://github.com/farsightsec/fsmtrie |
fast string matching trie library |
farsightsec |
apache-2.0 |
8 |
|
|
https://github.com/AsuharietYgvar/AppleNeuralHash2ONNX |
Convert Apple NeuralHash model for CSAM Detection to ONNX. |
AsuharietYgvar |
apache-2.0 |
1480 |
|
|
https://github.com/minio/minfs |
A network filesystem client to connect to MinIO and Amazon S3 compatible cloud storage servers |
minio |
agpl-3.0 |
418 |
|
|
https://github.com/jonaslejon/malicious-pdf |
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh |
jonaslejon |
bsd-2-clause |
1867 |
|
|
https://github.com/guelfoweb/peframe |
PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents. |
guelfoweb |
|
542 |
|
|
https://github.com/cloudflare/goflow |
The high-scalability sFlow/NetFlow/IPFIX collector used internally at Cloudflare. |
cloudflare |
bsd-3-clause |
651 |
|
|
https://github.com/satta/fever-threatbus |
FEVER<->Threat Bus connector |
satta |
|
5 |
|
|
https://github.com/hack4impact/flask-base |
A simple Flask boilerplate app with SQLAlchemy, Redis, User Authentication, and more. |
hack4impact |
mit |
2816 |
|
|
https://github.com/Yara-Rules/rules |
Repository of yara rules |
Yara-Rules |
gpl-2.0 |
3315 |
|
|
https://github.com/SourceCode-AI/aura |
Python source code auditing and static analysis on a large scale |
SourceCode-AI |
gpl-3.0 |
103 |
|
|
https://github.com/openwall/yescrypt |
Password-based key derivation function and password hashing scheme building upon scrypt |
openwall |
|
60 |
|
|
https://github.com/jaraco/keyring |
|
jaraco |
mit |
928 |
|
|
https://github.com/riatelab/linemap |
:aquarius: Create maps made of lines |
riatelab |
|
108 |
|
|
https://github.com/xairy/vmware-exploitation |
A collection of links related to VMware escape exploits |
xairy |
cc-by-4.0 |
1178 |
|
|
https://github.com/cudeso/CSIRT-Jump-Bag |
CSIRT Jump Bag |
cudeso |
|
25 |
|
|
https://github.com/markmap/markmap |
Visualize your Markdown as mindmaps with Markmap. |
markmap |
mit |
4145 |
|
|
https://github.com/med0x2e/SigFlip |
SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature. |
med0x2e |
mit |
728 |
|
|
https://github.com/ml874/Data-Science-Cheatsheet |
|
ml874 |
|
2217 |
|
|
https://github.com/G-Research/siembol |
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework. |
G-Research |
apache-2.0 |
159 |
|
|
https://github.com/c6fc/warcannon |
High speed/Low cost CommonCrawl RegExp in Node.js |
c6fc |
other |
205 |
|
|
https://github.com/GuidoBartoli/sherloq |
An open-source digital image forensic toolset |
GuidoBartoli |
gpl-3.0 |
2072 |
|
|
https://github.com/rprinz08/hBPF |
hBPF = eBPF in hardware |
rprinz08 |
bsd-3-clause |
326 |
|
|
https://github.com/pucarasec/zuthaka |
Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and other post-exploitation tools. |
pucarasec |
other |
159 |
|
|
https://github.com/ail-project/ail-feeder-activity-pub |
External ActivityPub feeder for AIL-framework. |
ail-project |
|
4 |
|
|
https://github.com/baidu/BaikalDB |
BaikalDB, A Distributed HTAP Database. |
baidu |
apache-2.0 |
982 |
|
|
https://github.com/quarkslab/qsynthesis |
Greybox Synthesizer geared for deobfuscation of assembly instructions. |
quarkslab |
agpl-3.0 |
89 |
|
|
https://github.com/build-trust/ockam |
Orchestrate end-to-end encryption, mutual authentication, key management, credential management & authorization policy enforcement — at scale. |
build-trust |
apache-2.0 |
2622 |
|
|
https://github.com/ukncsc/lme |
Logging Made Easy |
ukncsc |
apache-2.0 |
660 |
|
|
https://github.com/mozilla/extension-workshop |
Firefox Extension Workshop |
mozilla |
|
70 |
|
|
https://github.com/cfalta/MicrosoftWontFixList |
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-)) |
cfalta |
bsd-3-clause |
897 |
|
|
https://github.com/amirgamil/apollo |
A Unix-style personal search engine and web crawler for your digital footprint. |
amirgamil |
mit |
1296 |
|
|
https://github.com/humhub/humhub |
HumHub is an Open Source Enterprise Social Network. Easy to install, intuitive to use and extendable with countless freely available modules. |
humhub |
other |
5922 |
|
|
https://github.com/lektor/lektor |
The lektor static file content management system |
lektor |
bsd-3-clause |
3623 |
|
|
https://github.com/securisec/chepy |
Chepy is a python lib/cli equivalent of the awesome CyberChef tool. |
securisec |
gpl-3.0 |
466 |
|
|
https://github.com/AresValley/Artemis |
Radio Signals Recognition Manual |
AresValley |
gpl-3.0 |
165 |
|
|
https://github.com/sigstore/sigstore-git-verifier |
A Github Action to verify that new commits are present in the sigstore transparency log. |
sigstore |
apache-2.0 |
7 |
|
|
https://github.com/poettering/fsprg |
Forward Secure Pseudo Random Generator |
poettering |
|
7 |
|
|
https://github.com/seperman/deepdiff |
DeepDiff: Deep Difference and search of any Python object/data. DeepHash: Hash of any object based on its contents. Delta: Use deltas to reconstruct objects by adding deltas together. |
seperman |
other |
1508 |
|
|
https://github.com/eclecticiq/stix-icons |
stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats according to the STIX language for intelligence exchange, defined by OASIS Cyber Threat Intelligence (CTI) TC |
eclecticiq |
other |
17 |
|
|
https://github.com/strozfriedberg/lightgrep |
Command-line utility for multipattern search using liblightgrep |
strozfriedberg |
gpl-3.0 |
36 |
|
|
https://github.com/aaranxu/adidoks |
AdiDoks is a mordern documentation theme, which is a port of the Hugo theme Doks for Zola. |
aaranxu |
mit |
123 |
|
|
https://github.com/mvt-project/mvt |
MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise. |
mvt-project |
other |
8168 |
|
|
https://github.com/camelot-dev/camelot |
A Python library to extract tabular data from PDFs |
camelot-dev |
mit |
1716 |
|
|
https://github.com/AmnestyTech/investigations |
Indicators from Amnesty International’s investigations |
AmnestyTech |
|
1400 |
|
|
https://github.com/RosettaCommons/RoseTTAFold |
This package contains deep learning models and related scripts for RoseTTAFold |
RosettaCommons |
mit |
1606 |
|
|
https://github.com/g-deoliveira/TextSummarization |
Extractive Text Summarization Using LDA For Topic Modeling |
g-deoliveira |
|
33 |
|
|
https://github.com/tenacityteam/tenacity-legacy |
Old repository. Tenacity is an easy-to-use, privacy-friendly, FLOSS, cross-platform multi-track audio editor/recorder for Windows, macOS, Linux and other operating systems. |
tenacityteam |
other |
7217 |
|
|
https://github.com/mozilla/bleach |
Bleach is an allowed-list-based HTML sanitizing library that escapes or strips markup and attributes |
mozilla |
other |
2407 |
|
|
https://github.com/betrusted-io/gateware |
IP submodules, formatted for easier CI integration |
betrusted-io |
other |
21 |
|
|
https://github.com/iot-onboarding/mud-visualizer |
mud-visualizer is a tool to visualize MUD files |
iot-onboarding |
bsd-3-clause |
11 |
|
|
https://github.com/t4d/PhishingKit-Yara-Rules |
Repository of Yara rules dedicated to Phishing Kits Zip files |
t4d |
gpl-3.0 |
91 |
|
|
https://github.com/D4-project/d4-rustclient |
Very basic rust client: listen for a message on stdin, write the message on stdout. |
D4-project |
bsd-2-clause |
2 |
|
|
https://github.com/rpetrich/deciduous |
App that makes building attack decision trees from the Security Chaos Engineering report easy |
rpetrich |
gpl-2.0 |
100 |
|
|
https://github.com/litl/backoff |
Python library providing function decorators for configurable backoff and retry |
litl |
mit |
1966 |
|
|
https://github.com/bndw/wifi-card |
📶 Print a QR code for connecting to your WiFi (wificard.io) |
bndw |
mit |
6095 |
|
|
https://github.com/tiimgreen/github-cheat-sheet |
A list of cool features of Git and GitHub. |
tiimgreen |
mit |
37616 |
|
|
https://github.com/sophoslabs/IoCs |
Sophos-originated indicators-of-compromise from published reports |
sophoslabs |
|
359 |
|
|
https://github.com/martinus/robin-hood-hashing |
Fast & memory efficient hashtable based on robin hood hashing for C++11/14/17/20 |
martinus |
mit |
1240 |
|
|
https://github.com/splunk/security_content |
Splunk Security Content |
splunk |
apache-2.0 |
738 |
|
|
https://github.com/kellyjonbrazil/jello |
CLI tool to filter JSON and JSON Lines data with Python syntax. (Similar to jq) |
kellyjonbrazil |
mit |
327 |
|
|
https://github.com/virtualabs/piotr |
Piotr - IoT firmware emulation instrumentation for training and research |
virtualabs |
mit |
52 |
|
|
https://github.com/telekom-security/malware_analysis |
This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts. |
telekom-security |
|
72 |
|
|
https://github.com/SpiderLabs/REvil_config |
Configuration file for REvil / Kaseya July campaign |
SpiderLabs |
|
4 |
|
|
https://github.com/cisco/mindmeld |
An Open Source Conversational AI Platform for Deep-Domain Voice Interfaces and Chatbots. |
cisco |
apache-2.0 |
599 |
|
|
https://github.com/CachetHQ/Cachet |
📛 An open source status page system for everyone. |
CachetHQ |
bsd-3-clause |
12934 |
|
|
https://github.com/google/trax |
Trax — Deep Learning with Clear Code and Speed |
google |
apache-2.0 |
7156 |
|
|
https://github.com/MISP/misp-expansion |
MISP expansion - a browser extension (Firefox and Chrome) to lookup on MISP |
MISP |
bsd-2-clause |
5 |
|
|
https://github.com/ail-project/ail-feeder-discord |
Discord feeder for AIL |
ail-project |
agpl-3.0 |
6 |
|
|
https://github.com/imuledx/OSINT_sources |
|
imuledx |
|
112 |
|
|
https://github.com/m8sec/subscraper |
Perform subdomain enumeration through various techniques and retrieve detailed output to aid in further testing. |
m8sec |
gpl-3.0 |
583 |
|
|
https://github.com/piccolomo/plotext |
plotting on terminal |
piccolomo |
mit |
1161 |
|
|
https://github.com/benedekrozemberczki/karateclub |
Karate Club: An API Oriented Open-source Python Framework for Unsupervised Learning on Graphs (CIKM 2020) |
benedekrozemberczki |
gpl-3.0 |
1760 |
|
|
https://github.com/z1pti3/jimi |
Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch jimi has developed into a fully fledged IT automation platform which effortlessly integrates with your existing tools unlocking the potential for autonomous IT and Security operations. |
z1pti3 |
apache-2.0 |
124 |
|
|
https://github.com/CriticalPathSecurity/Zeek-Intelligence-Feeds |
Zeek-Formatted Threat Intelligence Feeds |
CriticalPathSecurity |
mit |
176 |
|
|
https://github.com/center-for-threat-informed-defense/security-stack-mappings |
This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about. |
center-for-threat-informed-defense |
apache-2.0 |
239 |
|
|
https://github.com/ossf/scorecard |
Security Scorecards - Security health metrics for Open Source |
ossf |
apache-2.0 |
3011 |
|
|
https://github.com/hm-seclab/YAFRA |
YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents. |
hm-seclab |
apache-2.0 |
24 |
|
|
https://github.com/hamano/apache-mod-markdown |
Markdown filter module for Apache HTTPD Server |
hamano |
apache-2.0 |
81 |
|
|
https://github.com/D4-project/ct-scrutinize |
ct-scrutinize is a set of tools extract information from Certificate Transparency logs |
D4-project |
agpl-3.0 |
3 |
|
|
https://github.com/aniqfakhrul/Sharperner |
Simple executable generator with encrypted shellcode. |
aniqfakhrul |
|
269 |
|
|
https://github.com/ticarpi/jwt_tool |
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens |
ticarpi |
gpl-3.0 |
3512 |
|
|
https://github.com/rhash/RHash |
Great utility for computing hash sums |
rhash |
0bsd |
445 |
|
|
https://github.com/RCayre/mirage |
Mirage is a powerful and modular framework dedicated to the security analysis of wireless communications. |
RCayre |
mit |
160 |
|
|
https://github.com/a-luna/fastapi-redis-cache |
A simple and robust caching solution for FastAPI that interprets request header values and creates proper response header values (powered by Redis) |
a-luna |
mit |
85 |
|
|
https://github.com/facebookresearch/faiss |
A library for efficient similarity search and clustering of dense vectors. |
facebookresearch |
mit |
18317 |
|
|
https://github.com/facebookresearch/fastText |
Library for fast text representation and classification. |
facebookresearch |
mit |
24007 |
|
|
https://github.com/muesli/markscribe |
Your personal markdown scribe with template-engine and Git(Hub) & RSS powers 📜 |
muesli |
mit |
249 |
|
|
https://github.com/rayohauno/hierpart |
A Python package that implements the HierarchicalPartition data structure. |
rayohauno |
gpl-2.0 |
5 |
|
|
https://github.com/google/osv.dev |
Open source vulnerability DB and triage service. |
google |
apache-2.0 |
653 |
|
|
https://github.com/ehn-dcc-development/eu-dcc-hcert-spec |
Electronic Health Certificates Specification |
ehn-dcc-development |
|
363 |
|
|
https://github.com/eaglx/VMPROTECT |
Obfuscation method using virtual machine. |
eaglx |
gpl-3.0 |
551 |
|
|
https://github.com/matrix-org/pinecone |
Peer-to-peer overlay routing for the Matrix ecosystem |
matrix-org |
apache-2.0 |
303 |
|
|
https://github.com/matteodellamico/flexible-clustering |
Clustering for arbitrary data and dissimilarity function |
matteodellamico |
bsd-3-clause |
57 |
|
|
https://github.com/ruslashev/elfcat |
ELF visualizer. Generates HTML files from ELF binaries. |
ruslashev |
zlib |
870 |
|
|
https://github.com/facebookresearch/AugLy |
A data augmentations library for audio, image, text, and video. |
facebookresearch |
other |
4595 |
|
|
https://github.com/EmergingThreats/threatresearch |
I wanted to call this repo “Nuclear Football Codes”. I was outvoted.. |
EmergingThreats |
|
64 |
|
|
https://github.com/mapbox/storytelling |
Storytelling with maps template |
mapbox |
bsd-3-clause |
424 |
|
|
https://github.com/barrust/pyprobables |
Probabilistic data structures in python http://pyprobables.readthedocs.io/en/latest/index.html |
barrust |
mit |
84 |
|
|
https://github.com/hashlookup/PyHashlookup |
Python CLI and module for CIRCL hash lookup |
hashlookup |
gpl-3.0 |
8 |
|
|
https://github.com/infeeeee/kimai2-cmd |
Command line client for Kimai2, the open source, self-hosted time tracker |
infeeeee |
mit |
19 |
|
|
https://github.com/kevinpapst/kimai2 |
Kimai v2 is a web-based multiuser time-tracking application. Free for everyone: freelancers, agencies, companies, organizations - all can track their times, generate invoices and more. SaaS version available at https://www.kimai.cloud |
kevinpapst |
mit |
1901 |
|
|
https://github.com/sh-dv/hat.sh |
Encrypt and Decrypt files securely in your browser. |
sh-dv |
mit |
1560 |
|
|
https://github.com/CpanelInc/tech-CSI |
cPanel Security Scan |
CpanelInc |
other |
29 |
|
|
https://github.com/3c7/bazaar |
Python based CLI for MalwareBazaar |
3c7 |
mit |
17 |
|
|
https://github.com/e-m-b-a/emba |
EMBA - The firmware security analyzer |
e-m-b-a |
gpl-3.0 |
1463 |
|
|
https://github.com/otgrkiss/apache-mellon-saml-misp-proxy |
|
otgrkiss |
|
2 |
|
|
https://github.com/vimoutliner/vimoutliner |
Work fast, think well. |
vimoutliner |
other |
554 |
|
|
https://github.com/sylhare/Type-on-Strap |
🎨 Simplistic, responsive jekyll based open source theme |
sylhare |
mit |
671 |
|
|
https://github.com/Velocidex/velociraptor |
Digging Deeper…. |
Velocidex |
other |
1481 |
|
|
https://github.com/facebookincubator/nvdtools |
A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD) |
facebookincubator |
apache-2.0 |
358 |
|
|
https://github.com/krt/redis-asm |
Fast fuzzy string search on Redis using Lua. UTF-8 ready. |
krt |
mit |
40 |
|
|
https://github.com/iCopy-X-Community/icopyx-teardown |
|
iCopy-X-Community |
|
36 |
|
|
https://github.com/javierbyte/pintr |
Create single line SVG illustrations from your pictures |
javierbyte |
bsd-3-clause |
678 |
|
|
https://github.com/zautomata/virusshare |
|
zautomata |
bsd-3-clause |
10 |
|
|
https://github.com/rajkumar-rangaraj/PDB-Downloader |
PDB Downloader - An easier way to download Microsoft’s public symbols for Libraries and Executables. |
rajkumar-rangaraj |
|
252 |
|
|
https://github.com/SAP/credential-digger |
A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models :lock: |
SAP |
apache-2.0 |
218 |
|
|
https://github.com/jiabailie/Althttpd |
Althttpd is a simple webserver that has run the https://sqlite.org/ website since 2004. Althttpd strives for simplicity, security, and low resource usage. |
jiabailie |
mit |
12 |
|
|
https://github.com/bits-and-blooms/bloom |
Go package implementing Bloom filters |
bits-and-blooms |
bsd-2-clause |
1710 |
|
|
https://github.com/mosajjal/dnsmonster |
Passive DNS Capture and Monitoring Toolkit |
mosajjal |
gpl-2.0 |
212 |
|
|
https://github.com/eTextile/Matrix |
|
eTextile |
other |
9 |
|
|
https://github.com/drawrowfly/tiktok-scraper |
TikTok Scraper. Download video posts, collect user/trend/hashtag/music feed metadata, sign URL and etc. |
drawrowfly |
|
3115 |
|
|
https://github.com/apurvsinghgautam/dark-web-osint-tools |
OSINT Tools for the Dark Web |
apurvsinghgautam |
|
276 |
|
|
https://github.com/marco-lancini/cartography-queries |
Utilities for programmatic analysis of Cartography data. |
marco-lancini |
apache-2.0 |
27 |
|
|
https://github.com/kirei/python-base45 |
Base45 |
kirei |
bsd-2-clause |
19 |
|
|
https://github.com/cudeso/misp-training-environment |
Setting up a training environment for MISP |
cudeso |
|
10 |
|
|
https://github.com/berkgoksel/sysref |
Terminal Linux Syscall Reference Table for x86, x64, arm32 and arm64 |
berkgoksel |
mit |
18 |
|
|
https://github.com/airbus-seclab/bincat |
Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free detection |
airbus-seclab |
|
1416 |
|
|
https://github.com/jampp/pybloomfiltermmap |
Fast Python Bloom Filter using Mmap |
jampp |
mit |
3 |
|
|
https://github.com/prashnts/pybloomfiltermmap3 |
Fast Python Bloom Filter using Mmap |
prashnts |
mit |
89 |
|
|
https://github.com/mzucker/noteshrink |
Convert scans of handwritten notes to beautiful, compact PDFs |
mzucker |
mit |
4750 |
|
|
https://github.com/MiroKaku/DetoursX |
Kernel-Mode extended version of https://github.com/microsoft/Detours |
MiroKaku |
mit |
69 |
|
|
https://github.com/HanseSecure/credgrap_ie_edge |
Extract stored credentials from Internet Explorer and Edge |
HanseSecure |
gpl-3.0 |
303 |
|
|
https://github.com/wowthemesnet/mundana-theme-jekyll |
Mundana is a free Jekyll theme, Medium styled. |
wowthemesnet |
|
572 |
|
|
https://github.com/lclevy/PyTac_verif |
a python tool to check French covid-19 vaccination certificate ECDSA signature |
lclevy |
gpl-2.0 |
7 |
|
|
https://github.com/beryldb/beryldb |
BerylDB is a fully modular data structure data manager that can be used to store data as key-value entries. The server allows channel subscription and is optimized to be used as a cache repository. Supported structures include lists, sets, multimaps, and keys. |
beryldb |
bsd-3-clause |
201 |
|
|
https://github.com/Ignitetechnologies/Credential-Dumping |
This cheatsheet is aimed at the Red Teamers to help them understand the fundamentals of Credential Dumping (Sub Technique of Credential Access) with examples. There are multiple ways to perform the same tasks |
Ignitetechnologies |
|
309 |
|
|
https://github.com/W3ndige/aurora |
Malware similarity platform with modularity in mind. |
W3ndige |
other |
71 |
|
|
https://github.com/Viralmaniar/MurMurHash |
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform. |
Viralmaniar |
mit |
76 |
|
|
https://github.com/mdecrevoisier/EVTX-to-MITRE-Attack |
Set of EVTX samples (>170) mapped to MITRE Att@k tactic and techniques to measure your SIEM coverage or developed new use cases. |
mdecrevoisier |
|
327 |
|
|
https://github.com/apache/superset |
Apache Superset is a Data Visualization and Data Exploration Platform |
apache |
apache-2.0 |
48897 |
|
|
https://github.com/sthagen/thampiman-reverse-geocoder |
A fast, offline reverse geocoder in Python |
sthagen |
lgpl-2.1 |
2 |
|
|
https://github.com/nhairs/nserver |
Python DNS Name Server Framework |
nhairs |
mit |
6 |
|
|
https://github.com/davidteather/TikTok-Api |
The Unofficial TikTok API Wrapper In Python |
davidteather |
mit |
2744 |
|
|
https://github.com/bradleytaunt/ET-Jekyll |
A minimal Jekyll theme inspired by Tufte CSS |
bradleytaunt |
mit |
135 |
|
|
https://github.com/riverloopsec/hashashin |
Hashashin: A Fuzzy Matching Tool for Binary Ninja |
riverloopsec |
mit |
69 |
|
|
https://github.com/riverloopsec/ninjadiff |
NinjaDiff is a binary diffing plugin for Binary Ninja. Read more on our blog, and contribute code & improvements! |
riverloopsec |
mit |
46 |
|
|
https://github.com/XiphosResearch/netelf |
Run executables from memory, over the network, on Windows, Linux, OpenVMS… routers… spaceships… toasters etc. |
XiphosResearch |
|
265 |
|
|
https://github.com/observablehq/plot |
A concise API for exploratory data visualization |
observablehq |
isc |
2134 |
|
|
https://github.com/knadh/listmonk |
High performance, self-hosted, newsletter and mailing list manager with a modern dashboard. Single binary app. |
knadh |
agpl-3.0 |
8804 |
|
|
https://github.com/sdhash/sdhash |
similarity digest hashing tool |
sdhash |
apache-2.0 |
144 |
|
|
https://github.com/google/oss-vulnerability-guide |
A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disclosure notifications. |
google |
cc-by-4.0 |
102 |
|
|
https://github.com/medsec/kiasubc |
Cryptanalysis of KIASU-BC |
medsec |
other |
2 |
|
|
https://github.com/detectify/page-fetch |
Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pages and see the returned values |
detectify |
mit |
460 |
|
|
https://github.com/brimdata/brimcap |
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more) |
brimdata |
bsd-3-clause |
36 |
|
|
https://github.com/nsacyber/Event-Forwarding-Guidance |
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber |
nsacyber |
other |
730 |
|
|
https://github.com/Spacial/awesome-csirt |
Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities. |
Spacial |
gpl-3.0 |
260 |
|
|
https://github.com/secworks/trng |
True Random Number Generator core implemented in Verilog. |
secworks |
bsd-2-clause |
51 |
|
|
https://github.com/strontic/xcyclopedia |
Encyclopedia for Executables |
strontic |
mit |
289 |
|
|
https://github.com/center-for-threat-informed-defense/adversary_emulation_library |
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs. |
center-for-threat-informed-defense |
apache-2.0 |
814 |
|
|
https://github.com/pydio/cells |
Future-proof content collaboration platform |
pydio |
agpl-3.0 |
1360 |
|
|
https://github.com/CiscoSecurity/tr-05-serverless-misp |
Threat Response integration for MISP Project |
CiscoSecurity |
mit |
6 |
|
|
https://github.com/ninoseki/whois-parser |
Yet another whois parser for Python |
ninoseki |
mit |
3 |
|
|
https://github.com/valayDave/arxiv-miner |
arxiv_miner is a toolkit for mining research papers on CS ArXiv. |
valayDave |
mit |
96 |
|
|
https://github.com/d3sre/IntelligentProcessLifecycle |
The Intelligent Process Lifecycle of Active Cyber Defenders |
d3sre |
|
29 |
|
|
https://github.com/CyCat-project/cycat-service |
CyCAT.org API back-end server including crawlers |
CyCat-project |
agpl-3.0 |
23 |
|
|
https://github.com/davidlatwe/montydb |
Monty, Mongo tinified. MongoDB implemented in Python ! |
davidlatwe |
bsd-3-clause |
516 |
|
|
https://github.com/APIs-guru/openapi-directory |
🌐 Wikipedia for Web APIs. Directory of REST API definitions in OpenAPI 2.0/3.x format |
APIs-guru |
cc0-1.0 |
2956 |
|
|
https://github.com/ninoseki/whois-rest |
A RESTful whois |
ninoseki |
mit |
4 |
|
|
https://github.com/droher/etymology-db |
An open etymology dataset created using Wiktionary data. Contains 3.8M entries, 1.8M terms, 2900 languages, and 31 unique relationship types. |
droher |
apache-2.0 |
21 |
|
|
https://github.com/wwwtyro/candygraph |
Fast by default, flexible 2D plotting library. |
wwwtyro |
unlicense |
399 |
|
|
https://github.com/bee-san/pyWhat |
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it’ll tell you what it is! 🧙♀️ |
bee-san |
mit |
5537 |
|
|
https://github.com/CodingGay/BlackDex |
BlackDex is an Android unpack(dexdump) tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phone or emulator, you can unpack APK File in several seconds. |
CodingGay |
apache-2.0 |
4142 |
|
|
https://github.com/panther-labs/panther-analysis |
Built-in Panther detection rules and policies |
panther-labs |
agpl-3.0 |
202 |
|
|
https://github.com/nimrodpar/Labeled-Elfs |
A collection of well labeled ELF binaries compiled from benign and malicious code in various ways. Great for exploring similarity in executables and training various ML models. |
nimrodpar |
mit |
74 |
|
|
https://github.com/EdgeSecurityTeam/Vulnerability |
此项目将不定期从棱角社区对外进行公布一些最新漏洞。 |
EdgeSecurityTeam |
|
2738 |
|
|
https://github.com/jfmaes/SharpRDPDump |
Create a minidump of TermService for clear text pw extraction |
jfmaes |
|
88 |
|
|
https://github.com/georgenicolaou/icarus |
The Exploitation Toolkit Icarus is a cross platform software exploitation library that assists in the development of proof of concept exploit code. |
georgenicolaou |
|
17 |
|
|
https://github.com/python-restx/flask-restx |
Fork of Flask-RESTPlus: Fully featured framework for fast, easy and documented API development with Flask |
python-restx |
other |
1650 |
|
|
https://github.com/onnx/onnx |
Open standard for machine learning interoperability |
onnx |
apache-2.0 |
13496 |
|
|
https://github.com/jordanpotti/AWSBucketDump |
Security Tool to Look For Interesting Files in S3 Buckets |
jordanpotti |
mit |
1184 |
|
|
https://github.com/gvalkov/rsstail.py |
A command-line syndication feed monitor |
gvalkov |
other |
42 |
|
|
https://github.com/yahoojapan/NGT |
Nearest Neighbor Search with Neighborhood Graph and Tree for High-dimensional Data |
yahoojapan |
apache-2.0 |
941 |
|
|
https://github.com/EC-DIGIT-CSIRC/credentialLeakDB |
A database for storing, querying and doing stats on credential leaks |
EC-DIGIT-CSIRC |
|
25 |
|
|
https://github.com/zedeus/nitter |
Alternative Twitter front-end |
zedeus |
agpl-3.0 |
6032 |
|
|
https://github.com/jart/redisbayes |
Naïve Bayesian Text Classifier on Redis |
jart |
|
108 |
|
|
https://github.com/lcashdol/UPX |
A utility to fix intentionally corrupted UPX packed files. |
lcashdol |
apache-2.0 |
52 |
|
|
https://github.com/adulau/rss-tools |
A set of old and crappy RSS scripts to handle RSS in an Unix way. |
adulau |
|
3 |
|
|
https://github.com/pixelfed/pixelfed |
Photo Sharing. For Everyone. |
pixelfed |
agpl-3.0 |
3914 |
|
|
https://github.com/Python-Markdown/markdown |
A Python implementation of John Gruber’s Markdown with Extension support. |
Python-Markdown |
other |
3041 |
|
|
https://github.com/Captain-P-Goldfish/scim-for-keycloak |
a third party module that extends keycloak by SCIM functionality |
Captain-P-Goldfish |
bsd-3-clause |
110 |
|
|
https://github.com/cloudtrust/keycloak-wsfed |
WS-Federation implementation for keycloak |
cloudtrust |
agpl-3.0 |
32 |
|
|
https://github.com/matplotlib/cheatsheets |
Official Matplotlib cheat sheets |
matplotlib |
bsd-2-clause |
6603 |
|
|
https://github.com/smdu57/ail-feeder-vk |
|
smdu57 |
|
2 |
|
|
https://github.com/BushidoUK/CTI-Lexicon |
Dictionary of CTI-related acronyms, terms, and jargon |
BushidoUK |
|
117 |
|
|
https://github.com/hasherezade/hollows_hunter |
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches). |
hasherezade |
bsd-2-clause |
1456 |
|
|
https://github.com/xwiki-labs/cryptpad |
Collaboration suite, end-to-end encrypted and open-source. |
xwiki-labs |
agpl-3.0 |
3948 |
|
|
https://github.com/hedgedoc/container |
HedgeDoc container image resources |
hedgedoc |
|
178 |
|
|
https://github.com/vxcute/WindowsInternals |
Yet another windows internals repo |
vxcute |
|
189 |
|
|
https://github.com/slidevjs/slidev |
Presentation Slides for Developers |
slidevjs |
mit |
23154 |
|
|
https://github.com/farsightsec/dnsdbflex |
command line tool to use the DNSDB Flexible Search API extensions. |
farsightsec |
|
12 |
|
|
https://github.com/UnaPibaGeek/ctfr |
Abusing Certificate Transparency logs for getting HTTPS websites subdomains. |
UnaPibaGeek |
gpl-3.0 |
1651 |
|
|
https://github.com/adobe/OSAS |
One Stop Anomaly Shop: Anomaly detection using two-phase approach: (a) pre-labeling using statistics, Natural Language Processing and static rules; (b) anomaly scoring using supervised and unsupervised machine learning. |
adobe |
apache-2.0 |
145 |
|
|
https://github.com/c3rb3ru5d3d53c/mwdb-feeds |
A Modular MWDB Utility to Collect Fresh Malware Samples |
c3rb3ru5d3d53c |
bsd-3-clause |
32 |
|
|
https://github.com/Cr4sh/MicroBackdoor |
Small and convenient C2 tool for Windows targets. [ Русский – значит нахуй! ] |
Cr4sh |
gpl-3.0 |
449 |
|
|
https://github.com/camptocamp/inkmap |
A library for generating high-quality, printable maps on the browser. |
camptocamp |
other |
77 |
|
|
https://github.com/endrazine/wcc |
The Witchcraft Compiler Collection |
endrazine |
other |
1707 |
|
|
https://github.com/D4-project/TinyCheck |
TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere. |
D4-project |
apache-2.0 |
3 |
|
|
https://github.com/bstoilov/py3-pinterest |
Fully fledged Python Pinterest client |
bstoilov |
mit |
218 |
|
|
https://github.com/sa7mon/S3Scanner |
Scan for open S3 buckets and dump the contents |
sa7mon |
mit |
1903 |
|
|
https://github.com/pralab/secml_malware |
Create adversarial attacks against machine learning Windows malware detectors |
pralab |
gpl-3.0 |
137 |
|
|
https://github.com/ion-storm/sysmon-edr |
Sysmon EDR POC Build within Powershell to prove ability. |
ion-storm |
|
186 |
|
|
https://github.com/P4T12ICK/Sigma-Rule-Repository |
Sigma Detection Rule Repository |
P4T12ICK |
gpl-3.0 |
69 |
|
|
https://github.com/nccgroup/autochrome |
This tool downloads, installs, and configures a shiny new copy of Chromium. |
nccgroup |
apache-2.0 |
391 |
|
|
https://github.com/ppwwyyxx/wechat-dump |
Cracking encrypted wechat message history from android |
ppwwyyxx |
gpl-3.0 |
1479 |
|
|
https://github.com/TheWover/CertStealer |
A .NET tool for exporting and importing certificates without touching disk. |
TheWover |
mit |
383 |
|
|
https://github.com/Genivia/ugrep |
🔍NEW ugrep v3.9: ultra fast grep with interactive TUI, fuzzy search, boolean queries, hexdumps and more: search file systems, source code, text, binary files, archives (cpio/tar/pax/zip), compressed files (gz/Z/bz2/lzma/xz/lz4/zstd), documents etc. A faster, user-friendly and compatible grep replacement. |
Genivia |
bsd-3-clause |
1363 |
|
|
https://github.com/JSCU-NL/logging-essentials |
A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention. |
JSCU-NL |
apache-2.0 |
215 |
|
|
https://github.com/certtools/ieps |
IntelMQ Enhancement Proposals |
certtools |
|
4 |
|
|
https://github.com/mandiant/pulsesecure_exploitation_countermeasures |
|
mandiant |
other |
23 |
|
|
https://github.com/D4-project/d4-pretensor |
Easing tor proxies botnet analysis |
D4-project |
|
4 |
|
|
https://github.com/0xrawsec/gene-rules |
|
0xrawsec |
gpl-3.0 |
32 |
|
|
https://github.com/ail-project/PyAIL |
Python library using the AIL Rest API |
ail-project |
other |
6 |
|
|
https://github.com/BSI-Bund/RdpCacheStitcher |
RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps. |
BSI-Bund |
|
172 |
|
|
https://github.com/brannondorsey/PassGAN |
A Deep Learning Approach for Password Guessing (https://arxiv.org/abs/1709.00440) |
brannondorsey |
mit |
813 |
|
|
https://github.com/DSecurity/efiSeek |
Ghidra analyzer for UEFI firmware. |
DSecurity |
apache-2.0 |
233 |
|
|
https://github.com/domainaware/parsedmarc |
A Python package and CLI for parsing aggregate and forensic DMARC reports |
domainaware |
apache-2.0 |
610 |
|
|
https://github.com/shadowsocks/shadowsocks-crypto |
Shadowsocks Crypto |
shadowsocks |
mit |
32 |
|
|
https://github.com/angr/fidget |
A tool to add simple inline patches to a binary to rearrange its stack frames, and other things! |
angr |
bsd-2-clause |
43 |
|
|
https://github.com/GaretJax/misp-tr-cli |
|
GaretJax |
|
1 |
|
|
https://github.com/opensearch-project/OpenSearch |
🔎 Open source distributed and RESTful search engine. |
opensearch-project |
apache-2.0 |
5939 |
|
|
https://github.com/chrislee35/yaratool |
Python libary to normalize Yara signatures |
chrislee35 |
|
19 |
|
|
https://github.com/Ch0pin/medusa |
Binary instrumentation framework based on FRIDA |
Ch0pin |
|
790 |
|
|
https://github.com/bloomberg/comdb2 |
Bloomberg’s distributed RDBMS |
bloomberg |
other |
1169 |
|
|
https://github.com/OAI/OpenAPI-Specification |
The OpenAPI Specification Repository |
OAI |
apache-2.0 |
25230 |
|
|
https://github.com/microsoft/CyberBattleSim |
An experimentation and research platform to investigate the interaction of automated agents in an abstract simulated network environments. |
microsoft |
mit |
1460 |
|
|
https://github.com/cyb3rfox/Aurora-Incident-Response |
Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders |
cyb3rfox |
apache-2.0 |
553 |
|
|
https://github.com/ValdikSS/GoodbyeDPI |
GoodbyeDPI — Deep Packet Inspection circumvention utility (for Windows) |
ValdikSS |
apache-2.0 |
7772 |
|
|
https://github.com/chronicle/detection-rules |
Collection of YARA-L 2.0 sample rules for the Chronicle Detection API |
chronicle |
apache-2.0 |
107 |
|
|
https://github.com/glitchedgitz/cook |
An overpower wordlist generator, splitter, merger, finder, saver, create words permutation and combinations, apply different encoding/decoding and everything you need. Frustation Killer!!! |
glitchedgitz |
mit |
466 |
|
|
https://github.com/akoksal/BERT-Sentiment-Analysis-Turkish |
Sentiment Analysis with BERT in Turkish Tweets |
akoksal |
gpl-3.0 |
101 |
|
|
https://github.com/bilde2910/Hauk |
Open-source realtime location sharing |
bilde2910 |
apache-2.0 |
428 |
|
|
https://github.com/fboldewin/misc_malware |
|
fboldewin |
|
37 |
|
|
https://github.com/jorisschellekens/borb |
borb is a library for reading, creating and manipulating PDF files in python. |
jorisschellekens |
other |
2835 |
|
|
https://github.com/tbarabosch/apihash_to_yara |
Generates YARA rules to detect malware using API hashing |
tbarabosch |
apache-2.0 |
14 |
|
|
https://github.com/sjewo/cartogram |
r package for cartogram creation |
sjewo |
|
131 |
|
|
https://github.com/jtleek/datasharing |
The Leek group guide to data sharing |
jtleek |
|
6199 |
|
|
https://github.com/ekamioka/datasharing |
The Leek group guide to data sharing |
ekamioka |
|
1 |
|
|
https://github.com/Coldzer0/Cmulator |
Cmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript |
Coldzer0 |
agpl-3.0 |
262 |
|
|
https://github.com/revng/pagebuster |
PageBuster - dump all executable pages of packed processes. |
revng |
gpl-2.0 |
188 |
|
|
https://github.com/trehn/termdown |
Countdown timer and stopwatch in your terminal |
trehn |
gpl-3.0 |
1090 |
|
|
https://github.com/urbanadventurer/WhatWeb |
Next generation web scanner |
urbanadventurer |
gpl-2.0 |
4178 |
|
|
https://github.com/ninoseki/mitaka |
A browser extension for OSINT search |
ninoseki |
mit |
918 |
|
|
https://github.com/dibsy/SLAEx86 |
SLAE x86 Assembly Language and Shellcoding on Linux |
dibsy |
|
7 |
|
|
https://github.com/williballenthin/siglib |
function identification signatures |
williballenthin |
apache-2.0 |
8 |
|
|
https://github.com/axt/angr-utils |
Handy utilities for the angr binary analysis framework, most notably CFG visualization |
axt |
bsd-2-clause |
225 |
|
|
https://github.com/trimstray/the-book-of-secret-knowledge |
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more. |
trimstray |
mit |
81702 |
|
|
https://github.com/US-CBP/GTAS |
Global Travel Assessment System |
A passenger data screening and analysis system for enhancing global security |
US-CBP |
other |
93 |
|
https://github.com/actions/runner-images |
GitHub Actions runner images |
actions |
mit |
6819 |
|
|
https://github.com/3c7/yaramanager |
Simple yara rule manager |
3c7 |
mit |
65 |
|
|
https://github.com/ayman/flickrsavr |
A preservation experiment to save photos from Flickr to your disk with the metadata embedded. |
ayman |
mit |
16 |
|
|
https://github.com/ninoseki/eml_analyzer |
EML analyzer is an application to analyze the EML file |
ninoseki |
mit |
146 |
|
|
https://github.com/quickwit-oss/tantivy |
Tantivy is a full-text search engine library inspired by Apache Lucene and written in Rust |
quickwit-oss |
mit |
7224 |
|
|
https://github.com/codeyourweb/irma |
enpoint detection / live analysis & sandbox host / signatures quality test |
codeyourweb |
mit |
31 |
|
|
https://github.com/GiulioRossetti/ndlib |
Network Diffusion Library - (for NetworkX and iGraph) |
GiulioRossetti |
bsd-2-clause |
225 |
|
|
https://github.com/lunasorcery/Blossom |
4K Executable Graphics framework |
lunasorcery |
other |
174 |
|
|
https://github.com/Tylous/Limelighter |
A tool for generating fake code signing certificates or signing real ones |
Tylous |
mit |
683 |
|
|
https://github.com/jakejarvis/awesome-shodan-queries |
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻 |
jakejarvis |
cc0-1.0 |
3548 |
|
|
https://github.com/dwisiswant0/apkleaks |
Scanning APK file for URIs, endpoints & secrets. |
dwisiswant0 |
apache-2.0 |
3337 |
|
|
https://github.com/liyansong2018/firmware-analysis-plus |
Simulate firmware with one click of firmadyne (使用 firmadyne 一键模拟固件) |
liyansong2018 |
mit |
174 |
|
|
https://github.com/falzm/burl |
Pure Bash HTTP client |
falzm |
mit |
38 |
|
|
https://github.com/newsviz/newsviz |
Project on text topics evolution over time analysis |
newsviz |
gpl-3.0 |
74 |
|
|
https://github.com/palantir/phishcatch |
A browser extension and API server for detecting corporate password use on external websites |
palantir |
apache-2.0 |
73 |
|
|
https://github.com/synacktiv/shannon-dbg |
Debugger for the Shannon Baseband |
synacktiv |
|
52 |
|
|
https://github.com/mxrch/GHunt |
🕵️♂️ Offensive Google framework. |
mxrch |
mpl-2.0 |
12131 |
|
|
https://github.com/MISP/misp-stix |
MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats |
MISP |
bsd-2-clause |
20 |
|
|
https://github.com/CERT-Polska/drakvuf-sandbox |
DRAKVUF Sandbox - automated hypervisor-level malware analysis system |
CERT-Polska |
other |
729 |
|
|
https://github.com/arvidn/torrent-tools |
tools for creating, inspecting and modifying torrent files |
arvidn |
bsd-3-clause |
8 |
|
|
https://github.com/gracenolan/Notes |
|
gracenolan |
|
929 |
|
|
https://github.com/GONZOsint/gitrecon |
OSINT tool to get information from a Github and Gitlab profile and find user’s email addresses leaked on commits. |
GONZOsint |
gpl-3.0 |
208 |
|
|
https://github.com/DIVD-NL/scanning |
|
DIVD-NL |
|
2 |
|
|
https://github.com/KaanSK/Go-MISPFeedGenerator |
Golang implementation of PyMISP-feedgenerator |
KaanSK |
gpl-3.0 |
15 |
|
|
https://github.com/Malfrats/xeuledoc |
Fetch information about a public Google document. |
Malfrats |
gpl-3.0 |
634 |
|
|
https://github.com/can1357/NoVmp |
A static devirtualizer for VMProtect x64 3.x. powered by VTIL. |
can1357 |
gpl-3.0 |
1501 |
|
|
https://github.com/PwC-IR/MIA-MailItemsAccessed- |
Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features from the Office 365 Audit Log. |
PwC-IR |
|
14 |
|
|
https://github.com/PwC-IR/Office-365-Extractor |
The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL) |
PwC-IR |
|
157 |
|
|
https://github.com/didix21/mdutils |
Python package contains a set of basic tools that can help to create a markdown file. |
didix21 |
mit |
135 |
|
|
https://github.com/vp777/procrustes |
A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering |
vp777 |
|
207 |
|
|
https://github.com/cisagov/CHIRP |
A DFIR tool written in Python. |
cisagov |
cc0-1.0 |
1041 |
|
|
https://github.com/mattermost/focalboard |
Focalboard is an open source, self-hosted alternative to Trello, Notion, and Asana. |
mattermost |
other |
13402 |
|
|
https://github.com/justfoxing/ghidra_bridge |
Python 3 bridge to Ghidra’s Python scripting |
justfoxing |
mit |
232 |
|
|
https://github.com/domenukk/strudra |
Use Ghidra Structs in Python |
domenukk |
mit |
26 |
|
|
https://github.com/gloxec/CrossC2 |
generate CobaltStrike’s cross-platform payload |
gloxec |
|
1516 |
|
|
https://github.com/alexandreborges/malwoverview |
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT. |
alexandreborges |
gpl-3.0 |
1959 |
|
|
https://github.com/speedata/publisher |
speedata Publisher - a professional database Publishing system |
speedata |
agpl-3.0 |
245 |
|
|
https://github.com/GraxCode/threadtear |
Multifunctional java deobfuscation tool suite |
GraxCode |
gpl-3.0 |
684 |
|
|
https://github.com/intelowlproject/IntelOwl |
Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale |
intelowlproject |
agpl-3.0 |
2441 |
|
|
https://github.com/chasemccoy/museo |
🏛 Museo is a tool for finding images in the public domain from some of the best museums in the world. |
chasemccoy |
|
50 |
|
|
https://github.com/mentebinaria/retoolkit |
Reverse Engineer’s Toolkit |
mentebinaria |
apache-2.0 |
3436 |
|
|
https://github.com/marjatech/threatfox2misp |
Creating a Feed of MISP Events from ThreatFox (by abuse.ch) |
marjatech |
gpl-3.0 |
18 |
|
|
https://github.com/doyensec/regexploit |
Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service) |
doyensec |
apache-2.0 |
641 |
|
|
https://github.com/bbalet/jorani |
Leave and Overtime Management System |
bbalet |
agpl-3.0 |
329 |
|
|
https://github.com/ancailliau/YadaYara |
|
ancailliau |
agpl-3.0 |
6 |
|
|
https://github.com/hedgedoc/hedgedoc |
HedgeDoc - The best platform to write and share markdown. |
hedgedoc |
agpl-3.0 |
3327 |
|
|
https://github.com/hedgedoc/cli |
A tiny CLI for HedgeDoc |
hedgedoc |
agpl-3.0 |
126 |
|
|
https://github.com/brython-dev/brython |
Brython (Browser Python) is an implementation of Python 3 running in the browser |
brython-dev |
bsd-3-clause |
5851 |
|
|
https://github.com/ckan/ckan |
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. CKAN makes it easy to publish, share and use data. It powers catalog.data.gov, open.canada.ca/data, data.humdata.org among many other sites. |
ckan |
other |
3579 |
|
|
https://github.com/QKaiser/voodoo |
This repository holds proof-of-concepts for the VOOdoo vulnerabilities found in NETGEAR CG3100 and CG3700B cable modems provided by VOO to its subscribers. |
QKaiser |
|
14 |
|
|
https://github.com/amuehlem/MISP-RPM |
RPM packages for MISP |
amuehlem |
|
24 |
|
|
https://github.com/rsharo/bgrep |
Binary Grep |
rsharo |
|
42 |
|
|
https://github.com/beerfactory/hbmqtt |
MQTT client/broker using Python asynchronous I/O |
beerfactory |
mit |
768 |
|
|
https://github.com/markdown-it/markdown-it |
Markdown parser, done right. 100% CommonMark support, extensions, syntax plugins & high speed |
markdown-it |
mit |
14391 |
|
|
https://github.com/qeeqbox/social-analyzer |
API, CLI, and Web App for analyzing and finding a person’s profile in 1000 social media \ websites |
qeeqbox |
agpl-3.0 |
9414 |
|
|
https://github.com/qeeqbox/chameleon |
19 Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres, MySQL, MSSQL, Elastic and ldap) |
qeeqbox |
agpl-3.0 |
516 |
|
|
https://github.com/evildmp/C-is-for-Camera |
A 35mm camera, based on the Canonet G-III QL17 rangefinder, modelled in Python. |
evildmp |
|
146 |
|
|
https://github.com/Ariana1729/RSA-is-alive |
Implementation of https://eprint.iacr.org/2021/232 |
Ariana1729 |
|
92 |
|
|
https://github.com/microsoft/CSS-Exchange |
Exchange Server support tools and scripts |
microsoft |
mit |
1071 |
|
|
https://github.com/hzbd/kazam |
A screencasting program created with design in mind.(https://launchpad.net/kazam) |
hzbd |
gpl-3.0 |
294 |
|
|
https://github.com/c0ny1/vulstudy |
使用docker快速搭建各大漏洞靶场,目前可以一键搭建17个靶场。 |
c0ny1 |
|
1717 |
|
|
https://github.com/csirt-tooling-org/tooling-directory |
Tools used by CSIRT and especially in the scope of CNW |
csirt-tooling-org |
|
10 |
|
|
https://github.com/MISP/misp-book |
User guide of MISP |
MISP |
|
193 |
|
|
https://github.com/mbrengel/yarix |
|
mbrengel |
|
54 |
|
|
https://github.com/metebalci/pdftitle |
a utility to extract the title from a PDF file |
metebalci |
gpl-3.0 |
86 |
|
|
https://github.com/jart/cosmopolitan |
build-once run-anywhere c library |
jart |
isc |
9485 |
|
|
https://github.com/irevenko/tsukae |
🐚📊 Show off your most used shell commands |
irevenko |
mit |
431 |
|
|
https://github.com/trailofbits/graphtage |
A semantic diff utility and library for tree-like files such as JSON, JSON5, XML, HTML, YAML, and CSV. |
trailofbits |
lgpl-3.0 |
2171 |
|
|
https://github.com/nymtech/nym |
Nym provides strong network-level privacy against sophisticated end-to-end attackers, and anonymous transactions using blinded, re-randomizable, decentralized credentials. |
nymtech |
|
621 |
|
|
https://github.com/iluxonchik/rfc-bibtex |
A command line tool that creates bibtex entries for IETF RFCs and Internet Drafts. |
iluxonchik |
mit |
43 |
|
|
https://github.com/pydata/xarray |
N-D labeled arrays and datasets in Python |
pydata |
apache-2.0 |
2733 |
|
|
https://github.com/karlicoss/myinfra |
A diagram of my personal infrastructure |
karlicoss |
mit |
37 |
|
|
https://github.com/loseys/BlackMamba |
C2/post-exploitation framework |
loseys |
mit |
866 |
|
|
https://github.com/FrenchCisco/RATel |
RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software. |
FrenchCisco |
mit |
217 |
|
|
https://github.com/cert-orangecyberdefense/datalake_misp_integration |
|
cert-orangecyberdefense |
|
3 |
|
|
https://github.com/effgarces/BookedScheduler |
Repository for the last open source version of Booked Scheduler. The “develop” branch contains the most current working code of the project and should be considered beta. The “master” branch is the most current stable release of BookedScheduler. Please read doc/README.md for further details. |
effgarces |
gpl-3.0 |
239 |
|
|
https://github.com/honkit/honkit |
:book: HonKit is building beautiful books using Markdown - Fork of GitBook |
honkit |
apache-2.0 |
2344 |
|
|
https://github.com/misterch0c/CrimeBoards |
A list of private and public (more or less) blackhat boards |
misterch0c |
|
214 |
|
|
https://github.com/threatgrid/ctia |
Cisco Threat Intelligence API |
threatgrid |
epl-1.0 |
51 |
|
|
https://github.com/projectdiscovery/mapcidr |
Small utility program to perform multiple operations for a given subnet/CIDR ranges. |
projectdiscovery |
mit |
566 |
|
|
https://github.com/f0wl/MalwareLab_VM-Setup |
Setup scripts for my Malware Analysis VMs |
f0wl |
gpl-3.0 |
210 |
|
|
https://github.com/projectdiscovery/nuclei |
Fast and customizable vulnerability scanner based on simple YAML based DSL. |
projectdiscovery |
mit |
10399 |
|
|
https://github.com/easylist/easylist |
EasyList filter subscription (EasyList, EasyPrivacy, EasyList Cookie, Fanboy’s Social/Annoyances/Notifications Blocking List) |
easylist |
|
1408 |
|
|
https://github.com/nitefood/asn |
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server |
nitefood |
mit |
680 |
|
|
https://github.com/itm4n/Perfusion |
Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012) |
itm4n |
|
397 |
|
|
https://github.com/jeffjbowie/intelligence_gathering |
|
jeffjbowie |
|
23 |
|
|
https://github.com/deepmind/tree |
tree is a library for working with nested data structures |
deepmind |
apache-2.0 |
783 |
|
|
https://github.com/zoobab/mobib-extractor |
MOBIB-extractor allows you to read the data stored on your STIB Mobib card |
zoobab |
|
17 |
|
|
https://github.com/jackullrich/syscall-detect |
PoC capable of detecting manual syscalls from usermode. |
jackullrich |
|
120 |
|
|
https://github.com/pablomarle/networkmaps |
Online network diagram editor |
pablomarle |
mit |
86 |
|
|
https://github.com/MBCProject/mbc-markdown |
MBC content in markdown |
MBCProject |
|
195 |
|
|
https://github.com/ambrop72/badvpn |
NCD scripting language, tun2socks proxifier, P2P VPN |
ambrop72 |
other |
1702 |
|
|
https://github.com/allegro/ralph |
Ralph is the CMDB / Asset Management system for data center and back office hardware. |
allegro |
apache-2.0 |
1898 |
|
|
https://github.com/cyberark/BlobHunter |
Find exposed data in Azure with this public blob scanner |
cyberark |
mit |
240 |
|
|
https://github.com/tidwall/ptree |
A data structure for storing points. |
tidwall |
mit |
17 |
|
|
https://github.com/sthagen/asenci-uipcalc |
Universal (IPv4/IPv6) CIDR calculator |
sthagen |
isc |
4 |
|
|
https://github.com/superbaud/HEAI |
fun with GSM |
superbaud |
|
1 |
|
|
https://github.com/jonasstrehle/supercookie |
⚠️ Browser fingerprinting via favicon! |
jonasstrehle |
mit |
3987 |
|
|
https://github.com/open-sdr/openwifi |
open-source IEEE 802.11 WiFi baseband FPGA (chip) design: driver, software |
open-sdr |
agpl-3.0 |
2736 |
|
|
https://github.com/srsran/srsRAN |
Open source SDR 4G/5G software suite from Software Radio Systems (SRS) |
srsran |
agpl-3.0 |
2805 |
|
|
https://github.com/vixie/cron |
Vixie Cron, an open source implementation of POSIX Cron, later imported into BSD and Linux |
vixie |
other |
27 |
|
|
https://github.com/dataspectra/base-station-mapping |
|
dataspectra |
gpl-3.0 |
4 |
|
|
https://github.com/frictionlessdata/schema-collaboration |
Carles Pina Estany’s 2020 Tool Fund: data managers and researchers collaborate to write the Frictionless Data packages, tabular schemas, etc. |
frictionlessdata |
mit |
15 |
|
|
https://github.com/medialab/minet |
A webmining CLI tool & library for python. |
medialab |
gpl-3.0 |
156 |
|
|
https://github.com/Guillaume-Levrier/PANDORAE |
A data retrieval & exploration protocol designed to investigate science and policy processes |
Guillaume-Levrier |
mit |
5 |
|
|
https://github.com/medialab/gazouilloire |
Twitter stream + search API grabber |
medialab |
gpl-3.0 |
94 |
|
|
https://github.com/medialab/hyphe-browser |
Browser version of Hyphe (WIP) |
medialab |
agpl-3.0 |
25 |
|
|
https://github.com/ossf/wg-securing-critical-projects |
Helping allocate resources to secure the critical open source projects we all depend on. |
ossf |
apache-2.0 |
244 |
|
|
https://github.com/ossf/criticality_score |
Gives criticality score for an open source project |
ossf |
apache-2.0 |
1095 |
|
|
https://github.com/spyder-ide/spyder |
Official repository for Spyder - The Scientific Python Development Environment |
spyder-ide |
mit |
7235 |
|
|
https://github.com/phage-nz/infosec-bazaar |
A collection of infosec related scripts and information. |
phage-nz |
|
55 |
|
|
https://github.com/ail-project/ail-feeder-telegram |
External telegram feeder for AIL framework |
ail-project |
agpl-3.0 |
6 |
|
|
https://github.com/microsoft/graspologic |
Python package for graph statistics |
microsoft |
mit |
268 |
|
|
https://github.com/counteractive/incident-response-plan-template |
A concise, directive, specific, flexible, and free incident response plan template |
counteractive |
other |
355 |
|
|
https://github.com/ifduyue/python-xxhash |
Python Binding for xxHash |
ifduyue |
bsd-2-clause |
294 |
|
|
https://github.com/m8sec/pymeta |
Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions. |
m8sec |
gpl-3.0 |
300 |
|
|
https://github.com/CyCat-project/cycat-taxonomy |
CyCAT.org taxonomies |
CyCat-project |
|
13 |
|
|
https://github.com/CyCat-project/cycat-project-website |
|
CyCat-project |
mit |
3 |
|
|
https://github.com/berneout/berneout-pledge |
a simple tool for hassle-free open-source contribution licensing |
berneout |
|
31 |
|
|
https://github.com/RedLectroid/OverThruster |
HID attack payload generator for Arduinos |
RedLectroid |
gpl-3.0 |
145 |
|
|
https://github.com/googleworkspace/md2googleslides |
Generate Google Slides from markdown |
googleworkspace |
apache-2.0 |
4270 |
|
|
https://github.com/MITRECND/malchive |
Various capabilities for static malware analysis. |
MITRECND |
other |
65 |
|
|
https://github.com/clong/DetectionLab |
Automate the creation of a lab environment complete with security tooling and logging best practices |
clong |
mit |
3946 |
|
|
https://github.com/0xn0ne/weblogicScanner |
weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883 |
0xn0ne |
|
1536 |
|
|
https://github.com/theevilbit/injection |
|
theevilbit |
|
699 |
|
|
https://github.com/angr/phuzzer |
The new phuzzing framework! |
angr |
bsd-2-clause |
132 |
|
|
https://github.com/Lookyloo/scraping-tutorial |
This tutorial explains the benefits, pitfalls, and limitations of scraping, and why Lookyloo is an important tool. |
Lookyloo |
mit |
8 |
|
|
https://github.com/poljar/matrix-nio |
A Python Matrix client library, designed according to sans I/O (http://sans-io.readthedocs.io/) principles |
poljar |
other |
386 |
|
|
https://github.com/anthonynsimon/timeflake |
Timeflake is a 128-bit, roughly-ordered, URL-safe UUID. |
anthonynsimon |
mit |
795 |
|
|
https://github.com/CyCat-project/cycat-logo |
Logo of the CyCat.org project |
CyCat-project |
|
1 |
|
|
https://github.com/MISP/matrix-misp-bot |
Very basic MISP bot for matrix. |
MISP |
apache-2.0 |
5 |
|
|
https://github.com/ayushoriginal/Sentiment-Analysis-Twitter |
:mortar_board:RESEARCH [NLP :thought_balloon:] We use different feature sets and machine learning classifiers to determine the best combination for sentiment analysis of twitter. |
ayushoriginal |
|
726 |
|
|
https://github.com/zyw-200/FirmAFL |
FIRM-AFL is the first high-throughput greybox fuzzer for IoT firmware. |
zyw-200 |
|
354 |
|
|
https://github.com/danielplohmann/smda |
SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps. |
danielplohmann |
bsd-2-clause |
179 |
|
|
https://github.com/vkbo/novelWriter |
novelWriter is an open source plain text editor designed for writing novels. It supports a minimal markdown-like syntax for formatting text. It is written with Python 3 (3.7+) and Qt 5 (5.10+) for cross-platform support. |
vkbo |
gpl-3.0 |
1402 |
|
|
https://github.com/InfiniTimeOrg/InfiniTime |
Firmware for Pinetime smartwatch written in C/C++ and based on FreeRTOS |
InfiniTimeOrg |
gpl-3.0 |
1858 |
|
|
https://github.com/py7hagoras/CovenantTasks |
Source for tasks I have used with Covenant |
py7hagoras |
|
123 |
|
|
https://github.com/mailvelope/keyserver |
A simple OpenPGP public key server that validates email address ownership of uploaded keys. |
mailvelope |
agpl-3.0 |
311 |
|
|
https://github.com/ForensicITGuy/handy-cti |
Resources I’ve found useful for my CTI work |
ForensicITGuy |
mit |
5 |
|
|
https://github.com/OTRF/Security-Datasets |
Re-play Security Events |
OTRF |
mit |
1311 |
|
|
https://github.com/kryptoslogic/binja_degobfuscate |
Fix Go obfuscated binaries that were obfuscated using gobfuscator |
kryptoslogic |
mit |
42 |
|
|
https://github.com/igrigorik/gharchive.org |
GH Archive is a project to record the public GitHub timeline, archive it, and make it easily accessible for further analysis. |
igrigorik |
mit |
2334 |
|
|
https://github.com/dbarzin/mercator |
Cartographie du système d’information / Mapping the information system |
dbarzin |
gpl-3.0 |
77 |
|
|
https://github.com/mohlcyber/MISP-STIX-ESM |
Exports MISP events to STIX and ingest into McAfee ESM |
mohlcyber |
|
14 |
|
|
https://github.com/nccgroup/pybeacon |
A collection of scripts for dealing with Cobalt Strike beacons in Python |
nccgroup |
|
161 |
|
|
https://github.com/hatari/hatari |
The Atari ST, STE, TT and Falcon emulator. This is a mirror repository, the official one can be found on https://hatari.tuxfamily.org/ |
hatari |
|
51 |
|
|
https://github.com/google/trillian |
A transparent, highly scalable and cryptographically verifiable data store. |
google |
apache-2.0 |
3151 |
|
|
https://github.com/vertrex/DFF |
DFF (Digital Forensics Framework) |
vertrex |
gpl-2.0 |
9 |
|
|
https://github.com/rsd-devel/rsd |
RSD: RISC-V Out-of-Order Superscalar Processor |
rsd-devel |
apache-2.0 |
719 |
|
|
https://github.com/cedowens/C2-JARM |
A list of JARM hashes for different ssl implementations used by some C2/red team tools. |
cedowens |
|
101 |
|
|
https://github.com/tailwindlabs/heroicons |
A set of free MIT-licensed high-quality SVG icons for UI development. |
tailwindlabs |
mit |
17016 |
|
|
https://github.com/disclose/diodata |
Tools, data, and contact lists relevant to The disclose.io Project. |
disclose |
gpl-3.0 |
304 |
|
|
https://github.com/d0c-s4vage/gramfuzz |
gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats. |
d0c-s4vage |
mit |
229 |
|
|
https://github.com/goretk/redress |
Redress - A tool for analyzing stripped Go binaries |
goretk |
agpl-3.0 |
651 |
|
|
https://github.com/daniel-thompson/wasp-os |
A MicroPython based development environment for smart watches (including Pine64 PineTime) |
daniel-thompson |
gpl-3.0 |
598 |
|
|
https://github.com/MichaelKoczwara/Awesome-CobaltStrike-Defence |
Defences against Cobalt Strike |
MichaelKoczwara |
mit |
1151 |
|
|
https://github.com/mori-b/aioconnectors |
Simple secure asynchronous message queue |
mori-b |
apache-2.0 |
18 |
|
|
https://github.com/codenotary/immudb |
immudb - immutable database based on zero trust, SQL and Key-Value, tamperproof, data change history |
codenotary |
apache-2.0 |
7940 |
|
|
https://github.com/VeryBueno/bash-websocket-server |
Websocket server written in bash |
VeryBueno |
|
11 |
|
|
https://github.com/sinwindie/OSINT |
Collections of tools and methods created to aid in OSINT collection |
sinwindie |
|
1795 |
|
|
https://github.com/ethereal-vx/Antivirus-Artifacts |
Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot. |
ethereal-vx |
|
641 |
|
|
https://github.com/TDAmeritrade/stumpy |
STUMPY is a powerful and scalable Python library for modern time series analysis |
TDAmeritrade |
other |
2402 |
|
|
https://github.com/jgamblin/CVEHeatMap |
A CVE Heatmap Using CalPlot |
jgamblin |
mit |
98 |
|
|
https://github.com/antvis/G6 |
♾ A Graph Visualization Framework in JavaScript |
antvis |
mit |
9299 |
|
|
https://github.com/salesforce/jarm |
|
salesforce |
bsd-3-clause |
808 |
|
|
https://github.com/CERT-Polska/karton |
Distributed malware processing framework based on Python, Redis and S3. |
CERT-Polska |
bsd-3-clause |
294 |
|
|
https://github.com/center-for-threat-informed-defense/attack-control-framework-mappings |
Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process. |
center-for-threat-informed-defense |
apache-2.0 |
333 |
|
|
https://github.com/dask/fastparquet |
python implementation of the parquet columnar file format. |
dask |
apache-2.0 |
614 |
|
|
https://github.com/apache/parquet-format |
Apache Parquet |
apache |
apache-2.0 |
1200 |
|
|
https://github.com/madaidans-insecurities/madaidans-insecurities.github.io |
|
madaidans-insecurities |
|
92 |
|
|
https://github.com/mattsse/voyager |
crawl and scrape web pages in rust |
mattsse |
apache-2.0 |
532 |
|
|
https://github.com/NoDataFound/RiskIQ.SunBurst.Hunter |
The Purpose of this research tool is to provide a Python client into RiskIQ API services. |
NoDataFound |
|
21 |
|
|
https://github.com/WillOram/cyber-incident-management |
Notes on managing and coordinating the response to major cyber incidents |
WillOram |
other |
24 |
|
|
https://github.com/darcosion/limier |
Limier est un petit outil en CLI permettant de trouver un flux RSS quand il est planqué sur un site. |
darcosion |
mpl-2.0 |
17 |
|
|
https://github.com/ninoseki/mmhdan |
Calculate fingerprints of a website for OSINT search |
ninoseki |
mit |
38 |
|
|
https://github.com/paulgb/Treeverse |
A browser extension for navigating burgeoning Twitter conversations |
paulgb |
mit |
469 |
|
|
https://github.com/hacklcx/HFish |
安全、可靠、简单、免费的企业级蜜罐 |
hacklcx |
|
3388 |
|
|
https://github.com/projectdiscovery/naabu |
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests |
projectdiscovery |
mit |
2733 |
|
|
https://github.com/Cretezy/dSock |
Distributed WebSocket broker |
Cretezy |
mit |
215 |
|
|
https://github.com/KasperskyLab/TinyCheck |
TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere. |
KasperskyLab |
apache-2.0 |
2608 |
|
|
https://github.com/cisagov/Sparrow |
Sparrow.ps1 was created by CISA’s Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment. |
cisagov |
cc0-1.0 |
1348 |
|
|
https://github.com/mlkui/chrome-cookie-password-decryption |
The decryption implementation of Chrome cookie(encrypted_value) and password(password_value) on Windows with Java |
mlkui |
|
15 |
|
|
https://github.com/Cgboal/SonarSearch |
A rapid API for the Project Sonar dataset |
Cgboal |
mit |
592 |
|
|
https://github.com/pielco11/fav-up |
IP lookup by favicon using Shodan |
pielco11 |
mit |
781 |
|
|
https://github.com/devanshbatham/FavFreak |
Making Favicon.ico based Recon Great again ! |
devanshbatham |
mit |
846 |
|
|
https://github.com/Te-k/harpoon |
CLI tool for open source and threat intelligence |
Te-k |
gpl-3.0 |
995 |
|
|
https://github.com/bytedance/terarkdb |
A RocksDB compatible KV storage engine with better performance |
bytedance |
apache-2.0 |
1776 |
|
|
https://github.com/jech/galene |
The Galène videoconference server |
jech |
mit |
702 |
|
|
https://github.com/joewalnes/websocketd |
Turn any program that uses STDIN/STDOUT into a WebSocket server. Like inetd, but for WebSockets. |
joewalnes |
bsd-2-clause |
16397 |
|
|
https://github.com/ITAYC0HEN/SUNBURST-Cracked |
The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations. |
ITAYC0HEN |
|
57 |
|
|
https://github.com/icedland/iced |
Blazing fast and correct x86/x64 disassembler, assembler, decoder, encoder for .NET, Rust, Python, JavaScript |
icedland |
mit |
1976 |
|
|
https://github.com/BorjaMerino/Pazuzu |
Pazuzu: Reflective DLL to run binaries from memory |
BorjaMerino |
|
215 |
|
|
https://github.com/sdcampbell/Internal-Pentest-Playbook |
Internal Network Penetration Test Playbook |
sdcampbell |
|
706 |
|
|
https://github.com/closeio/socketshark |
A WebSocket message router based on Python/Redis/asyncio |
closeio |
mit |
83 |
|
|
https://github.com/0xdefendA/policies |
Open source information security policies |
0xdefendA |
mpl-2.0 |
13 |
|
|
https://github.com/google/security-research-pocs |
Proof-of-concept codes created as part of security research done by Google Security Team. |
google |
apache-2.0 |
1798 |
|
|
https://github.com/owncast/owncast |
Take control over your live stream video by running it yourself. Streaming + chat out of the box. |
owncast |
mit |
6625 |
|
|
https://github.com/cve-search/CveXplore |
CveXplore |
cve-search |
gpl-3.0 |
21 |
|
|
https://github.com/CaliDog/certstream-server |
Certificate Transparency Log aggregation, parsing, and streaming service written in Elixir |
CaliDog |
mit |
165 |
|
|
https://github.com/volatilityfoundation/volatility |
An advanced memory forensics framework |
volatilityfoundation |
gpl-2.0 |
5710 |
|
|
https://github.com/Cn33liz/p0wnedShell |
PowerShell Runspace Post Exploitation Toolkit |
Cn33liz |
bsd-3-clause |
1449 |
|
|
https://github.com/bellingcat/instagram-location-search |
Finds Instagram location IDs near a specified latitude and longitude. |
bellingcat |
mit |
302 |
|
|
https://github.com/bambenek/research |
|
bambenek |
cc0-1.0 |
98 |
|
|
https://github.com/davidsonmizael/dwarf |
Tiny botnet client that is controlled by a remote blog |
davidsonmizael |
|
5 |
|
|
https://github.com/damnever/pigar |
:coffee: A tool to generate requirements.txt for Python project, and more than that. (IT IS NOT A PACKAGE MANAGEMENT TOOL) |
damnever |
bsd-3-clause |
1336 |
|
|
https://github.com/DongyunLee/vulnerability_db |
The Personal Database about CNVD |
DongyunLee |
other |
2 |
|
|
https://github.com/RedDrip7/SunBurst_DGA_Decode |
SunBurst DGA Decode Script |
RedDrip7 |
|
206 |
|
|
https://github.com/mandiant/sunburst_countermeasures |
|
mandiant |
other |
548 |
|
|
https://github.com/rackerlabs/scantron |
A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows. |
rackerlabs |
apache-2.0 |
684 |
|
|
https://github.com/TheEconomist/covid-19-excess-deaths-tracker |
Source code and data for The Economist’s covid-19 excess deaths tracker |
TheEconomist |
|
632 |
|
|
https://github.com/BinaryAnalysisPlatform/bap |
Binary Analysis Platform |
BinaryAnalysisPlatform |
mit |
1716 |
|
|
https://github.com/facontidavide/PlotJuggler |
The Time Series Visualization Tool that you deserve. |
facontidavide |
mpl-2.0 |
3124 |
|
|
https://github.com/tromp/cuckoo |
a memory-bound graph-theoretic proof-of-work system |
tromp |
other |
780 |
|
|
https://github.com/mandiant/red_team_tool_countermeasures |
|
mandiant |
other |
2544 |
|
|
https://github.com/DNSCrypt/dnscrypt-resolvers |
Lists of public DNSCrypt / DoH DNS servers and DNS relays |
DNSCrypt |
|
865 |
|
|
https://github.com/RichieB2B/nioc |
No Indicators of Compromise |
RichieB2B |
agpl-3.0 |
3 |
|
|
https://github.com/coredns/coredns |
CoreDNS is a DNS server that chains plugins |
coredns |
apache-2.0 |
9918 |
|
|
https://github.com/oskarsve/ms-teams-rce |
|
oskarsve |
|
1085 |
|
|
https://github.com/filesender/filesender |
FileSender server software |
filesender |
bsd-3-clause |
157 |
|
|
https://github.com/ufrisk/MemProcFS |
The Memory Process File System |
ufrisk |
agpl-3.0 |
1580 |
|
|
https://github.com/LLVM-but-worse/maple-ir |
Industrial IR-based static analysis framework for Java bytecode |
LLVM-but-worse |
gpl-3.0 |
47 |
|
|
https://github.com/gallypette/Fortigate |
Extract Useful info from SSL VPN Directory Traversal Vulnerability (FG-IR-18-384) |
gallypette |
gpl-3.0 |
1 |
|
|
https://github.com/beurtschipper/Depix |
Recovers passwords from pixelized screenshots |
beurtschipper |
other |
22897 |
|
|
https://github.com/deepseagirl/degoogle |
search Google and extract results directly. skip all the click-through links and other sketchiness |
deepseagirl |
mit |
469 |
|
|
https://github.com/3c7/infrastructure-tracking-schema |
|
3c7 |
mit |
22 |
|
|
https://github.com/rabbitstack/fibratus |
A modern tool for Windows kernel exploration and tracing with a focus on security |
rabbitstack |
other |
1657 |
|
|
https://github.com/0xchase/modality |
Symbolic execution in radare2 with angr |
0xchase |
|
40 |
|
|
https://github.com/mhx/dwarfs |
A fast high compression read-only file system |
mhx |
gpl-3.0 |
1001 |
|
|
https://github.com/Mebus/cupp |
Common User Passwords Profiler (CUPP) |
Mebus |
gpl-3.0 |
3066 |
|
|
https://github.com/ioerror/csidh-reference-implementation |
|
ioerror |
other |
3 |
|
|
https://github.com/ggerganov/dot-to-ascii |
Graphviz to ASCII converter using Graph::Easy |
ggerganov |
mit |
324 |
|
|
https://github.com/redshiftzero/awesome-threat-modeling |
a curated list of useful threat modeling resources |
redshiftzero |
apache-2.0 |
91 |
|
|
https://github.com/x0rz/tweetentropy |
Twitter as an extra entropy source |
x0rz |
gpl-3.0 |
93 |
|
|
https://github.com/matrix-org/dendrite |
Dendrite is a second-generation Matrix homeserver written in Go! |
matrix-org |
apache-2.0 |
4013 |
|
|
https://github.com/0xcpu/bonomen |
BONOMEN - Hunt for Malware Critical Process Impersonation |
0xcpu |
gpl-3.0 |
42 |
|
|
https://github.com/Apr4h/CobaltStrikeScan |
Scan files or process memory for CobaltStrike beacons and parse their configuration |
Apr4h |
mit |
756 |
|
|
https://github.com/WerWolv/ImHex |
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM. |
WerWolv |
gpl-2.0 |
22314 |
|
|
https://github.com/vector-im/element-ios |
A glossy Matrix collaboration client for iOS |
vector-im |
apache-2.0 |
1468 |
|
|
https://github.com/tchapgouv/tchap-ios |
A Matrix client for iOS |
tchapgouv |
apache-2.0 |
51 |
|
|
https://github.com/matrix-org/synapse |
Synapse: Matrix homeserver written in Python/Twisted. |
matrix-org |
apache-2.0 |
10110 |
|
|
https://github.com/KonradIT/parler-py-api |
UNOFFICIAL Python API to interface with Parler.com |
KonradIT |
|
54 |
|
|
https://github.com/ma1uta/ma1sd |
Federated Matrix Identity Server (formerly fork of kamax/mxisd) |
ma1uta |
agpl-3.0 |
154 |
|
|
https://github.com/DissectMalware/XLMMacroDeobfuscator |
Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros) |
DissectMalware |
apache-2.0 |
500 |
|
|
https://github.com/willglynn/pdb |
A parser for Microsoft PDB (Program Database) debugging information |
willglynn |
apache-2.0 |
267 |
|
|
https://github.com/opensanctions/opensanctions |
An open database of international sanctions data, persons of interest and politically exposed persons |
opensanctions |
mit |
318 |
|
|
https://github.com/jakobwesthoff/prettytable.sh |
A shell script to pretty print tabular data into the terminal |
jakobwesthoff |
bsd-2-clause |
28 |
|
|
https://github.com/MontFerret/ferret |
Declarative web scraping |
MontFerret |
apache-2.0 |
5108 |
|
|
https://github.com/nrdmn/elbrus-docs |
|
nrdmn |
|
58 |
|
|
https://github.com/MythicAgents/Nimplant |
DEPRECATED - A cross-platform implant written in Nim |
MythicAgents |
bsd-3-clause |
152 |
|
|
https://github.com/cudeso/rsit-attck |
Link RSIT with ATT&CK |
cudeso |
|
3 |
|
|
https://github.com/vxunderground/MalwareSourceCode |
Collection of malware source code for a variety of platforms in an array of different programming languages. |
vxunderground |
|
11493 |
|
|
https://github.com/benreardon-sfdc/fatt |
FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic |
benreardon-sfdc |
bsd-3-clause |
3 |
|
|
https://github.com/hugsy/ctfpad |
An OK way to manage CTFs for teams playing CTFs |
hugsy |
|
52 |
|
|
https://github.com/iceychris/LibreASR |
:speech_balloon: An On-Premises, Streaming Speech Recognition System |
iceychris |
mit |
683 |
|
|
https://github.com/ComodoSecurity/openedr |
Open EDR public repository |
ComodoSecurity |
other |
1593 |
|
|
https://github.com/telekom-security/explo |
Human and machine readable web vulnerability testing format |
telekom-security |
gpl-3.0 |
152 |
|
|
https://github.com/solemnwarning/rehex |
Reverse Engineers’ Hex Editor |
solemnwarning |
gpl-2.0 |
2032 |
|
|
https://github.com/nneonneo/universal-doom |
A single .exe binary which runs DOOM on DOS 6, Windows 95 and Windows 10 (and probably everything in between). |
nneonneo |
|
252 |
|
|
https://github.com/D4-project/passive-ssh |
A Passive SSH back-end and scanner. |
D4-project |
agpl-3.0 |
92 |
|
|
https://github.com/ulixee/secret-agent |
The web scraper that’s nearly impossible to block - now called @ulixee/hero |
ulixee |
mit |
537 |
|
|
https://github.com/subat0mik/whoamsi |
An effort to track security vendors’ use of Microsoft’s Antimalware Scan Interface |
subat0mik |
gpl-3.0 |
149 |
|
|
https://github.com/microsoft/Microsoft-365-Defender-Hunting-Queries |
Sample queries for Advanced hunting in Microsoft 365 Defender |
microsoft |
mit |
1556 |
|
|
https://github.com/davidpany/WMI_Forensics |
|
davidpany |
|
241 |
|
|
https://github.com/quentinhardy/pytmipe |
Python library and client for token manipulations and impersonations for privilege escalation on Windows |
quentinhardy |
|
115 |
|
|
https://github.com/ralphje/signify |
Module to generate and verify PE signatures |
ralphje |
other |
28 |
|
|
https://github.com/gmsoft-tuxicoman/packet-o-matic |
Network forensic tool. Please use pom-ng instead. |
gmsoft-tuxicoman |
|
1 |
|
|
https://github.com/ovh/the-bastion |
Authentication, authorization, traceability and auditability for SSH accesses. |
ovh |
other |
1140 |
|
|
https://github.com/Freakboy/CobaltStrike |
CobaltStrike’s source code |
Freakboy |
|
1361 |
|
|
https://github.com/DevoInc/feeds |
|
DevoInc |
mit |
1 |
|
|
https://github.com/Te-k/pecli |
CLI tool to analyze PE files |
Te-k |
mit |
67 |
|
|
https://github.com/NLnetLabs/routinator |
An RPKI Validator and RTR server written in Rust |
NLnetLabs |
bsd-3-clause |
328 |
|
|
https://github.com/cerebrate-project/cerebrate-docker |
|
cerebrate-project |
agpl-3.0 |
4 |
|
|
https://github.com/fastavro/fastavro |
Fast Avro for Python |
fastavro |
mit |
531 |
|
|
https://github.com/sq5bpf/etherify |
Etherify - bringing the ether back to ethernet |
sq5bpf |
gpl-3.0 |
335 |
|
|
https://github.com/jlevy/the-art-of-command-line |
Master the command line, in one page |
jlevy |
|
114958 |
|
|
https://github.com/firmadyne/scraper |
Firmware scraper |
firmadyne |
mit |
97 |
|
|
https://github.com/alwashmi/MasterParser |
MasterParser is a simple, all-in-one, digital forensics artifact parser |
alwashmi |
gpl-3.0 |
18 |
|
|
https://github.com/muteb/Hoarder |
This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole har drive. |
muteb |
gpl-3.0 |
131 |
|
|
https://github.com/QuoSecGmbH/grap |
grap: define and match graph patterns within binaries |
QuoSecGmbH |
mit |
149 |
|
|
https://github.com/bitdefender/bddisasm |
bddisasm is a fast, lightweight, x86/x64 instruction decoder. The project also features a fast, basic, x86/x64 instruction emulator, designed specifically to detect shellcode-like behavior. |
bitdefender |
apache-2.0 |
706 |
|
|
https://github.com/crossroadsfpga/pigasus |
100Gbps Intrusion Detection and Prevention System |
crossroadsfpga |
|
599 |
|
|
https://github.com/yogsototh/ymetapost |
A better interface to metapost for generating graphs for the web |
yogsototh |
|
5 |
|
|
https://github.com/threatgrid/ctim |
Cisco Threat Intellligence Model |
threatgrid |
epl-1.0 |
55 |
|
|
https://github.com/rnpgp/rnp |
RNP: high performance C++ OpenPGP library used by Mozilla Thunderbird |
rnpgp |
other |
147 |
|
|
https://github.com/fonsp/Pluto.jl |
🎈 Simple reactive notebooks for Julia |
fonsp |
mit |
4188 |
|
|
https://github.com/somenonymous/OshiUpload |
Ephemeral file sharing engine |
somenonymous |
wtfpl |
98 |
|
|
https://github.com/kam800/MachObfuscator |
MachObfuscator is a programming-language-agnostic Mach-O apps obfuscator for Apple platforms. |
kam800 |
mit |
476 |
|
|
https://github.com/samyk/slipstream |
NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewall, just by anyone on the victim’s network visiting a website |
samyk |
|
1748 |
|
|
https://github.com/mozilla/DeepSpeech |
DeepSpeech is an open source embedded (offline, on-device) speech-to-text engine which can run in real time on devices ranging from a Raspberry Pi 4 to high power GPU servers. |
mozilla |
mpl-2.0 |
20503 |
|
|
https://github.com/target/halogen |
Automatically create YARA rules from malicious documents. |
target |
mit |
191 |
|
|
https://github.com/Cyan4973/xxHash |
Extremely fast non-cryptographic hash algorithm |
Cyan4973 |
other |
6722 |
|
|
https://github.com/jxy-s/herpaderping |
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process. |
jxy-s |
mit |
898 |
|
|
https://github.com/libyal/libevt |
Library and tools to access the Windows Event Log (EVT) format |
libyal |
lgpl-3.0 |
52 |
|
|
https://github.com/linuxthor/slimpack |
Toolkit for building encrypted file loaders for single source file NASM projects (uses AES-NI instructions) |
linuxthor |
|
3 |
|
|
https://github.com/Jana-Marie/EF-S-Adapter |
https://twitter.com/_Jana_Marie/status/1317520812761546753 |
Jana-Marie |
mit |
93 |
|
|
https://github.com/omerbenamram/pyevtx-rs |
Python bindings for https://github.com/omerbenamram/evtx/ |
omerbenamram |
|
35 |
|
|
https://github.com/Binary-Hackers/42_Subjects |
All Subjects of 42 School |
Binary-Hackers |
|
930 |
|
|
https://github.com/RedisGraph/redisgraph-py |
RedisGraph python client |
RedisGraph |
bsd-3-clause |
185 |
|
|
https://github.com/RedisGraph/RedisGraph |
A graph database as a Redis module |
RedisGraph |
other |
1749 |
|
|
https://github.com/Lichtsinnig/EVTX-ATTACK-SAMPLES |
|
Lichtsinnig |
|
9 |
|
|
https://github.com/mitre/advmlthreatmatrix |
Adversarial Threat Landscape for AI Systems |
mitre |
|
917 |
|
|
https://github.com/mitre-attack/attack-datasources |
This content is analysis and research of the data sources currently listed in ATT&CK. |
mitre-attack |
apache-2.0 |
325 |
|
|
https://github.com/antham/yogo |
Check yopmail mails and inboxes from command line. |
antham |
mit |
26 |
|
|
https://github.com/OSMNames/OSMNames |
Data for place names from OpenStreetMap prepared for fulltext search. Downloadable. Ranked. With bbox and hierarchy. Ready for geocoding. |
OSMNames |
gpl-2.0 |
287 |
|
|
https://github.com/bcmc/oss |
\B\C\M\C\ Open Source Software |
bcmc |
|
17 |
|
|
https://github.com/peering-manager/peering-manager |
BGP sessions management tool |
peering-manager |
apache-2.0 |
345 |
|
|
https://github.com/geovista/GeoCorpora |
The GeoCorpora project aims at creating corpora of fully geo-annotated texts (in particular microblog texts) and developing tools to support the corpus building process using crowd-sourcing and visual analytics approaches. Created corpora will be made publicly available in this repository. A first corpus of ~6000 geo-annotated tweets will be published here in the near future. |
geovista |
|
15 |
|
|
https://github.com/geovista/GeoTxt |
|
geovista |
lgpl-3.0 |
20 |
|
|
https://github.com/thampiman/reverse-geocoder |
A fast, offline reverse geocoder in Python |
thampiman |
lgpl-2.1 |
1787 |
|
|
https://github.com/gaspardpetit/base64 |
|
gaspardpetit |
|
77 |
|
|
https://github.com/Hironsan/anago |
Bidirectional LSTM-CRF and ELMo for Named-Entity Recognition, Part-of-Speech Tagging and so on. |
Hironsan |
mit |
1463 |
|
|
https://github.com/fastai/fastai |
The fastai deep learning library |
fastai |
apache-2.0 |
22940 |
|
|
https://github.com/sebastianruder/NLP-progress |
Repository to track the progress in Natural Language Processing (NLP), including the datasets and the current state-of-the-art for the most common NLP tasks. |
sebastianruder |
mit |
21029 |
|
|
https://github.com/RoiArthurB/Side-Auto_Sci-Hub |
Cross-Browser Plugin to open Sci-Hub 🗝 page with the article from your current tab |
RoiArthurB |
gpl-3.0 |
226 |
|
|
https://github.com/adobe/stringlifier |
Stringlifier is on Opensource ML Library for detecting random strings in raw text. It can be used in sanitising logs, detecting accidentally exposed credentials and as a pre-processing step in unsupervised ML-based analysis of application text data. |
adobe |
apache-2.0 |
143 |
|
|
https://github.com/trendmicro/telfhash |
Symbol hash for ELF files |
trendmicro |
apache-2.0 |
70 |
|
|
https://github.com/ail-project/ail-feeder-jsonlogs |
Aggregate json log lines and push to AIL framework. |
ail-project |
agpl-3.0 |
1 |
|
|
https://github.com/americanexpress/earlybird |
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more. |
americanexpress |
apache-2.0 |
514 |
|
|
https://github.com/microsoftgraph/security-api-solutions |
Microsoft Graph Security API applications and services. |
microsoftgraph |
mit |
189 |
|
|
https://github.com/matthewwithanm/python-markdownify |
Convert HTML to Markdown |
matthewwithanm |
mit |
354 |
|
|
https://github.com/megadose/OnionSearch |
OnionSearch is a script that scrapes urls on different .onion search engines. |
megadose |
gpl-3.0 |
647 |
|
|
https://github.com/matiskay/html-similarity |
Compare html similarity using structural and style metrics |
matiskay |
bsd-3-clause |
186 |
|
|
https://github.com/Neo23x0/Raccine |
A Simple Ransomware Vaccine |
Neo23x0 |
unlicense |
846 |
|
|
https://github.com/nanomsg/nng |
nanomsg-next-generation – light-weight brokerless messaging |
nanomsg |
mit |
2947 |
|
|
https://github.com/ancailliau/sans-indexes |
Indexes for SANS Courses and GIAC Certifications |
ancailliau |
|
124 |
|
|
https://github.com/Debdut/names.io |
A Global Exhaustive First and Last Name Database |
Debdut |
apache-2.0 |
712 |
|
|
https://github.com/WorldBrain/Memex |
Browser extension to curate, annotate, and discuss the most valuable content and ideas on the web. As individuals, teams and communities. |
WorldBrain |
|
3552 |
|
|
https://github.com/thalesgroup-cert/Watcher |
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS. |
thalesgroup-cert |
agpl-3.0 |
646 |
|
|
https://github.com/google/cld3 |
|
google |
apache-2.0 |
585 |
|
|
https://github.com/libnet/libnet |
A portable framework for low-level network packet construction |
libnet |
bsd-2-clause |
762 |
|
|
https://github.com/BloodHoundAD/BloodHound |
Six Degrees of Domain Admin |
BloodHoundAD |
gpl-3.0 |
7537 |
|
|
https://github.com/unprovable/PentestHardware |
Kinda useful notes collated together publicly |
unprovable |
|
475 |
|
|
https://github.com/ALFA-group/BRON |
“Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyber Hunting” by Erik Hemberg, Jonathan Kelly, Michal Shlapentokh-Rothman, Bryn Reinstadler, Katherine Xu, Nick Rutar, Una-May O’Reilly |
ALFA-group |
mit |
39 |
|
|
https://github.com/dstotijn/hetty |
An HTTP toolkit for security research. |
dstotijn |
mit |
4987 |
|
|
https://github.com/D4-project/analyzer-d4-pewpew |
This analyzer creates a pewpew map out of d4 data |
D4-project |
agpl-3.0 |
5 |
|
|
https://github.com/sherlock-project/sherlock |
🔎 Hunt down social media accounts by username across social networks |
sherlock-project |
mit |
36753 |
|
|
https://github.com/iojw/socialscan |
Python library and CLI for accurately querying username and email usage on online platforms |
iojw |
mpl-2.0 |
953 |
|
|
https://github.com/ahmadawais/hacktoberfest |
#Hacktoberfest + Git Resources |
Contributions beginners just like you. Jump in! 🎯 |
ahmadawais |
mit |
91 |
|
https://github.com/EFForg/yaya |
Yet Another Yara Automaton - Automatically curate open source yara rules and run scans |
EFForg |
gpl-3.0 |
201 |
|
|
https://github.com/google/licenseclassifier |
A License Classifier |
google |
apache-2.0 |
263 |
|
|
https://github.com/corkami/mitra |
A generator of weird files (binary polyglots, near polyglots…) |
corkami |
mit |
958 |
|
|
https://github.com/mne-tools/mne-python |
MNE: Magnetoencephalography (MEG) and Electroencephalography (EEG) in Python |
mne-tools |
bsd-3-clause |
2054 |
|
|
https://github.com/sobolevn/git-secret |
:busts_in_silhouette: A bash-tool to store your private data inside a git repository. |
sobolevn |
mit |
3059 |
|
|
https://github.com/JustAnotherArchivist/snscrape |
A social networking service scraper in Python |
JustAnotherArchivist |
gpl-3.0 |
1999 |
|
|
https://github.com/gnebbia/kb |
A minimalist command line knowledge base manager |
gnebbia |
gpl-3.0 |
2901 |
|
|
https://github.com/skeeto/endlessh |
SSH tarpit that slowly sends an endless banner |
skeeto |
unlicense |
5633 |
|
|
https://github.com/designsecurity/progpilot |
A static analysis tool for security |
designsecurity |
mit |
269 |
|
|
https://github.com/mxrch/darkshot |
Lightshot scraper on steroids with OCR. |
mxrch |
mpl-2.0 |
232 |
|
|
https://github.com/oryon-osint/querytool |
Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more. |
oryon-osint |
|
130 |
|
|
https://github.com/yeti-platform/yetigo |
Maltego Transforms for Yeti |
yeti-platform |
apache-2.0 |
7 |
|
|
https://github.com/internetarchive/fatcat |
Perpetual Access To The Scholarly Record |
internetarchive |
other |
95 |
|
|
https://github.com/CERT-Polska/malduck |
:duck: Malduck is your ducky companion in malware analysis journeys |
CERT-Polska |
gpl-3.0 |
203 |
|
|
https://github.com/dfirtrack/dfirtrack |
DFIRTrack - The Incident Response Tracking Application |
dfirtrack |
other |
405 |
|
|
https://github.com/Sentinel-One/CobaltStrikeParser |
|
Sentinel-One |
other |
795 |
|
|
https://github.com/mandiant/capa |
The FLARE team’s open-source tool to identify capabilities in executable files. |
mandiant |
apache-2.0 |
2442 |
|
|
https://github.com/sowdust/tafferugli |
Tafferugli is a Twitter Analysis Framework |
sowdust |
agpl-3.0 |
357 |
|
|
https://github.com/SiliconAnalysis/bitract |
Extract bits from photos |
SiliconAnalysis |
bsd-2-clause |
60 |
|
|
https://github.com/lorenzoromani1983/facebookTranscripts |
A simple (work in progress) script to extract transcripts from Google-indexed Facebook videos containing high quality transcripts |
lorenzoromani1983 |
|
11 |
|
|
https://github.com/fossology/fossology |
FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and web ui are provided to give you a compliance workflow. License, copyright and export scanners are tools used in the workflow. |
fossology |
gpl-2.0 |
597 |
|
|
https://github.com/Fizzadar/pyinfra |
pyinfra automates infrastructure super fast at massive scale. It can be used for ad-hoc command execution, service deployment, configuration management and more. |
Fizzadar |
mit |
2066 |
|
|
https://github.com/melicertes/docs |
The knowledge base reference to the MeliCERTes project |
melicertes |
cc0-1.0 |
4 |
|
|
https://github.com/lightbody/browsermob-proxy |
A free utility to help web developers watch and manipulate network traffic from their AJAX applications. |
lightbody |
apache-2.0 |
1878 |
|
|
https://github.com/keepassxreboot/keepassxc |
KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”. |
keepassxreboot |
other |
14161 |
|
|
https://github.com/viper-framework/viper-modules |
|
viper-framework |
bsd-3-clause |
5 |
|
|
https://github.com/Flangvik/BetterSafetyKatz |
Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into memory. |
Flangvik |
other |
649 |
|
|
https://github.com/FRRouting/frr |
The FRRouting Protocol Suite |
FRRouting |
gpl-2.0 |
2340 |
|
|
https://github.com/iovisor/ubpf |
Userspace eBPF VM |
iovisor |
apache-2.0 |
552 |
|
|
https://github.com/raphaelm/android-barcode-keyboard |
Barcode keyboard for Android (not actively maintained) |
raphaelm |
|
31 |
|
|
https://github.com/ping/instagram_private_api |
A Python library to access Instagram’s private API. |
ping |
mit |
2563 |
|
|
https://github.com/vysecurity/morphHTA |
morphHTA - Morphing Cobalt Strike’s evil.HTA |
vysecurity |
|
490 |
|
|
https://github.com/rnd-ash/MBUX-Port |
Custom Infotainment UI for older Mercedes vehicles (2000-2007), inspired loosely by the 2021 S Class MBUX UI |
rnd-ash |
|
95 |
|
|
https://github.com/trimstray/multitor |
Create multiple TOR instances with a load-balancing. |
trimstray |
gpl-3.0 |
832 |
|
|
https://github.com/sarciszewski/onionimbus-old |
Dedicated Reverse Proxy for Tor Hidden Services |
sarciszewski |
wtfpl |
4 |
|
|
https://github.com/m0nad/Diamorphine |
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64) |
m0nad |
other |
1130 |
|
|
https://github.com/manubot/manubot |
Python utilities for Manubot: Manuscripts, open and automated |
manubot |
other |
354 |
|
|
https://github.com/AlgoSecure/Pollenisator |
Collaborative pentest tool with highly customizable tools |
AlgoSecure |
gpl-3.0 |
66 |
|
|
https://github.com/roomylee/awesome-relation-extraction |
📖 A curated list of awesome resources dedicated to Relation Extraction, one of the most important tasks in Natural Language Processing (NLP). |
roomylee |
|
1013 |
|
|
https://github.com/DC11331/website |
DC11331 DCG website repository, talks, news and archives |
DC11331 |
|
2 |
|
|
https://github.com/returntocorp/semgrep |
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code. |
returntocorp |
other |
7348 |
|
|
https://github.com/resemble-ai/Resemblyzer |
A python package to analyze and compare voices with deep learning |
resemble-ai |
apache-2.0 |
2050 |
|
|
https://github.com/Datalux/Osintgram |
Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname |
Datalux |
gpl-3.0 |
5379 |
|
|
https://github.com/johnjhacking/Buffer-Overflow-Guide |
This Bufferflow Guide includes instructions and the scripts necessary for Buffer Overflow Exploitation. This guide is a supplement for TheCyberMentor’s walkthrough. Please watch his walkthrough if you’re confused. Feel free to implement Pull Requests or raise Issues. |
johnjhacking |
|
456 |
|
|
https://github.com/adulau/napkin-text-analysis |
Napkin is a simple tool to produce statistical analysis of a text |
adulau |
agpl-3.0 |
11 |
|
|
https://github.com/ail-project/ail-yara-rules |
A set of YARA rules for the AIL framework to detect leak or information disclosure |
ail-project |
agpl-3.0 |
31 |
|
|
https://github.com/eCrimeLabs/phish2MISP |
Easy way to create a MISP event related to a Phishing page |
eCrimeLabs |
mit |
15 |
|
|
https://github.com/cablelabs/transparent-security |
Transparent Security is a solution for identify the source devices of a DDoS attack and mitigates the attack in the customer premises or the access network. This solution leverages a P4 based programmable data plane for add in-band network telemetry (INT) for device identification and in-band mitigation. |
cablelabs |
apache-2.0 |
25 |
|
|
https://github.com/cablelabs/ddos-info-sharing |
The repository for the CRITS based DDoS Information Sharing platform |
cablelabs |
|
5 |
|
|
https://github.com/scythe-io/community-threats |
A place to share attack chains for testing people, process, and technology with the entire community. The largest, public library of adversary emulation and adversary simulation plans! #ThreatThursday |
scythe-io |
mit |
547 |
|
|
https://github.com/CodisLabs/codis |
Proxy based Redis cluster solution supporting pipeline and scaling dynamically |
CodisLabs |
mit |
12690 |
|
|
https://github.com/ignis-sec/Pwdb-Public |
A collection of all the data i could extract from 1 billion leaked credentials from internet. |
ignis-sec |
mit |
2679 |
|
|
https://github.com/SixGenInc/Noctilucent |
Using TLS 1.3 to evade censors, bypass network defenses, and blend in with the noise |
SixGenInc |
|
636 |
|
|
https://github.com/Ciphey/Ciphey |
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡ |
Ciphey |
mit |
10904 |
|
|
https://github.com/jdkato/prose |
:book: A Golang library for text processing, including tokenization, part-of-speech tagging, and named-entity extraction. |
jdkato |
mit |
2952 |
|
|
https://github.com/juhakivekas/multidiff |
Binary data diffing for multiple objects or streams of data |
juhakivekas |
mit |
297 |
|
|
https://github.com/TheWover/donut |
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters |
TheWover |
bsd-3-clause |
2281 |
|
|
https://github.com/explosion/spacy-lookups-data |
📂 Additional lookup tables and data resources for spaCy |
explosion |
mit |
74 |
|
|
https://github.com/darrenmartyn/vBulldozer |
Very loud vBulletin exploit |
darrenmartyn |
|
15 |
|
|
https://github.com/raylene/eng-handbook |
A developer’s guide to management: an open-sourced handbook for leading software engineering teams. |
raylene |
gpl-3.0 |
1210 |
|
|
https://github.com/reald/urh |
Universal Radio Hacker: Experimental PlutoSDR support (via gnuradio). |
reald |
gpl-3.0 |
7 |
|
|
https://github.com/reversinglabs/reversinglabs-yara-rules |
ReversingLabs YARA Rules |
reversinglabs |
mit |
502 |
|
|
https://github.com/blackberry/pe_tree |
Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall to dump in-memory PE files and reconstruct imports. |
blackberry |
apache-2.0 |
1241 |
|
|
https://github.com/cytopia/pwncat |
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE) |
cytopia |
mit |
1493 |
|
|
https://github.com/gto76/python-cheatsheet |
Comprehensive Python Cheatsheet |
gto76 |
|
30554 |
|
|
https://github.com/souffle-lang/souffle |
Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification. |
souffle-lang |
upl-1.0 |
625 |
|
|
https://github.com/GrammaTech/ddisasm |
A fast and accurate disassembler |
GrammaTech |
agpl-3.0 |
469 |
|
|
https://github.com/skelsec/pypykatz |
Mimikatz implementation in pure Python |
skelsec |
mit |
2048 |
|
|
https://github.com/cypress-io/cypress |
Fast, easy and reliable testing for anything that runs in a browser. |
cypress-io |
mit |
41383 |
|
|
https://github.com/Dewera/Lunar |
A lightweight native DLL mapping library that supports mapping directly from memory |
Dewera |
mit |
529 |
|
|
https://github.com/redsolver/noteless |
A Markdown-based note-taking app for mobile devices. |
redsolver |
mit |
447 |
|
|
https://github.com/redcode-labs/SNOWCRASH |
A polyglot payload generator |
redcode-labs |
mit |
221 |
|
|
https://github.com/kpcyrd/sn0int |
Semi-automatic OSINT framework and package manager |
kpcyrd |
gpl-3.0 |
1349 |
|
|
https://github.com/xHak9x/fbi |
Facebook Information |
xHak9x |
gpl-2.0 |
1058 |
|
|
https://github.com/saffsd/langid.py |
Stand-alone language identification system |
saffsd |
other |
2003 |
|
|
https://github.com/Gamithra/terms-of-endearment |
struggled with finding cute words to call boys so I automated this |
Gamithra |
|
4 |
|
|
https://github.com/neolea/neolea-training-materials |
Open source training materials for law-enforcement and organisations interested in DFIR. |
neolea |
|
47 |
|
|
https://github.com/bsolomon1124/demoji |
Accurately find/replace/remove emojis in text strings |
bsolomon1124 |
apache-2.0 |
130 |
|
|
https://github.com/ail-project/equaeris |
A modular scanner for finding open data store (MongoDB, Redis or alike) and feed result into AIL |
ail-project |
agpl-3.0 |
6 |
|
|
https://github.com/glscopeclient/scopehal |
Test and measurement hardware abstraction library and protocol decodes. This is the library only. Most users should use scopehal-apps. |
glscopeclient |
bsd-3-clause |
120 |
|
|
https://github.com/cerebrate-project/cerebrate-training |
Cerebrate training materials |
cerebrate-project |
|
7 |
|
|
https://github.com/excalidraw/excalidraw |
Virtual whiteboard for sketching hand-drawn like diagrams |
excalidraw |
mit |
34603 |
|
|
https://github.com/foambubble/foam |
A personal knowledge management and sharing system for VSCode |
foambubble |
other |
13015 |
|
|
https://github.com/ndionysus/multitask-cyberthreat-detection |
This repository holds the data, source code and resulting model weights for the paper “Towards end-to-end Cyberthreat Detection from Twitter using Multi-Task Learning” to be presented at IJCNN 2020. |
ndionysus |
mit |
14 |
|
|
https://github.com/caresteouvert/caresteouvert |
Ça reste ouvert - the collaborative map of open places during the lockdown |
caresteouvert |
agpl-3.0 |
56 |
|
|
https://github.com/scriptingislife/s3eker |
s3eker is an extensible way to find open S3 buckets. |
scriptingislife |
|
17 |
|
|
https://github.com/lucky-luk3/Grafiki |
Threat Hunting tool about Sysmon and graphs |
lucky-luk3 |
lgpl-3.0 |
245 |
|
|
https://github.com/target/huntlib |
A Python library to help with some common threat hunting data analysis operations |
target |
mit |
123 |
|
|
https://github.com/huggingface/tokenizers |
💥 Fast State-of-the-Art Tokenizers optimized for Research and Production |
huggingface |
apache-2.0 |
5995 |
|
|
https://github.com/huggingface/datasets |
🤗 The largest hub of ready-to-use datasets for ML models with fast, easy-to-use and efficient data manipulation tools |
huggingface |
apache-2.0 |
14676 |
|
|
https://github.com/bitquark/dnspop |
Analysis of DNS records to find popular trends |
bitquark |
mit |
412 |
|
|
https://github.com/alphaSeclab/persistence |
Resources About Persistence, Multiple Platforms. Including ~80 Tools and 300+ Posts. |
alphaSeclab |
|
84 |
|
|
https://github.com/bigb0sss/LinkedinMama |
Linkedin Employee Profile Scrapper |
bigb0sss |
mit |
45 |
|
|
https://github.com/IFGHou/Unicornscan |
An asynchronous TCP and UDP port scanner developed by the late Jack C. Louis. |
IFGHou |
other |
9 |
|
|
https://github.com/HyperDbg/HyperDbg |
State-of-the-art native debugging tool |
HyperDbg |
gpl-3.0 |
1877 |
|
|
https://github.com/yunuscadirci/CallStranger |
Vulnerability checker for Callstranger (CVE-2020-12695) |
yunuscadirci |
mit |
386 |
|
|
https://github.com/ntop/PF_RING |
High-speed packet processing framework |
ntop |
lgpl-2.1 |
2319 |
|
|
https://github.com/ZecOps/CVE-2020-0796-RCE-POC |
CVE-2020-0796 Remote Code Execution POC |
ZecOps |
|
479 |
|
|
https://github.com/flameshot-org/flameshot |
Powerful yet simple to use screenshot software :desktop_computer: :camera_flash: |
flameshot-org |
gpl-3.0 |
19243 |
|
|
https://github.com/ZecOps/CVE-2020-1206-POC |
CVE-2020-1206 Uninitialized Kernel Memory Read POC |
ZecOps |
other |
144 |
|
|
https://github.com/0xThiebaut/sigmai |
Import specific data sources into the Sigma generic and open signature format. |
0xThiebaut |
eupl-1.2 |
69 |
|
|
https://github.com/github/gitignore |
A collection of useful .gitignore templates |
github |
cc0-1.0 |
140235 |
|
|
https://github.com/CERTCC/PoC-Exploits |
Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems. |
CERTCC |
bsd-3-clause |
167 |
|
|
https://github.com/m4ll0k/SecretFinder |
SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files |
m4ll0k |
gpl-3.0 |
1180 |
|
|
https://github.com/paperbay/publishing-hack.lu-2020 |
publishing - hack.lu 2020 book |
paperbay |
|
3 |
|
|
https://github.com/quarkslab/binbloom |
Raw binary firmware analysis software |
quarkslab |
apache-2.0 |
360 |
|
|
https://github.com/enisaeu/IRtools |
The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams |
enisaeu |
|
47 |
|
|
https://github.com/fmarotta/kaobook |
A LaTeX class for books, reports or theses based on https://github.com/kenohori/thesis and https://github.com/Tufte-LaTeX/tufte-latex. |
fmarotta |
lppl-1.3c |
594 |
|
|
https://github.com/InQuest/ThreatIngestor |
Extract and aggregate threat intelligence. |
InQuest |
gpl-2.0 |
604 |
|
|
https://github.com/nazywam/AutoIt-Ripper |
Extract AutoIt scripts embedded in PE binaries |
nazywam |
mit |
116 |
|
|
https://github.com/3c7/common-osint-model |
Converting data from services like Censys and Shodan to a common data model |
3c7 |
mit |
34 |
|
|
https://github.com/secdev/scapy |
Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3. |
secdev |
gpl-2.0 |
8124 |
|
|
https://github.com/C00kie-/squirrel.lu |
|
C00kie- |
cc-by-sa-4.0 |
5 |
|
|
https://github.com/free5gc/free5gc |
Open source 5G core network base on 3GPP R15 |
free5gc |
apache-2.0 |
1468 |
|
|
https://github.com/chompie1337/SMBGhost_RCE_PoC |
|
chompie1337 |
|
1189 |
|
|
https://github.com/googleprojectzero/TinyInst |
A lightweight dynamic instrumentation library |
googleprojectzero |
apache-2.0 |
837 |
|
|
https://github.com/KingNull-dumps/Hosting |
Daniel’s Hosting - 8350 DBs |
KingNull-dumps |
|
4 |
|
|
https://github.com/cerebrate-project/cerebrate |
Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other security tools. |
cerebrate-project |
agpl-3.0 |
64 |
|
|
https://github.com/certat/rtir-scripts |
Various small scripts that make life easier with RT(IR) |
certat |
agpl-3.0 |
3 |
|
|
https://github.com/Binject/backdoorfactory |
A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire. |
Binject |
gpl-3.0 |
339 |
|
|
https://github.com/zadam/trilium |
Build your personal knowledge base with Trilium Notes |
zadam |
agpl-3.0 |
18514 |
|
|
https://github.com/nshalabi/Coding-Ghidra |
Java Library wrapper for Ghidra Headless Analysis + Java Samples |
nshalabi |
|
13 |
|
|
https://github.com/JoelGMSec/AutoRDPwn |
The Shadow Attack Framework |
JoelGMSec |
gpl-3.0 |
911 |
|
|
https://github.com/xnih/satori |
Python rewrite of passive OS fingerprinting tool |
xnih |
gpl-2.0 |
74 |
|
|
https://github.com/BardinPetr/FINCERT-Sirius |
Automated IOC-scanner for FinCERT |
BardinPetr |
gpl-3.0 |
6 |
|
|
https://github.com/Textualize/rich |
Rich is a Python library for rich text and beautiful formatting in the terminal. |
Textualize |
mit |
40549 |
|
|
https://github.com/utkusen/shotlooter |
a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc |
utkusen |
bsd-3-clause |
553 |
|
|
https://github.com/0xballistics/inject2pe |
inject or convert shellcode to PE |
0xballistics |
gpl-3.0 |
22 |
|
|
https://github.com/nsacyber/WALKOFF |
A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing them down. #nsacyber |
nsacyber |
other |
1106 |
|
|
https://github.com/WithSecureLabs/captcha22 |
CAPTCHA22 is a toolset for building, and training, CAPTCHA cracking models using neural networks. |
WithSecureLabs |
mit |
238 |
|
|
https://github.com/paulpierre/informer |
A Telegram Mass Surveillance Bot in Python |
paulpierre |
mit |
1088 |
|
|
https://github.com/citcheese/telegramMonitor |
Dump messages and media info from list of Telegram channels to CSV and monitor for changes |
citcheese |
|
17 |
|
|
https://github.com/j-core/gnss-baseband |
Baseband Receiver IP for GPS like DSSS signals |
j-core |
other |
21 |
|
|
https://github.com/F5OEO/dvbsdr |
DVB transmit and receive |
F5OEO |
gpl-3.0 |
31 |
|
|
https://github.com/sheharbano/scan_liveness |
Code for the paper “Scanning the Internet for Liveness” |
sheharbano |
|
10 |
|
|
https://github.com/WithSecureLabs/C3 |
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits. |
WithSecureLabs |
other |
1222 |
|
|
https://github.com/citcheese/SqlParserPlus |
convert SQL dumps and other leaked db dump formats to CSV |
citcheese |
|
28 |
|
|
https://github.com/java-deobfuscator/deobfuscator |
The real deal |
java-deobfuscator |
apache-2.0 |
1245 |
|
|
https://github.com/antijingoist/opendyslexic |
OpenDyslexic, a typeface that uses typeface shapes & features to help offset some visual symptoms of Dyslexia. Now in SIL-OFL. |
antijingoist |
other |
347 |
|
|
https://github.com/spacerace/romfont |
VGA and BIOS rom font extraction |
spacerace |
|
495 |
|
|
https://github.com/Alir3z4/html2text |
Convert HTML to Markdown-formatted text. |
Alir3z4 |
gpl-3.0 |
1318 |
|
|
https://github.com/google/AFL |
american fuzzy lop - a security-oriented fuzzer |
google |
apache-2.0 |
2931 |
|
|
https://github.com/outflanknl/EvilClippy |
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows. |
outflanknl |
gpl-3.0 |
1777 |
|
|
https://github.com/MISP/misp-opendata |
Tool to submit / delete data from MISP to opendata portal |
MISP |
agpl-3.0 |
5 |
|
|
https://github.com/nemec/elasticslurp |
identify and investigate open ElasticSearch servers |
nemec |
mit |
6 |
|
|
https://github.com/git-artes/gr-tempest |
An implementation of TEMPEST en GNU Radio |
git-artes |
other |
414 |
|
|
https://github.com/Shuffle/Shuffle |
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing. |
Shuffle |
agpl-3.0 |
812 |
|
|
https://github.com/S1sirocks/TwitterMon |
TwitterMon is a module developed for AIL framework which allows to monitor the content published in Twitter either within a certain period of time or in real time, in addition to performing a sentiment analysis and a statistical analysis of the publications collected. |
S1sirocks |
agpl-3.0 |
8 |
|
|
https://github.com/byt3bl33d3r/WitnessMe |
Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier. |
byt3bl33d3r |
gpl-3.0 |
641 |
|
|
https://github.com/cyrozap/mediatek-lte-baseband-re |
Notes and utilities for reverse engineering the MediaTek LTE baseband and its Coresonic DSP. |
cyrozap |
gpl-3.0 |
142 |
|
|
https://github.com/DissectMalware/xlrd2 |
xlrd2 is a variant of xlrd that is actively maintained |
DissectMalware |
apache-2.0 |
21 |
|
|
https://github.com/intel/cve-bin-tool |
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with a list of components and versions. |
intel |
gpl-3.0 |
588 |
|
|
https://github.com/JarryShaw/PyPCAPKit |
Python multi-engine PCAP analysis kit. |
JarryShaw |
bsd-3-clause |
155 |
|
|
https://github.com/SecureAuthCorp/impacket |
Impacket is a collection of Python classes for working with network protocols. |
SecureAuthCorp |
other |
10061 |
|
|
https://github.com/stricaud/research |
Placeholder for my research content |
stricaud |
|
1 |
|
|
https://github.com/JPCERTCC/SysmonSearch |
Investigate suspicious activity by visualizing Sysmon’s event log |
JPCERTCC |
other |
371 |
|
|
https://github.com/python-telegram-bot/python-telegram-bot |
We have made you a wrapper you can’t refuse |
python-telegram-bot |
gpl-3.0 |
20051 |
|
|
https://github.com/oseiskar/corona-sniffer |
Contact Tracing BLE sniffer PoC |
oseiskar |
agpl-3.0 |
75 |
|
|
https://github.com/nasa-jpl/COVID-19-respirators |
JPL designed 3D and tested printed respirators to help with the COVID-19 pandemic response. |
nasa-jpl |
apache-2.0 |
118 |
|
|
https://github.com/ail-project/ail-training |
AIL project training materials |
ail-project |
|
12 |
|
|
https://github.com/jgm/pandoc |
Universal markup converter |
jgm |
other |
26845 |
|
|
https://github.com/cgarciae/pypeln |
Concurrent data pipelines in Python »> |
cgarciae |
mit |
1382 |
|
|
https://github.com/GliaX/Stethoscope |
A research-validated stethoscope whose plans are available Freely and openly. The cost of the entire stethoscope is between $2.5 to $5 to produce |
GliaX |
other |
688 |
|
|
https://github.com/StrangerealIntel/CyberThreatIntel |
Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups |
StrangerealIntel |
|
588 |
|
|
https://github.com/osrg/rustybgp |
BGP implemented in the Rust Programming Language |
osrg |
apache-2.0 |
340 |
|
|
https://github.com/mimno/Mallet |
MALLET is a Java-based package for statistical natural language processing, document classification, clustering, topic modeling, information extraction, and other machine learning applications to text. |
mimno |
other |
889 |
|
|
https://github.com/evllabs/JGAAP |
The Java Graphical Authorship Attribution Program |
evllabs |
|
233 |
|
|
https://github.com/Postuf/telegram-osint-lib |
Telegram scenario-based API aimed at OSINT |
Postuf |
mit |
129 |
|
|
https://github.com/apache/incubator-kvrocks |
Kvrocks is a distributed key value NoSQL database that uses RocksDB as storage engine and is compatible with Redis protocol. |
apache |
apache-2.0 |
1805 |
|
|
https://github.com/pts/tinygpgs |
symmetric key encryption compatible with GPG in Python |
pts |
mit |
2 |
|
|
https://github.com/nsacyber/Mitigating-Web-Shells |
Guidance for mitigation web shells. #nsacyber |
nsacyber |
other |
871 |
|
|
https://github.com/Alexiskln/Taxonomy_Of_Infantry_Small_Arms |
This is a taxonomy of infantry small arms based on https://www.militaryfactory.com/smallarms/guns-by-type.asp |
Alexiskln |
|
2 |
|
|
https://github.com/M0un/SE_API_module |
MISP module which displays informations about an URL based on a google search engine API. In order to use this hover type module you need to download the following API : https://github.com/abenassi/Google-Search-API. No API key is needed. |
M0un |
|
1 |
|
|
https://github.com/N1col4s5742/StolenCarsUS |
Projet Threat Intelligence - PyMisp - Stolen Cars US |
N1col4s5742 |
|
1 |
|
|
https://github.com/Nedfire2347/Taxonomy-cia-Intelligence-Analysis-Variables |
Foundations for Meta-Analysis by Rob Johnston for MISP-Instance |
Nedfire2347 |
|
1 |
|
|
https://github.com/ail-project/ail-framework |
AIL framework - Analysis Information Leak framework |
ail-project |
agpl-3.0 |
333 |
|
|
https://github.com/goose3/goose3 |
A Python 3 compatible version of goose http://goose3.readthedocs.io/en/latest/index.html |
goose3 |
apache-2.0 |
590 |
|
|
https://github.com/deep-insights-ai/covid-19-classifier |
A fastai2 based Covid-19 classifier |
deep-insights-ai |
gpl-3.0 |
16 |
|
|
https://github.com/citcheese/ODBParser |
OSINT tool to search, parse and dump only the open Elasticsearch and MongoDB directories that have the data you care about exposing |
citcheese |
mit |
41 |
|
|
https://github.com/martinvigo/email2phonenumber |
A OSINT tool to obtain a target’s phone number just by having his email address |
martinvigo |
mit |
1090 |
|
|
https://github.com/Rob–W/cookie-manager |
Cookie Manager for Firefox (Desktop/Android), Chrome. |