opensource-discoveries

repo_url description owner_name license stars    
https://github.com/nao-sec/tknk_scanner Community-based integrated malware identification system nao-sec mit 81    
https://github.com/D1rkMtr/VirusTotalC2 Abusing VirusTotal API to host our C2 traffic, usefull for bypassing blocking firewall rules if VirusTotal is in the target white list , and in case you don’t have C2 infrastructure , now you have a free one D1rkMtr   447    
https://github.com/fox-it/spookyssl-pcaps SpookySSL PCAPS and Network Coverage fox-it mit 3    
https://github.com/NVISOsecurity/nviso-cti   NVISOsecurity   33    
https://github.com/threatray/tigerrat Scripts and IOCs for the Andariel APT group research threatray mit 6    
https://github.com/a0rtega/metame metame is a metamorphic code engine for arbitrary executables a0rtega mit 467    
https://github.com/NCSC-NL/OpenSSL-2022 Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3 NCSC-NL mit 456    
https://github.com/ek0/hxemu Triton based symbolic emulator ek0   11    
https://github.com/antonioCoco/RogueWinRM Windows Local Privilege Escalation from Service Account to System antonioCoco gpl-3.0 449    
https://github.com/Rogdham/python-xz Pure Python implementation of the XZ file format with random access support Rogdham mit 11    
https://github.com/open-obfuscator/o-mvll :electron: O-MVLL is a LLVM-based obfuscator for native code (Android & iOS) open-obfuscator apache-2.0 159    
https://github.com/eshard/obfuscator-llvm   eshard other 58    
https://github.com/PayDevs/awful-oss-incidents 🤬 A categorized list of incidents caused by unappreciated OSS maintainers or underfunded OSS projects. Feedback welcome! PayDevs cc0-1.0 245    
https://github.com/epilys/tade tade is a discussion/forum/link aggregator application. It provides three interfaces: a regular web page, a mailing list bridge and an NNTP server epilys agpl-3.0 22    
https://github.com/Accenture/Spartacus Spartacus DLL Hijacking Discovery Tool Accenture mit 206    
https://github.com/vnmabus/dcor Distance correlation and related E-statistics in Python vnmabus mit 105    
https://github.com/roaldarbol/LaPreprint 📝 A nicely formatted LaTeX preprint template roaldarbol mit 398    
https://github.com/friendica/friendica Friendica Communications Platform friendica agpl-3.0 1076    
https://github.com/GreyNoise-Intelligence/wasm_ipv4_heatmap WebAssembly module to produce an IPv4 heatmap mapped to a Hilbert Curve GreyNoise-Intelligence   4    
https://github.com/uNetworking/uWebSockets Simple, secure & standards compliant web server for the most demanding of applications uNetworking apache-2.0 14785    
https://github.com/Cloud-Architekt/AzureAD-Attack-Defense This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected. Cloud-Architekt   1065    
https://github.com/Qianlitp/WatchAD AD Security Intrusion Detection System Qianlitp gpl-3.0 1087    
https://github.com/SamuelTulach/RwxMeme State of the art DLL injector that took 20 minutes to make SamuelTulach mit 15    
https://github.com/jevinskie/aarch64-experimental-disasm Experimental methods of decoding/disassembling AArch64 instructions jevinskie bsd-2-clause 1    
https://github.com/wikireader/wikireader Official Source code for the WikiReader (by Openmoko) wikireader other 173    
https://github.com/hashview/hashview A web front-end for password cracking and analytics hashview gpl-3.0 255    
https://github.com/Tripwire/tripwire-open-source Open Source Tripwire® Tripwire gpl-2.0 663    
https://github.com/evilsocket/mpcfw Reverse engineering of Apple MultipeerConnectivity Framework evilsocket   44    
https://github.com/FreeTAKTeam/openTAKpickList a list of hardware and software to be used in conjunction with the ATAKplatform FreeTAKTeam epl-2.0 73    
https://github.com/T145/black-mirror Blacklists and whitelists that aim to promote security, safety, and sanity across the internet! T145 agpl-3.0 105    
https://github.com/ail-project/PyLacus Python module to enqueue and query a remote Lacus instance ail-project bsd-3-clause 2    
https://github.com/deptofdefense/AndroidTacticalAssaultKit-CIV   deptofdefense other 507    
https://github.com/TAK-Product-Center/Server TAK Server TAK-Product-Center other 110    
https://github.com/docintelapp/DocIntel Open Source Platform for storing, organizing, and searching documents related to cyber threats docintelapp other 64    
https://github.com/feathericons/feather Simply beautiful open source icons feathericons mit 22783    
https://github.com/EttusResearch/gr-ettus Out-of-tree GNU Radio Module for Experimental Ettus Research Features EttusResearch other 42    
https://github.com/gmh5225/YARA-yaralyzer Visually inspect YARA and regex matches found in both binary and text data. gmh5225 gpl-3.0 3    
https://github.com/akamai/akamai-security-research This repository includes code and IoCs that are the product of research done in Akamai’s various security research teams. akamai apache-2.0 176    
https://github.com/matplotlib/matplotlib matplotlib: plotting with Python matplotlib   16357    
https://github.com/palewire/amsat-satellite-index An interactive list of active amateur radio satellites for amsat.org palewire mit 1    
https://github.com/J4NN0/linkedin-web-scraper Python Web Scraper for LinkedIn. Collect data and store it into .xls file. J4NN0 gpl-3.0 9    
https://github.com/Its-Vichy/HBot 🐛 Self spreading Botnet based on Mirai C&C Arch, spreading through SSH and Telnet protocol. Modern script fullly written in python3. Its-Vichy apache-2.0 135    
https://github.com/DarkCoderSc/PsyloDbg User-friendly Microsoft Windows Debugger for Malware Analysts. DarkCoderSc apache-2.0 125    
https://github.com/horizon3ai/CVE-2022-40684 A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager horizon3ai   277    
https://github.com/D1rkMtr/FilelessRemotePE Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique D1rkMtr   544    
https://github.com/RansomLook/RansomLook Yet another Ransomware gang tracker RansomLook gpl-3.0 69    
https://github.com/COSSAS/sacti SACTI - Securely aggregate CTI sightings and report them on MISP COSSAS apache-2.0 9    
https://github.com/sepinf-inc/IPED IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners. sepinf-inc other 464    
https://github.com/mgeeky/ShellcodeFluctuation An advanced in-memory evasion technique fluctuating shellcode’s memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents mgeeky mit 591    
https://github.com/CScorza/Image-OSINT-Forensics Ricerca e Analisi delle Immagini CScorza   71    
https://github.com/NHAS/reverse_ssh SSH based reverse shell NHAS bsd-3-clause 204    
https://github.com/slaeryan/AQUARMOURY My musings in C and offensive tooling slaeryan   499    
https://github.com/ail-project/LacusCore The modulable part of Lacus ail-project bsd-3-clause 2    
https://github.com/msiemens/tinydb TinyDB is a lightweight document oriented database optimized for your happiness :) msiemens mit 5451    
https://github.com/avast/yari YARI is an interactive debugger for YARA Language. avast mit 71    
https://github.com/Xetnus/osm-finder A “line-network” geolocation tool created for Bellingcat’s September 2022 Hackathon: https://www.bellingcat.com/resources/2022/10/06/automated-map-searches-scam-busting-tools-and-twitter-search-translations-here-are-the-results-of-bellingcats-second-hackathon/ Xetnus mit 82    
https://github.com/mxrch/GitFive 🐙 Track down GitHub users. mxrch mpl-2.0 381    
https://github.com/cncf/tag-security 🔐CNCF Security Technical Advisory Group – secure access, policy control, privacy, auditing, explainability and more! cncf other 1501    
https://github.com/pry0cc/axiom The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more! pry0cc mit 2948    
https://github.com/vdjagilev/nmap-formatter A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it’s nmap converter. vdjagilev mit 128    
https://github.com/DISARMFoundation/DISARMframeworks Master copies of the DISARM frameworks, with generated files to help you explore the data DISARMFoundation cc-by-sa-4.0 37    
https://github.com/e2guardian/e2guardian E2guardian is a web content filter that can work in proxy, transparent or icap server modes e2guardian gpl-2.0 399    
https://github.com/codeyourweb/fastfinder Incident Response - Fast suspicious file finder codeyourweb mit 162    
https://github.com/deepfence/PacketStreamer :star: :star: Distributed tcpdump for cloud native environments :star: :star: deepfence apache-2.0 777    
https://github.com/trickest/wordlists Real-world infosec wordlists, updated regularly trickest mit 445    
https://github.com/tamimhasan404/image-upload-exploits This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty. tamimhasan404   3    
https://github.com/HavocFramework/Havoc The Havoc Framework HavocFramework gpl-3.0 2634    
https://github.com/soxoj/maigret 🕵️‍♂️ Collect a dossier on a person by username from thousands of sites soxoj mit 7274    
https://github.com/nccgroup/mimikatz-detector-busylight USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is executed, a thread is spwaned by default that tries to locate one of the busylights that is supported. All HID devices are enumerated, if PID/VID is matching then packets are sent to flash the busylight in different colours. nccgroup   16    
https://github.com/raghur/mermaid-filter Pandoc filter for creating diagrams in mermaid syntax blocks in markdown docs raghur   280    
https://github.com/Xu0Tex1/CVE-2022-3236 Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool Xu0Tex1   1    
https://github.com/quarkslab/quokka Quokka: A Fast and Accurate Binary Exporter quarkslab apache-2.0 102    
https://github.com/tintinweb/ethereum-dasm An ethereum evm bytecode disassembler and static/dynamic analysis tool tintinweb gpl-2.0 169    
https://github.com/CYB3RMX/C2Data A database for captured data (malicious files etc.) from command and control servers. CYB3RMX mit 3    
https://github.com/DavidBuchanan314/monomorph MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash DavidBuchanan314 mit 683    
https://github.com/ORCx41/KnownDllUnhook Replace the .txt section of the current loaded modules from \KnownDlls\ to bypass edrs ORCx41 mit 193    
https://github.com/netspooky/xx The xx file format. Turn your hex dumps into art, then into binary data. netspooky 0bsd 280    
https://github.com/gwen001/dnspy Find subdomain takeovers gwen001 mit 66    
https://github.com/lkarlslund/ldapnomnom Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP) lkarlslund mit 556    
https://github.com/williballenthin/EVTXtract EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images. williballenthin apache-2.0 158    
https://github.com/malfp/tormalwarefp Traffic analysis for Tor-based malware detection and classification malfp mit 7    
https://github.com/corkami/collisions Hash collisions and exploitations corkami   1928    
https://github.com/D1rkMtr/DumpThatLSASS Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation , it contains Anti-sandbox , if you run it under unperformant Virtual Machine you need to uncomment the code related to it and recompile. D1rkMtr   409    
https://github.com/S12cybersecurity/Infinite-Backdoors Bash Script with 4 ways to get persistence in Linux systems WITHOUT root permisions S12cybersecurity   8    
https://github.com/jgromes/RadioLib Universal wireless communication library for embedded devices jgromes mit 724    
https://github.com/Processus-Thief/HEKATOMB Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them. Processus-Thief gpl-3.0 214    
https://github.com/openai/whisper Robust Speech Recognition via Large-Scale Weak Supervision openai mit 14019    
https://github.com/memN0ps/srdi-rs Rusty Shellcode Reflective DLL Injection (sRDI) memN0ps mit 156    
https://github.com/hellman/wboxkit White-box Design and Analysis kit hellman mit 9    
https://github.com/Rupan/idapin A debugger backend for IDA Pro built on top of of Intel’s PIN framework Rupan   17    
https://github.com/benedekrozemberczki/awesome-fraud-detection-papers A curated list of data mining papers about fraud detection. benedekrozemberczki cc0-1.0 1220    
https://github.com/hasherezade/pe-bear Portable Executable reversing tool with a friendly GUI hasherezade gpl-2.0 1492    
https://github.com/jhassine/server-ip-addresses Daily updated list of IP addresses / CIDR blocks used by data centers, cloud service providers, servers, etc. jhassine   85    
https://github.com/Eventual-Inc/Daft The Python DataFrame for Media Data Eventual-Inc apache-2.0 395    
https://github.com/TheNerdlist/nerdlist list of passwords more likely to be used by sysadmins, general nerds, and folk with access TheNerdlist mit 232    
https://github.com/apache/age Graph database optimized for fast analysis and real-time data processing. It is provided as an extension to PostgreSQL. apache apache-2.0 942    
https://github.com/CybercentreCanada/assemblyline AssemblyLine 4 - File triage and malware analysis CybercentreCanada mit 62    
https://github.com/CrowdStrike/SuperMem A python script developed to process Windows memory images based on triage type. CrowdStrike mit 192    
https://github.com/NytroRST/ShellcodeCompiler Shellcode Compiler NytroRST gpl-3.0 860    
https://github.com/GreyNoise-Intelligence/pygreynoise Python3 library and command line for GreyNoise GreyNoise-Intelligence mit 134    
https://github.com/breck7/pldb PLDB: a Programming Language Database. A public domain knowledge graph focused on programming languages distributed as a CSV file. breck7   592    
https://github.com/Phantom1003/QARMA64 QARMA block cipher in C Phantom1003 mit 19    
https://github.com/kurtfu/present PRESENT block cipher kurtfu mit 3    
https://github.com/MISP/misp-guard [experimental] misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based on a set of customizable block rules. MISP agpl-3.0 7    
https://github.com/vmware/splinterdb High Performance Embedded Key-Value Store vmware apache-2.0 441    
https://github.com/CIRCL/ssdc ssdeep based clustering tool CIRCL mit 14    
https://github.com/LeeBrotherston/badflare OSINT tool for discovering the real IP addresses of services which are behind Cloudflare but not properly locked down LeeBrotherston other 100    
https://github.com/ail-project/lacus Lacus is a capturing system using playwright, as a web service. ail-project bsd-3-clause 4    
https://github.com/Te-k/cobaltstrike Code and yara rules to detect and analyze Cobalt Strike Te-k mit 220    
https://github.com/attify/firmware-analysis-toolkit Toolkit to emulate firmware and analyse it for security vulnerabilities attify mit 1004    
https://github.com/p0dalirius/Coercer A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods. p0dalirius   709    
https://github.com/impira/docquery An easy way to extract information from documents impira mit 1160    
https://github.com/DirkR/capturadio Capture mp3 streams from internet radio stations and store in on the local disk. DirkR   26    
https://github.com/streetwriters/notesnook A fully open source & end-to-end encrypted note taking alternative to Evernote. streetwriters gpl-3.0 4200    
https://github.com/gl4ssesbo1/Nebula Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components. gl4ssesbo1 other 308    
https://github.com/sleuthkit/autopsy Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera’s memory card. sleuthkit   1705    
https://github.com/TheSpeedX/PROXY-List Get PROXY List that gets updated everyday TheSpeedX   1285    
https://github.com/codingo/VHostScan A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages. codingo gpl-3.0 991    
https://github.com/BigNerd95/WinboxExploit Proof of Concept of Winbox Critical Vulnerability BigNerd95 mit 188    
https://github.com/Lookyloo/pysecuritytxt Tries to get and parse .well-known/security.txt from a domain Lookyloo bsd-3-clause 4    
https://github.com/ail-project/ail-feeder-apk This AIL feeder pushes annotated APK to an AIL instance ail-project agpl-3.0 2    
https://github.com/enkomio/thematrix a PE Loader and Windows API tracer. Useful in malware analysis. enkomio   113    
https://github.com/akunull/piloslib Multi-platform open-source set of audio and modulation tools that focus on synthesis, live electronic music, interconnection, probability, unique sounds, and intuitive interfacing built by Akunull in Pure Data starting in 2014 akunull mit 112    
https://github.com/kevinzg/facebook-scraper Scrape Facebook public pages without an API key kevinzg mit 1430    
https://github.com/CYB3RMX/BlackHeart BlackHeart is a simple python script to generate powershell scripts that demonstrate reverse shell gaining without Microsoft Defender restrictions. (FOR EDUCATIONAL PURPOSES!!) CYB3RMX mit 15    
https://github.com/binarly-io/fwhunt-scan Tools for analyzing UEFI firmware and checking UEFI modules with FwHunt rules binarly-io gpl-3.0 124    
https://github.com/LongSoft/UEFITool UEFI firmware image viewer and editor LongSoft bsd-2-clause 3015    
https://github.com/AykutSarac/jsoncrack.com 🔮 Seamlessly visualize your JSON data instantly into graphs; paste, import or fetch! AykutSarac gpl-3.0 18788    
https://github.com/iilegacyyii/Shellcrypt A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods. iilegacyyii mit 77    
https://github.com/michenriksen/drawio-threatmodeling Draw.io libraries for threat modeling diagrams michenriksen mit 479    
https://github.com/adw0rd/instagrapi 🔥 The fastest and powerful Python library for Instagram Private API 2022 adw0rd mit 1547    
https://github.com/bochs-emu/Bochs Bochs - Cross Platform x86 Emulator Project bochs-emu lgpl-2.1 161    
https://github.com/jonathan-dev/tcp_reassembly_testing   jonathan-dev   2    
https://github.com/datacoon/metawarc metawarc: a command-line tool for metadata extraction from files from WARC (Web ARChive) datacoon mit 13    
https://github.com/sourceincite/hekate   sourceincite mit 40    
https://github.com/amazon-science/ReFinED ReFinED is an entity linking (EL) system. amazon-science other 51    
https://github.com/mandiant/Ghidrathon The FLARE team’s open-source extension to add Python 3 scripting to Ghidra. mandiant apache-2.0 375    
https://github.com/webrecorder/har2warc Convert HTTP Archive (HAR) -> Web Archive (WARC) format webrecorder apache-2.0 38    
https://github.com/ninoseki/misp-rb MISP API wrapper for Ruby ninoseki mit 2    
https://github.com/Idov31/Sandman Sandman is a NTP based backdoor for red team engagements in hardened networks. Idov31 bsd-2-clause 413    
https://github.com/HackerNews/API Documentation and Samples for the Official HN API HackerNews mit 9452    
https://github.com/onetrueawk/awk One true awk onetrueawk other 1520    
https://github.com/hasherezade/libpeconv A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl hasherezade bsd-2-clause 795    
https://github.com/mandiant/dncil The FLARE team’s open-source library to disassemble Common Intermediate Language (CIL) instructions. mandiant apache-2.0 81    
https://github.com/ShawnyXiao/TextClassification-Keras Text classification models implemented in Keras, including: FastText, TextCNN, TextRNN, TextBiRNN, TextAttBiRNN, HAN, RCNN, RCNNVariant, etc. ShawnyXiao mit 770    
https://github.com/google-research/albert ALBERT: A Lite BERT for Self-supervised Learning of Language Representations google-research apache-2.0 2992    
https://github.com/vxunderground/ThreatIntelligenceDiscordBot Gets updates from various clearnet domains and ransomware threat actor domains vxunderground mit 182    
https://github.com/x64dbg/XEDParse XEDParse: A MASM-like, single-line plaintext assembler x64dbg lgpl-3.0 134    
https://github.com/vnhacker1337/CVE-2022-27925-PoC Zimbra RCE simple poc vnhacker1337   58    
https://github.com/IBM/sail Library for streaming data and incremental learning algorithms. IBM mit 10    
https://github.com/fventuri/linrad Linrad - SDR receiver fventuri mit 5    
https://github.com/Flangvik/TeamFiltration TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts Flangvik gpl-3.0 491    
https://github.com/NUKnightLab/TimelineJS3 TimelineJS v3: A Storytelling Timeline built in JavaScript. http://timeline.knightlab.com NUKnightLab mpl-2.0 2589    
https://github.com/wietze/HijackLibs Project for tracking publicly disclosed DLL Hijacking opportunities. wietze gpl-3.0 338    
https://github.com/Threagile/threagile Agile Threat Modeling Toolkit Threagile mit 397    
https://github.com/Digital-Forensics-Discord-Server/TheHitchhikersGuidetoDFIRExperiencesFromBeginnersandExperts The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportunity to write a chapter of a book to get their name out there, get a publication on their resume with an actual ISBN number, and ideally lower the bar for people to contribute something back to the DFIR Community. Want to write a chapter? Let me know and let’s make it happen! Digital-Forensics-Discord-Server mit 122    
https://github.com/oasislinux/oasis a small statically-linked linux system oasislinux other 1920    
https://github.com/erg-lang/erg A statically typed language that can deeply improve the Python ecosystem erg-lang apache-2.0 2016    
https://github.com/theandrew168/derzforth Bare-metal Forth implementation for RISC-V theandrew168 mit 25    
https://github.com/mcmenaminadrian/riscyforth Forth for RISC-V SBCs mcmenaminadrian gpl-2.0 15    
https://github.com/howerj/forth-cpu A Forth CPU and System on a Chip, based on the J1, written in VHDL howerj   286    
https://github.com/realaravinth/gitpad Self-Hosted alternative to GitHub Gists realaravinth agpl-3.0 44    
https://github.com/trickest/containers Automated privilege escalation of the world’s most popular Docker images. trickest   35    
https://github.com/ly4k/Certipy Tool for Active Directory Certificate Services enumeration and abuse ly4k mit 1211    
https://github.com/advanced-threat-research/DotDumper An automatic unpacker and logger for DotNet Framework targeting files advanced-threat-research other 126    
https://github.com/casualwriter/casual-markdown-page Markdown as Web Page/Site casualwriter mit 254    
https://github.com/RUB-SysSec/loki Hardening code obfuscation against automated attacks RUB-SysSec agpl-3.0 32    
https://github.com/d4rckh/gorilla tool for generating wordlists or extending an existing one using mutations. d4rckh   339    
https://github.com/armon/libart Adaptive Radix Trees implemented in C armon other 673    
https://github.com/center-for-threat-informed-defense/attack-flow Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows. center-for-threat-informed-defense apache-2.0 286    
https://github.com/redballoonsecurity/ofrak OFRAK: unpack, modify, and repack binaries. redballoonsecurity other 1166    
https://github.com/toeverything/AFFiNE There can be more than Notion and Miro. AFFiNE is a next-gen knowledge base that brings planning, sorting and creating all together. Privacy first, open-source, customizable and ready to use. toeverything mit 10747    
https://github.com/Sc00bz/bscrypt A cache hard password hash/KDF Sc00bz cc0-1.0 19    
https://github.com/vstinner/hachoir Hachoir is a Python library to view and edit a binary stream field by field vstinner gpl-2.0 506    
https://github.com/luker983/nsa-codebreaker-2021 NSA Codebreaker Challenge 2021 Write-Ups luker983   49    
https://github.com/cudeso/misp-scraper A web scraper to create MISP events and reports cudeso   7    
https://github.com/jglim/ABOVISP ISP for the ABOV MC81F4204 jglim   11    
https://github.com/yeokm1/ndp2019-wristband-teardown Tear-down effort of the Pixmob wristband used in NDP2019. yeokm1   23    
https://github.com/EnviralDesign/GeoPix GeoPix is a free and open source real-time lighting control and previz software. It’s built in TouchDesigner, with a workflow and UI/UX inspired by 3d animation software. EnviralDesign mit 182    
https://github.com/onekey-sec/unblob Extract files from any kind of container formats onekey-sec other 740    
https://github.com/elastic/protections-artifacts Elastic Security detection content for Endpoint elastic other 506    
https://github.com/projectM-visualizer/projectm projectM - cross-platform music visualization. Open-source and Milkdrop-compatible projectM-visualizer lgpl-2.1 2460    
https://github.com/sonic-visualiser/sonic-visualiser Visualisation, analysis, and annotation of music audio recordings sonic-visualiser gpl-2.0 279    
https://github.com/paulnasca/paulstretch_python Paulstretch python version paulnasca   488    
https://github.com/paulnasca/paulstretch_cpp PaulStretch paulnasca gpl-2.0 732    
https://github.com/rumblesan/wave-stretcher command line wave stretching program. based on Paul stretch rumblesan bsd-2-clause 7    
https://github.com/Elektromatic/paulStretch This Pure Data patch uses the Paul stretch algorithm to time stretch musical recordings. It is suitable for extreme sound stretching of the audio. Elektromatic gpl-3.0 9    
https://github.com/microsoft/oss-ssc-framework Open Source Software Secure Supply Chain Framework microsoft other 218    
https://github.com/CENSUS/ghidra-frida-hook-gen Frida hook generator for Ghidra CENSUS bsd-2-clause 43    
https://github.com/CZ-NIC/dns-fuzzing Repository to store unique seeds for DNS server fuzzing CZ-NIC   42    
https://github.com/williballenthin/INDXParse Tool suite for inspecting NTFS artifacts. williballenthin apache-2.0 172    
https://github.com/GendarmerieNationale/ReceptionInfoDrone   GendarmerieNationale other 29    
https://github.com/VerbalExpressions/PythonVerbalExpressions Python regular expressions made easy VerbalExpressions   1558    
https://github.com/cardiffnlp/tweetnlp TweetNLP for all the NLP enthusiasts working on Twitter! The Python library tweetnlp provides a collection of useful tools to analyze/understand tweets such as sentiment analysis, emoji prediction, and named entity recognition, powered by state-of-the-art language models specialised on Twitter. cardiffnlp mit 69    
https://github.com/microsoft/Azure-Threat-Research-Matrix   microsoft mit 36    
https://github.com/Fuziih/cctv-exposure   Fuziih other 30    
https://github.com/luca364/MalwareSourceCode Collection of malware source code for a variety of platforms in an array of different programming languages. luca364   3    
https://github.com/punk-security/dnsReaper dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team! punk-security agpl-3.0 1513    
https://github.com/deptofdefense/hack-a-sat-library Public library of space documents and tutorials deptofdefense   487    
https://github.com/Deputation/hygieia Hygieia, a vulnerable driver traces scanner written in C++ as an x64 Windows kernel driver. Deputation   101    
https://github.com/cckuailong/JNDI-Injection-Exploit-Plus 50+ Gadgets(20 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server. cckuailong mit 239    
https://github.com/ptrkrysik/uhd USRP Hardware Driver Repository ptrkrysik other 2    
https://github.com/si9int/cc.py Extracting URLs of a specific target based on the results of “commoncrawl.org” si9int mit 256    
https://github.com/BRANDEFENSE/Threat-Intelligence-Researches The Brandefense cyber threat intelligence team is always researching new threats and writing research reports. Our latest Threat Reports is available for download. This reports covers the latest activity from APT groups, as well as new information on ransomware and phishing attacks. We recommend that all Brandefense followers download this reports and keep it handy in case they need to refer to it in the future. BRANDEFENSE   17    
https://github.com/MystenLabs/ed25519-unsafe-libs List of unsafe ed25519 signature libs MystenLabs mit 169    
https://github.com/FiloSottile/edwards25519 filippo.io/edwards25519 — A safer, faster, and more powerful low-level edwards25519 Go implementation. FiloSottile bsd-3-clause 94    
https://github.com/0vercl0k/inject Yet another Windows DLL injector. 0vercl0k mit 26    
https://github.com/BloodHoundAD/BARK BloodHound Attack Research Kit BloodHoundAD gpl-3.0 237    
https://github.com/MISP/misp-workflow-blueprints Library of blueprints usable in MISP Workflows MISP other 5    
https://github.com/gtworek/VolatileDataCollector   gtworek gpl-3.0 117    
https://github.com/codership/galera Synchronous multi-master replication library codership gpl-2.0 392    
https://github.com/LyraSearch/lyra 🌌 Fast, in-memory, typo-tolerant, full-text search engine written in TypeScript. LyraSearch other 3623    
https://github.com/aydinnyunus/exifLooter ExifLooter finds geolocation on all image urls and directories also integrates with OpenStreetMap aydinnyunus other 288    
https://github.com/sam210723/wavebin ∿ Oscilloscope waveform capture viewer and converter. sam210723 mit 43    
https://github.com/novafacing/symstress Source-assisted binary analysis tool to deduce function names based on source code patterns (read: strings). novafacing   2    
https://github.com/dfirdetective/WinSearchAppCache Windows Search App Cache parsing dfirdetective mit 7    
https://github.com/mikeroyal/Photogrammetry-Guide Photogrammetry Guide. Learn all about the process of obtaining measurements and 3D models from photos. Creating topographic maps, meshes, or point clouds based on the real-world. mikeroyal   613    
https://github.com/evild3ad/Collect-MemoryDump Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR evild3ad gpl-3.0 78    
https://github.com/planetscale/beam A simple message board for your organization or project planetscale mit 1652    
https://github.com/200ok-ch/organice An implementation of Org mode without the dependency of Emacs - built for mobile and desktop browsers 200ok-ch agpl-3.0 2072    
https://github.com/SQLab/CRAXplusplus The exploit generator CRAX++ is CRAX with x86_64 ROP techniques, s2e 2.0 upgrade, code selection, I/O states, dynamic ROP, and more! SQLab other 73    
https://github.com/eurecom-s3/symqemu SymQEMU: Compilation-based symbolic execution for binaries eurecom-s3 other 219    
https://github.com/Omyyyy/pycom A Python compiler, down to native code, using C++ Omyyyy mit 1091    
https://github.com/d4rckh/grc2 grim reaper c2 d4rckh gpl-3.0 287    
https://github.com/rabitt/pysox Python wrapper around sox. rabitt bsd-3-clause 440    
https://github.com/tenacityteam/saucedacity A free open-source audio editor based on Audacity focusing on general improvements. Will be the new future codebase of Tenacity starting with 1.3 tenacityteam other 135    
https://github.com/0xsyr0/vx-underground-wordlist Wordlist to crack .zip-file password 0xsyr0   70    
https://github.com/jstrieb/hackernews-button Privacy-preserving Firefox extension linking to Hacker News discussion; built with Bloom filters and WebAssembly jstrieb gpl-3.0 73    
https://github.com/massar/hashedrpz HashedRPZ - keep your RPZ entries secret massar bsd-3-clause 4    
https://github.com/matthw/icedid_stage1_unpack Automatically unpack SPLCrypt packed binaries (IcedID / BazarLoader stagers) matthw unlicense 8    
https://github.com/nexB/python-publicsuffix2 A small Python library to deal with publicsuffix data (includes a bundled PSL as “package data”) in a wheel friendly format. Fork and continuation of Tomaž Šolc’s “publicsuffix” nexB   24    
https://github.com/hashlookup/a-ray-grass a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly discard known files “pour séparer le grain de l’ivraie” hashlookup bsd-3-clause 7    
https://github.com/kichik/tlds Automatically updated list of valid TLDs for Python kichik mit 2    
https://github.com/dmachard/go-dns-collector Aggregator, analyzer, transporter and logging for your DNS logs dmachard mit 54    
https://github.com/dmachard/python-dnstap-receiver Dnstap streams receiver in Python dmachard mit 29    
https://github.com/dmachard/python-dnstap-protobuf Dnstap Protocol Buffers implementation in Python dmachard mit 2    
https://github.com/NLnetLabs/unbound Unbound is a validating, recursive, and caching DNS resolver. NLnetLabs bsd-3-clause 1972    
https://github.com/Findomain/Findomain The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more. Findomain gpl-3.0 2608    
https://github.com/enkomio/AlanFramework A C2 post-exploitation framework enkomio other 387    
https://github.com/last-byte/RIPPL RIPPL is a tool that abuses a usermode only exploit to manipulate PPL processes on Windows last-byte mit 220    
https://github.com/eth0izzle/bucket-stream Find interesting Amazon S3 Buckets by watching certificate transparency logs. eth0izzle mit 1644    
https://github.com/zardus/wargame-nexus A sorted and updated list of security wargame sites. zardus gpl-3.0 606    
https://github.com/hzqst/unicorn_pe Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files. hzqst mit 559    
https://github.com/chip-red-pill/MicrocodeDecryptor   chip-red-pill   1435    
https://github.com/hashlookup/fleur Fleur implements a Bloom Filter library in C that is fully compatible with DCSO’s Go and python implementations. hashlookup bsd-3-clause 114    
https://github.com/xzkostyan/clickhouse-sqlalchemy ClickHouse dialect for SQLAlchemy xzkostyan other 278    
https://github.com/kacos2000/Prefetch-Browser Browse Windows Prefetch properties kacos2000 mit 28    
https://github.com/OISF/suricata Suricata git repository maintained by the OISF OISF gpl-2.0 2810    
https://github.com/Moonslate/MoonHex A hex editor for romhackers Moonslate   12    
https://github.com/bgpkit/monocle See through all BGP data with a monocle. bgpkit mit 18    
https://github.com/bluesadi/Pluto-Obfuscator Obfuscator based on LLVM 12.0.1 bluesadi mit 478    
https://github.com/DODC/turncoat   DODC   36    
https://github.com/packing-box/peid Python implementation of the Packed Executable iDentifier (PEiD) packing-box gpl-3.0 46    
https://github.com/kacos2000/Evtx_Log_Browser Evtx Log (xml) Browser kacos2000 mit 47    
https://github.com/duckdb/duckdb DuckDB is an in-process SQL OLAP Database Management System duckdb mit 7081    
https://github.com/sourceincite/randy A pre-authenticated RCE exploit for Inductive Automation Ignition sourceincite gpl-3.0 36    
https://github.com/Concinnity-Risks/RansomCoinPublic A DFIR tool to extract cryptocoin addresses and other indicators of compromise from binaries. Concinnity-Risks apache-2.0 53    
https://github.com/D4-project/analyzer-d4-passivedns A Passive DNS backend and collector D4-project agpl-3.0 26    
https://github.com/handiko/Arduino-APRS Create simple APRS modulator using Arduino UNO handiko gpl-3.0 59    
https://github.com/comsec-group/retbleed Arbitrary Speculative Code Execution with Return Instructions comsec-group   105    
https://github.com/t3l3machus/toxssin An XSS exploitation command-line interface and payload generator. t3l3machus mit 578    
https://github.com/decompiler-explorer/decompiler-explorer Decompiler Explorer! Compare tools on the forefront of static analysis, now in your web browser! decompiler-explorer mit 1008    
https://github.com/MerginMaps/geodiff Library for handling diffs for geospatial data MerginMaps mit 116    
https://github.com/akvorado/akvorado Flow collector, hydrater and visualizer akvorado agpl-3.0 488    
https://github.com/p1ngul1n0/blackbird An OSINT tool to search for accounts by username in social networks. p1ngul1n0   1193    
https://github.com/koenrh/s3enum Fast and stealthy Amazon S3 bucket enumeration tool for pentesters. koenrh isc 151    
https://github.com/wheybags/glibc_version_header Build portable Linux binaries without using an ancient distro wheybags mit 587    
https://github.com/rudyerudite/AngErza Toy implementation of a Automated Exploit Generation built on Angr; stiched using radare, pwntools, pyelftools, and Angrop. rudyerudite   9    
https://github.com/dagrejs/dagre-d3 :no_entry: [DEPRECATED] - A D3-based renderer for Dagre dagrejs mit 2704    
https://github.com/uknowsec/SweetPotato Modifying SweetPotato to support load shellcode and webshell uknowsec   512    
https://github.com/RfidResearchGroup/proxmark3 The Iceman fork of Proxmark3 / RFID / NFC reader, writer, sniffer and emulator RfidResearchGroup gpl-3.0 2121    
https://github.com/ail-project/ail-typo-website Website for ail-typo-squatting library ail-project apache-2.0 22    
https://github.com/sartlabs/0days   sartlabs   1    
https://github.com/adulau/mmdb-server mmdb-server is an open source fast API server to lookup IP addresses for their geographic location. adulau agpl-3.0 64    
https://github.com/pocketbase/pocketbase Open Source realtime backend in 1 file pocketbase mit 15592    
https://github.com/pdfminer/pdfminer.six Community maintained fork of pdfminer - we fathom PDF pdfminer mit 3943    
https://github.com/py-pdf/PyPDF2 A pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files py-pdf other 4857    
https://github.com/nttgin/BGPalerter BGP and RPKI monitoring tool. Pre-configured for real-time detection of visibility loss, RPKI invalid announcements, hijacks, ROA misconfiguration, and more. nttgin bsd-3-clause 569    
https://github.com/formatc1702/WireViz Easily document cables and wiring harnesses formatc1702 gpl-3.0 2616    
https://github.com/fventuri/nrsc5 NRSC-5 receiver for SDRplay API, SoapySDR, and RTL-SDR fventuri other 7    
https://github.com/fventuri/gr-sdrplay3 Out-of-tree GNU Radio module for SDRplay RSP devices - SDRplay API V3.X fventuri gpl-3.0 14    
https://github.com/Arachnid/evmdis EVM disassembler Arachnid apache-2.0 456    
https://github.com/dbarzin/pandora-box USB Scanning device dbarzin gpl-3.0 10    
https://github.com/GlobalCyberAlliance/DomainSecurityScanner Single or bulk scan of domains for SPF, DKIM, or DMARC records. GlobalCyberAlliance apache-2.0 75    
https://github.com/alasdairtran/radflow [TheWebConf 2021] Radflow: A Recurrent, Aggregated, and Decomposable Model for Networks of Time Series alasdairtran   24    
https://github.com/simsong/hashdb hashdb block hash database tool and API simsong other 2    
https://github.com/whichbuffer/Lockbit-Black-3.0   whichbuffer apache-2.0 14    
https://github.com/yardenshafir/IoRingReadWritePrimitive Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2 yardenshafir mit 90    
https://github.com/TakahiroHaruyama/SpiMitm SPI flash read MitM attack PoC TakahiroHaruyama bsd-2-clause 31    
https://github.com/gusmanb/logicanalyzer 24 channel, 100Msps logic analyzer hardware and software gusmanb gpl-3.0 749    
https://github.com/espegro/timespotter First seen / last seen web service based on sha256 espegro mit 3    
https://github.com/espegro/tulip Simple stable bloomfilter web service espegro mit 2    
https://github.com/JupiterOne/security-policy-builder CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence JupiterOne mpl-2.0 52    
https://github.com/sikkerhet/sysmon-info Sysmon info corpus sikkerhet   7    
https://github.com/h3xduck/TripleCross A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities. h3xduck gpl-3.0 1206    
https://github.com/winterknife/PINKPANTHER Windows x64 handcrafted token stealing kernel-mode shellcode winterknife gpl-3.0 444    
https://github.com/pluribus-one/gdpr-registry-app Open-source web application to keep track of all data processing activities prefigured by GDPR Article 30 “Records of processing activities”. pluribus-one other 16    
https://github.com/cyentific-rni/security-playbook-stix-misp-exchange This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that make use of the Security Playbook extension and MISP Security Playbook objects. cyentific-rni mit 10    
https://github.com/eCrimeLabs/MISP-PurgeEvents Cleanup of older MISP events can require some work until now eCrimeLabs mit 13    
https://github.com/pydot/pydot Python interface to Graphviz’s Dot language pydot mit 721    
https://github.com/pplonski/automated-pdf-reports-python Automated PDF Reports with Python pplonski mit 16    
https://github.com/projectdiscovery/tlsx Fast and configurable TLS grabber focused on TLS based data collection. projectdiscovery mit 466    
https://github.com/multiprocessio/dsq Commandline tool for running SQL queries against JSON, CSV, Excel, Parquet, and more. multiprocessio other 2861    
https://github.com/0xsp-SRD/callback_injection-Csharp this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback functions 0xsp-SRD mit 75    
https://github.com/NullArray/MaliciousDLLGen Malicious DLL Generator in Py3 NullArray   20    
https://github.com/usnistgov/macos_security macOS Security Compliance Project usnistgov other 970    
https://github.com/pts/pts-zcat portable and minimalistic Flate decompression filter pts   4    
https://github.com/vysecurity/LinkedInt LinkedIn Recon Tool vysecurity mit 818    
https://github.com/ninoseki/abuse_whois Yet another way to find where to report an abuse ninoseki mit 20    
https://github.com/facelessuser/pymdown-extensions Extensions for Python Markdown facelessuser other 657    
https://github.com/Dfte/Impersonate Binary and CrackMapExec module to impersonate tokens on a windows machine Dfte   40    
https://github.com/zhukovyuri/VIINA VIINA: Violent Incident Information from News Articles on the 2022 Russian Invasion of Ukraine zhukovyuri   124    
https://github.com/commoncrawl/cc-crawl-statistics Statistics of Common Crawl monthly archives mined from URL index files commoncrawl apache-2.0 61    
https://github.com/aligungr/UERANSIM Open source 5G UE and RAN (gNodeB) implementation. aligungr gpl-3.0 480    
https://github.com/optiv/Mangle Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs optiv mit 671    
https://github.com/hasherezade/pe_to_shellcode Converts PE into a shellcode hasherezade bsd-2-clause 1570    
https://github.com/yandex/YaLM-100B Pretrained language model with 100B parameters yandex apache-2.0 3089    
https://github.com/timtaylor3/UAC_processor   timtaylor3 apache-2.0 3    
https://github.com/tclahr/uac UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts. tclahr apache-2.0 271    
https://github.com/mattnotmax/hash_hunter Command-line tool to search for malware samples in various repositories mattnotmax   4    
https://github.com/D3Ext/WEF Wi-Fi Exploitation Framework D3Ext other 1361    
https://github.com/zodiacon/TotalRegistry Total Registry - enhanced Registry editor/viewer zodiacon mit 1021    
https://github.com/microsoft/avml AVML - Acquire Volatile Memory for Linux microsoft mit 576    
https://github.com/hashlookup/hashlookup-gui Provides a multi-platform Graphical User Interface for hashlookup hashlookup agpl-3.0 9    
https://github.com/sachaos/viddy 👀 A modern watch command. Time machine and pager etc. sachaos mit 3775    
https://github.com/google/cloud-forensics-utils Python library to carry out DFIR analysis on the Cloud google apache-2.0 327    
https://github.com/kochrt/markwhen Make a cascading timeline from markdown-like text. Supports simple American/European date styles, ISO8601, images, links, locations, and more. kochrt agpl-3.0 2027    
https://github.com/DavidCruciani/feed_Hashlookup   DavidCruciani   1    
https://github.com/citusdata/citus Distributed PostgreSQL as an extension citusdata agpl-3.0 7516    
https://github.com/webrecorder/warcio Streaming WARC/ARC library for fast web archive IO webrecorder apache-2.0 267    
https://github.com/unreaIuser/dll-encryptor C++ Dll-Encryptor, makes you able to stream a dll without touching your disk. (Can be used to prevent from cracking). unreaIuser   46    
https://github.com/YuzukiHD/YuzukiHCC Ultra low cost HDMI-USB Video Acquisition (HDMI Capture Card) based on MS2109 YuzukiHD other 31    
https://github.com/0x000050/cve Gather and update all available and newest CVEs with their PoC. 0x000050 mit 1    
https://github.com/imran-parray/Mind-Maps Mind-Maps of Several Things imran-parray   1170    
https://github.com/paulmillr/micro-otp One Time Password generation via RFC 6238 paulmillr mit 21    
https://github.com/gtworek/PSBits Simple (relatively) things allowing you to dig a bit deeper than usual. gtworek unlicense 1760    
https://github.com/DarthTon/Blackbone Windows memory hacking library DarthTon mit 3768    
https://github.com/trustedsec/SliverKeylogger   trustedsec mit 108    
https://github.com/DHARPA-Project/kiara Data orchestration and management. DHARPA-Project mpl-2.0 6    
https://github.com/CAIDA/commoncrawl-host-ip-mapper Crawler that retrieves commoncrawl’s crawled hosts and their corresponding IPs CAIDA other 8    
https://github.com/darvid/python-hyperscan A CPython extension for the Hyperscan regular expression matching library. darvid mit 115    
https://github.com/NtQuerySystemInformation/Malware-RE-papers Here are some of my malware reversing papers that I will be publishing NtQuerySystemInformation   26    
https://github.com/manticoresoftware/manticoresearch Easy to use open source fast database for search Good alternative to Elasticsearch now Drop-in replacement for E in the ELK soon manticoresoftware gpl-2.0 2218
https://github.com/hardenedvault/ved Vault Exploit Defense hardenedvault other 80    
https://github.com/adulau/hashlookup-server Fast lookup server for NSRL and other hash database used in digital forensic adulau agpl-3.0 32    
https://github.com/TalEliyahu/awesome-security-newsletters Periodic cyber security newsletters that capture the latest news, summaries of conference talks, research, best practices, tools, events, vulnerabilities, and analysis of trending threats and attacks TalEliyahu gpl-2.0 347    
https://github.com/emalderson/ThePhish ThePhish: an automated phishing email analysis tool emalderson agpl-3.0 649    
https://github.com/CeresDB/ceresdb CeresDB is a high-performance, distributed, cloud native time-series database that can handle both time-series and analytics workloads. CeresDB apache-2.0 1683    
https://github.com/ANSSI-FR/sftp2misp Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance. ANSSI-FR gpl-3.0 8    
https://github.com/jcabrero/multfs_public The implementation of the Underground Forum Parser for the identification of related accounts. jcabrero   3    
https://github.com/SecIdiot/TransitionalPeriod Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits SecIdiot   32    
https://github.com/cr-marcstevens/hashclash Project HashClash - MD5 & SHA-1 cryptanalysis cr-marcstevens other 500    
https://github.com/ail-project/ail-exchange-format AIL Exchange Format ail-project bsd-2-clause 3    
https://github.com/thunlp/PL-Marker Source code for “Packed Levitated Marker for Entity and Relation Extraction” thunlp mit 161    
https://github.com/ninoseki/misp-gateway API gateway for MISP ninoseki mit 11    
https://github.com/miroslavpejic85/mirotalk 🚀 WebRTC - P2P - Simple, Secure, Fast Real-Time Video Conferences Up to 4k and 60fps, compatible with all browsers and platforms. miroslavpejic85 agpl-3.0 1347    
https://github.com/marcinguy/betterscan-ce Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan Community Edition (CE) marcinguy other 323    
https://github.com/westerndigitalcorporation/libzbd Zoned block device manipulation library and tools westerndigitalcorporation   38    
https://github.com/josevcm/nfc-laboratory NFC signal and protocol analyzer using SDR receiver josevcm mit 176    
https://github.com/LMMS/lmms Cross-platform music production software LMMS gpl-2.0 6226    
https://github.com/pierrafleur/bibliopen-source   pierrafleur cc0-1.0 5    
https://github.com/phiresky/sql.js-httpvfs   phiresky apache-2.0 2926    
https://github.com/apache/tika The Apache Tika toolkit detects and extracts metadata and text from over a thousand different file types (such as PPT, XLS, and PDF). apache apache-2.0 1537    
https://github.com/EdwardRaff/pyBWMD Implementation of A New Burrows Wheeler Transform Markov Distance EdwardRaff   9    
https://github.com/dedupeio/dedupe :id: A python library for accurate and scalable fuzzy matching, record deduplication and entity-resolution. dedupeio mit 3537    
https://github.com/DerwenAI/kglab Graph Data Science: an abstraction layer in Python for building knowledge graphs, integrated with popular graph libraries – atop Pandas, NetworkX, RAPIDS, RDFlib, pySHACL, PyVis, morph-kgc, pslpython, pyarrow, etc. DerwenAI mit 444    
https://github.com/latchset/clevis Automated Encryption Framework latchset gpl-3.0 578    
https://github.com/radareorg/esilsolve A python symbolic execution framework using radare2’s ESIL (Evaluable String Intermediate Language) radareorg mit 136    
https://github.com/MickaelBergem/dnsstresss Simple Go program to stress test DNS servers MickaelBergem   37    
https://github.com/bats3c/darkarmour Windows AV Evasion bats3c mit 562    
https://github.com/ossu/computer-science :mortar_board: Path to a free self-taught education in Computer Science! ossu mit 126497    
https://github.com/tap-ir/tapir TAPIR is a multi-user, client/server, incident response framework tap-ir gpl-3.0 30    
https://github.com/LIAAD/yake Single-document unsupervised keyword extraction LIAAD other 1197    
https://github.com/EdwardRaff/LZJD C++ implementation of LZJD algorithm EdwardRaff apache-2.0 9    
https://github.com/COSSAS/nedagen NEDAGEN - A Network traffic Dataset Generator for Network-based Intrusion Detection Systems COSSAS mpl-2.0 2    
https://github.com/danielealbano/cachegrand cachegrand - a modern OSS Key-Value store built for today’s hardware danielealbano bsd-3-clause 767    
https://github.com/ANSSI-FR/DFIR4vSphere Powershell module for VMWare vSphere forensics ANSSI-FR gpl-3.0 93    
https://github.com/kevthehermit/YaraManager Web based Manager for Yara Rules kevthehermit gpl-2.0 50    
https://github.com/Lissy93/dashy 🚀 A self-hostable personal dashboard built for you. Includes status-checking, widgets, themes, icon packs, a UI editor and tons more! Lissy93 mit 8103    
https://github.com/jwilk/python-syntax-errors no-op statements syntactically valid only since Python X.Y jwilk   334    
https://github.com/mattifestation/AntimalwareBlight Execute PowerShell code at the antimalware-light protection level. mattifestation bsd-3-clause 115    
https://github.com/airbus-cert/ttddbg Time Travel Debugging IDA plugin airbus-cert apache-2.0 413    
https://github.com/commial/experiments Expriments commial   358    
https://github.com/WerWolv/Decompiler A WIP disassember and decompiler written in modern C++ with the goal to do as much work during compile time as possible WerWolv   12    
https://github.com/algorithm-archivists/algorithm-archive A collaborative book on algorithms algorithm-archivists mit 2047    
https://github.com/drb-ra/C2IntelFeeds Automatically created C2 Feeds drb-ra other 215    
https://github.com/ANSSI-FR/AnoMark Algorithme d’apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements “Création de Processus”, afin de détecter des anomalies dans les évènements futurs ANSSI-FR gpl-3.0 45    
https://github.com/open-source-labs/Svelvet A lightweight Svelte component library for building interactive node-based flow diagrams open-source-labs mit 1309    
https://github.com/cheat/cheatsheets Community-sourced cheatsheets cheat   1303    
https://github.com/wikiZ/RedGuard RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check. wikiZ gpl-2.0 877    
https://github.com/nikitavoloboev/alfred-my-mind Alfred workflow to search through my notes and bookmarks nikitavoloboev mit 420    
https://github.com/mushorg/glutton Generic Low Interaction Honeypot mushorg mit 190    
https://github.com/openai/openai-python   openai mit 808    
https://github.com/questdb/questdb An open source time-series database for fast ingest and SQL queries questdb apache-2.0 9595    
https://github.com/batnoter/batnoter An open source, markdown-based, self-hosted note taking webapp. batnoter mit 1791    
https://github.com/D4-project/bgp-monitor A tool for filtering BGP records, by AS numbers, prefixes, countries, etc … D4-project apache-2.0 9    
https://github.com/LiveMirror/pcshare   LiveMirror   65    
https://github.com/webix-hub/webix Stable releases of Webix UI - JavaScript library for building mobile and desktop web apps webix-hub gpl-3.0 395    
https://github.com/lyshark/Windows-exploits Windows 平台提权漏洞大合集,长期收集各种提权漏洞利用工具。 A large collection of rights raising vulnerabilities on the windows platform, which collects various rights raising vulnerability utilization tools for a long time. lyshark   749    
https://github.com/adulau/python-bloomfilter Scalable Bloom Filter implemented in Python adulau mit 7    
https://github.com/chvancooten/follina.py POC to replicate the full ‘Follina’ Office RCE vulnerability for testing purposes chvancooten   1055    
https://github.com/4x1md/phone_rtty_interface AFSK interface for Android smartphones and tablets. 4x1md mit 23    
https://github.com/BigCorvus/LORA-QWERTY-Communicator A tidy and feature-packed LORA QWERTY communication device based on a Blackberry Q10 keyboard, a nRF52840 and a 2.7’’ Sharp Memory LCD BigCorvus mit 137    
https://github.com/moonD4rk/HackBrowserData Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。 moonD4rk mit 6448    
https://github.com/hashishrajan/cloud-security-vulnerabilities List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc hashishrajan apache-2.0 208    
https://github.com/abdulkadir-gungor/JPGtoMalware It embeds the executable file or payload inside the jpg file. The method the program uses isn’t exactly called one of the steganography methods. For this reason, it does not cause any distortion in the JPG file. The JPG file size and payload do not have to be proportional.The JPG file is displayed normally in any viewing application or web application. It can bypass various security programs such as firewall, antivirus. If the file is examined in detail, it is easier to detect than steganography methods. However, since the payload in the JPG file is encrypted, it cannot be easily decrypted. It also uses the “garbage code insertion/dead-code insertion” method to prevent the payload from being caught by the antivirus at runtime. abdulkadir-gungor other 276    
https://github.com/kahing/goofys a high-performance, POSIX-ish Amazon S3 file system written in Go kahing apache-2.0 4363    
https://github.com/BushidoUK/Open-source-tools-for-CTI Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers BushidoUK   279    
https://github.com/vega/vega A visualization grammar. vega bsd-3-clause 10056    
https://github.com/jeFF0Falltrades/YARA-Signatures A collection of my public YARA signatures for various malware families jeFF0Falltrades   20    
https://github.com/alex-cart/LEAF Linux Evidence Acquisition Framework alex-cart   109    
https://github.com/rhoot/sp Public domain string formatting micro-library for C++, based on python-style format strings. rhoot cc0-1.0 35    
https://github.com/libyal/libyal Yet another library library (and tools) libyal apache-2.0 190    
https://github.com/MarginResearch/cannoli High-performance QEMU memory and instruction tracing MarginResearch gpl-2.0 376    
https://github.com/ixty/mandibule linux elf injector for x86 x86_64 arm arm64 ixty   255    
https://github.com/ManimCommunity/manim A community-maintained Python framework for creating mathematical animations. ManimCommunity mit 11804    
https://github.com/curated-intel/CTI-fundamentals A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence curated-intel   307    
https://github.com/DominicBreuker/pspy Monitor linux processes without root permissions DominicBreuker gpl-3.0 3187    
https://github.com/alyakubov/blockpgp   alyakubov   19    
https://github.com/somnathrakshit/geograpy3 Extract place names from a URL or text, and add context to those names – for example distinguishing between a country, region or city. somnathrakshit apache-2.0 74    
https://github.com/xct/elevatedrv Simple Driver that elevates any process to SYSTEM xct   5    
https://github.com/WangYihang/SourceLeakHacker :bug: A multi threads web application source leak scanner WangYihang   348    
https://github.com/0xeb/ida-qscripts An IDA plugin to increase productivity when developing scripts for IDA 0xeb mit 192    
https://github.com/Ch0pin/AVIator Antivirus evasion project Ch0pin gpl-3.0 789    
https://github.com/scrapy/xtractmime https://mimesniff.spec.whatwg.org/ implementation for Python scrapy bsd-3-clause 11    
https://github.com/PaddlePaddle/PaddleNLP 👑 Easy-to-use and powerful NLP library with 🤗 Awesome model zoo, supporting wide-range of NLP tasks from research to industrial applications, including 🗂Text Classification, 🔍 Neural Search, ❓ Question Answering, ℹ️ Information Extraction, 📄 Document Intelligence, 💌 Sentiment Analysis and 🖼 Diffusion AICG system etc. PaddlePaddle apache-2.0 6263    
https://github.com/sailay1996/CdpSvcLPE Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking) sailay1996   233    
https://github.com/orlikoski/CyLR CyLR - Live Response Collection Tool orlikoski gpl-3.0 511    
https://github.com/nats-io/stan.go NATS Streaming System nats-io apache-2.0 684    
https://github.com/MISP/MISP-RPM RPM packages for MISP MISP   4    
https://github.com/CybersecurityLuxembourg/cybersecurity.lu Main portal of CYBERSECURITY Luxembourg: https://cybersecurity.lu/ CybersecurityLuxembourg bsd-2-clause 3    
https://github.com/Cargill/OpenSIEM-Logstash-Parsing SIEM Logstash parsing for more than hundred technologies Cargill apache-2.0 144    
https://github.com/DCSO/Blog_CyTec Repository to provide files related to our blog articles. DCSO   11    
https://github.com/eCrimeLabs/MISP2CbR Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed. eCrimeLabs mit 17    
https://github.com/facebookresearch/Kats Kats, a kit to analyze time series data, a lightweight, easy-to-use, generalizable, and extendable framework to perform time series analysis, from understanding the key statistics and characteristics, detecting change points and anomalies, to forecasting future trends. facebookresearch mit 4056    
https://github.com/COSSAS/Certitude CERTITUDE - A python package to classify malicious URLs COSSAS mpl-2.0 16    
https://github.com/dnSpyEx/dnSpy Unofficial revival of the well known .NET debugger and assembly editor, dnSpy dnSpyEx gpl-3.0 2273    
https://github.com/hrbrmstr/certstream-rust Extract all domains from a CertStream-compatible CTL websockets server to RocksDB hrbrmstr mit 5    
https://github.com/zitadel/zitadel ZITADEL - The best of Auth0 and Keycloak combined. Built for the serverless era. zitadel apache-2.0 1626    
https://github.com/guidovranken/cryptofuzz Fuzzing cryptographic libraries. Magic bug printer go brrrr. guidovranken gpl-3.0 484    
https://github.com/vlang/ui Cross-platform UI library written in V vlang gpl-3.0 1843    
https://github.com/hughsie/libjcat Library for reading and writing Jcat files hughsie lgpl-2.1 14    
https://github.com/kazkansouh/DNSAdmin-DLL Example implementation of DNSAdmin DLL PrivEsc attack kazkansouh gpl-3.0 21    
https://github.com/EttusResearch/uhd The USRP™ Hardware Driver Repository EttusResearch other 720    
https://github.com/nccgroup/Sniffle A sniffer for Bluetooth 5 and 4.x LE nccgroup gpl-3.0 584    
https://github.com/ytisf/BirDuster A multi threaded Python script designed to brute force directories and files names on webservers. ytisf mit 62    
https://github.com/veo/vbackdoor Hide process,port,self under Linux using the ld_preload veo   99    
https://github.com/iThreatopedia/iThreatopedia.github.io A happy place for detection engineers, purple teamers and threat hunters focusing on macOS. iThreatopedia gpl-3.0 17    
https://github.com/squix78/json-streaming-parser Arduino library for parsing potentially huge json streams on devices with scarce memory squix78 mit 191    
https://github.com/HadesW/mhy_exp Mhy Exp (exploit signed driver) HadesW   123    
https://github.com/fkie-cad/socbed A Self-Contained Open-Source Cyberattack Experimentation Testbed fkie-cad gpl-3.0 18    
https://github.com/Nisarg12/Veritas A hex viewer for the sleuths! Nisarg12 mit 5    
https://github.com/rickmark/apple-malicious-baseband Sample of a Malicious baseband signed by Apple rickmark   7    
https://github.com/beerisgood/macOS_Hardening A collection about macOS beerisgood gpl-3.0 39    
https://github.com/llsoftsec/llsoftsecbook Low-Level Software Security for Compiler Developers llsoftsec other 136    
https://github.com/tinylabs/crypto-sat-solve Python framework to solve crypto problems using grainofsalt and cryptominisat tinylabs   10    
https://github.com/westerndigitalcorporation/zenfs ZenFS is a storage backend for RocksDB that enables support for ZNS SSDs and SMR HDDs. westerndigitalcorporation gpl-2.0 136    
https://github.com/lowlighter/metrics 📊 An infographics generator with 30+ plugins and 200+ options to display stats about your GitHub account and render them as SVG, Markdown, PDF or JSON! lowlighter mit 8728    
https://github.com/eurecom-s3/noise-sdr Noise-SDR: Arbitrary Modulation of Electromagnetic Noise from Unprivileged Software and Its Impact on Emission Security eurecom-s3 gpl-3.0 11    
https://github.com/just-the-docs/just-the-docs A modern, high customizable, responsive Jekyll theme for documention with built-in search. just-the-docs mit 5001    
https://github.com/BishopFox/bigip-scanner Determine the running software version of a remote F5 BIG-IP management interface. BishopFox mit 22    
https://github.com/JamesCooteUK/SharpSphere .NET Project for Attacking vCenter JamesCooteUK   467    
https://github.com/lamw/vcenter-event-mapping   lamw   31    
https://github.com/lainsce/notejot Stupidly-simple notes app. lainsce gpl-3.0 320    
https://github.com/ahrm/sioyek Sioyek is a PDF viewer designed for reading research papers and technical books. ahrm gpl-3.0 4087    
https://github.com/badkeys/keypairvuln Private keys generated with vulnerable keypair versions (CVE-2021-41117) badkeys cc0-1.0 3    
https://github.com/alufers/mitmproxy2swagger Automagically reverse-engineer REST APIs via capturing traffic alufers   4042    
https://github.com/demisto/demisto-py Demisto Client for Python demisto apache-2.0 61    
https://github.com/markdoc/markdoc A powerful, flexible, Markdown-based authoring framework. markdoc mit 5552    
https://github.com/COSSAS/dgad DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic COSSAS apache-2.0 24    
https://github.com/KasperskyLab/Apihashes IDA Pro plugin for recognizing known hashes of API function names KasperskyLab other 66    
https://github.com/SciTools/cartopy Cartopy - a cartographic python library with matplotlib support SciTools lgpl-3.0 1124    
https://github.com/mitmproxy/mitmproxy An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers. mitmproxy mit 29166    
https://github.com/CERTCC/VINCE VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordinated vulnerability disclosure. VINCE is a Python-based web platform. CERTCC other 38    
https://github.com/demisto/content Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR’s ever-growing Content Repository. Pull Requests are always welcome and highly appreciated! demisto mit 870    
https://github.com/cilium/tetragon eBPF-based Security Observability and Runtime Enforcement cilium apache-2.0 1902    
https://github.com/mantvydasb/RedTeaming-Tactics-and-Techniques Red Teaming Tactics and Techniques mantvydasb   2762    
https://github.com/hysnsec/awesome-threat-modelling A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review. hysnsec cc0-1.0 778    
https://github.com/ElectronicCats/magspoof MagSpoof is a portable device that can spoof/emulate any magnetic stripe or credit card “wirelessly”, even on standard magstripe readers. ElectronicCats   41    
https://github.com/eCrimeLabs/MISP-autotagging This script when executed searches for organisations with a specific UUID and add a dedicated local tag to the event. eCrimeLabs mit 6    
https://github.com/PacktPublishing/Cleaning-Data-for-Effective-Data-Science Cleaning Data for Effective Data Science, published by Packt PacktPublishing mit 67    
https://github.com/ossf/package-feeds Feed parsing for language package manager updates ossf apache-2.0 51    
https://github.com/ossf/package-analysis Open Source Package Analysis ossf apache-2.0 542    
https://github.com/hmaccelerate/DGA_Detection DGA Detection with ML and DL hmaccelerate mit 22    
https://github.com/RITRedteam/goofkit In line function hooking LKM rootkit RITRedteam mit 44    
https://github.com/pojntfx/keygaen Sign, verify, encrypt and decrypt data with PGP in your browser. pojntfx agpl-3.0 78    
https://github.com/pojntfx/weron Overlay networks based on WebRTC. pojntfx agpl-3.0 1195    
https://github.com/bigb0sss/RedTeam-OffensiveSecurity Tools & Interesting Things for RedTeam Ops bigb0sss mit 1577    
https://github.com/tsale/BlueSploit BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review. tsale apache-2.0 28    
https://github.com/LemmyNet/lemmy 🐀 A link aggregator and forum for the fediverse LemmyNet agpl-3.0 6874    
https://github.com/microsoft/debugpy An implementation of the Debug Adapter Protocol for Python microsoft other 990    
https://github.com/bytecode77/r77-rootkit Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc. bytecode77 bsd-2-clause 929    
https://github.com/jordan2175/rewritecap Tool for rebasing a PCAP file and editing layer2 and layer 3 addresses jordan2175 apache-2.0 15    
https://github.com/JulienPalard/python-versions Studying Python release adoptions by looking at PyPI downloads JulienPalard   9    
https://github.com/jgraph/drawio-desktop Official electron build of draw.io jgraph apache-2.0 34943    
https://github.com/anestisb/vdexExtractor Tool to decompile & extract Android Dex bytecode from Vdex files anestisb apache-2.0 867    
https://github.com/TimMisiak/WinDbgCookbook This is a repo for small, useful scripts and extensions TimMisiak mit 167    
https://github.com/bbayles/network-finder Python library to match IP addresses to encompassing networks bbayles mit 4    
https://github.com/nomi-sec/PoC-in-GitHub 📡 PoC auto collect from GitHub. ⚠️ Be careful Malware. nomi-sec   4474    
https://github.com/hometown-fork/hometown A supported fork of Mastodon that provides local posting and a wider range of content types. hometown-fork agpl-3.0 388    
https://github.com/0xbitx/dedsecimsi sms sniffer and imsi catcher 0xbitx   38    
https://github.com/mikeroyal/Digital-Forensics-Guide Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics. mikeroyal   654    
https://github.com/xoolive/traffic A toolbox for processing and analysing air traffic data xoolive mit 251    
https://github.com/lyusupov/SoftRF :airplane: Multi-functional, compatible DIY general aviation proximity awareness system lyusupov gpl-3.0 515    
https://github.com/utkusen/wholeaked a file-sharing tool that allows you to find the responsible person in case of a leakage utkusen bsd-3-clause 722    
https://github.com/D4stiny/spectre A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine. D4stiny gpl-3.0 553    
https://github.com/the-h3x/H3X-CCTV Good dork to find vulnerable CCTV cameras the-h3x   55    
https://github.com/quickwit-oss/quickwit Cloud-native search engine for log management & analytics quickwit-oss other 2624    
https://github.com/oriansj/stage0 A set of minimal dependency bootstrap binaries oriansj gpl-3.0 787    
https://github.com/RITRedteam/Father LD_PRELOAD rootkit RITRedteam unlicense 8    
https://github.com/marcnewlin/human-detector-detector proof-of-concept firmware to stream IQ over USB from Seeed MR24D11C10 radar module marcnewlin mit 24    
https://github.com/Saul-Mirone/milkdown 🍼 Plugin driven WYSIWYG markdown editor framework. Saul-Mirone mit 6766    
https://github.com/Zeex/subhook Simple hooking library for C/C++ (x86 only, 32/64-bit, no dependencies) Zeex bsd-2-clause 646    
https://github.com/cas1m1r/Titleist Finding suspicious domains as they are registereed cas1m1r   4    
https://github.com/degrigis/awesome-angr A collection of resources/tools and analyses for the angr binary analysis framework. degrigis   94    
https://github.com/1N3/IntruderPayloads A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists. 1N3   3133    
https://github.com/shubham0d/low-level-hooker A linux kernel funtions hooking module shubham0d mit 10    
https://github.com/aaronkaplan/yaccviso A tool for visualizing yacc grammars by Aaron Kaplan (Modified slightly by me modify to build and not crash on macs) aaronkaplan gpl-2.0 7    
https://github.com/microsoft/restler-fuzzer RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services. microsoft mit 1789    
https://github.com/Leeon123/CC-attack Using Socks4/5 or http proxies to make a multithreading Http-flood/Https-flood (cc) attack. Leeon123 gpl-2.0 594    
https://github.com/janestreet/magic-trace magic-trace collects and displays high-resolution traces of what a process is doing janestreet mit 3902    
https://github.com/Lookyloo/PlaywrightCapture Capture a URL with Playwright Lookyloo other 8    
https://github.com/0x4D31/hassh-utils hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hassh) 0x4D31 bsd-3-clause 44    
https://github.com/bagder/uncurled Uncurled - everything I know and learned about running and maintaining Open Source projects for three decades. bagder cc-by-4.0 448    
https://github.com/GaloisInc/reopt A tool for analyzing x86-64 binaries. GaloisInc bsd-3-clause 260    
https://github.com/tillson/git-hound Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system. tillson mit 917    
https://github.com/mechanicalnull/phantasm Binary Ninja plugin for visualizing coverage over time mechanicalnull mit 16    
https://github.com/vmallet/ida-plugins An interactive list of plugins for hex-rays’ IDA Pro vmallet mit 92    
https://github.com/Cisco-Talos/binary_function_similarity   Cisco-Talos mit 119    
https://github.com/pump-io/pump.io Social server with an ActivityStreams API pump-io apache-2.0 2129    
https://github.com/alecalve/python-bitcoin-blockchain-parser A Python 3 Bitcoin blockchain parser alecalve other 387    
https://github.com/sebdraven/IOCmite Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert sebdraven mit 26    
https://github.com/telekom-security/misp-releases   telekom-security   5    
https://github.com/aleprada/otx_2_misp Script for gathering IoCs from OTX (AlienVault) and sending them to MISP. aleprada   10    
https://github.com/monarc-project/ansible-ubuntu Deployment of MONARC with Ansible monarc-project   2    
https://github.com/krsh/seer Seer is a tool that recognizes the architecture of a binary file krsh bsd-3-clause 85    
https://github.com/cloudsecurityalliance/gsd-database Global Security Database cloudsecurityalliance cc0-1.0 176    
https://github.com/trinodb/trino Official repository of Trino, the distributed SQL query engine for big data, formerly known as PrestoSQL (https://trino.io) trinodb apache-2.0 6459    
https://github.com/FelixBer/FindFunc FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string, or conform to various other constraints. FelixBer   197    
https://github.com/IRATEAU/sam-bot Bot to create MISP events from data in Slack IRATEAU   16    
https://github.com/forensicanalysis/artifactcollector 🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system forensicanalysis mit 173    
https://github.com/PostgREST/postgrest REST API for any Postgres database PostgREST mit 19381    
https://github.com/NextronSystems/evtx-baseline A repository hosting example goodware evtx logs containing sample software installation and basic user interaction NextronSystems apache-2.0 39    
https://github.com/sourque/louis Linux EDR written in Golang and based on eBPF. sourque gpl-2.0 212    
https://github.com/jcrona/rf-ctrl A command-line tool to control 433MHz OOK based devices jcrona gpl-2.0 40    
https://github.com/abusix/xarf XARF - eXtended Abuse Reporting Format abusix mit 60    
https://github.com/ostafen/clover A lightweight document-oriented NoSQL database written in pure Golang. ostafen mit 284    
https://github.com/8C/skypehunt OSINT Framework for Skype     61    
https://github.com/firefart/stunner Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers. firefart other 541    
https://github.com/nesosuke/mastodon-install-script 誰でもMastodonサーバーを立てられるようになるやつ(主語デカ) nesosuke gpl-3.0 13    
https://github.com/minimaxir/big-list-of-naughty-strings The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data. minimaxir mit 44087    
https://github.com/Perdu/wombat Wi-Fi tracking system for testing and demonstrational purpose Perdu gpl-3.0 26    
https://github.com/d3sre/Use_Case_Applicability Security Monitoring Resolution Categories d3sre   131    
https://github.com/CAIDA/dbats DataBase of Aggregated Time Series CAIDA other 2    
https://github.com/kyleavery/TitanLdr Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality. kyleavery   97    
https://github.com/bartblaze/Yara-rules Collection of private Yara rules. bartblaze mit 168    
https://github.com/al0ne/Vxscan python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。 al0ne apache-2.0 1518    
https://github.com/infinitumitlabs/Karakurt-Hacking-Team-CTI IOC Data Obtained From Karakurt Hacking Team’s Internal Infrastructure infinitumitlabs mit 30    
https://github.com/joshhighet/ransomwatch a ransomware-group observatory 🧅👹 joshhighet unlicense 208    
https://github.com/DataDog/security-labs-pocs Proof of concept code for Datadog Security Labs referenced exploits. DataDog other 305    
https://github.com/hash3liZer/SillyRAT A Cross Platform multifunctional (Windows/Linux/Mac) RAT. hash3liZer mit 520    
https://github.com/easystats/correlation :link: Methods for Correlation Analysis easystats gpl-3.0 356    
https://github.com/herosi/CDIR CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library herosi gpl-2.0 5    
https://github.com/m0n0ph1/Process-Hollowing Great explanation of Process Hollowing (a Technique often used in Malware) m0n0ph1   760    
https://github.com/mnrkbys/macosac Forensic Artifact Collection Tool for macOS mnrkbys apache-2.0 58    
https://github.com/mandiant/thiri-notebook The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat hunting rules. mandiant apache-2.0 129    
https://github.com/f4exb/sdrangel SDR Rx/Tx software for Airspy, Airspy HF+, BladeRF, HackRF, LimeSDR, PlutoSDR, RTL-SDR, SDRplay RSP1 and FunCube f4exb gpl-3.0 1660    
https://github.com/stopipv/isdi ISDi (IPV Spyware Discovery) tool for Android and iOS. stopipv mit 97    
https://github.com/arsium/EagleMonitorRAT Remote Access Tool Written In C# arsium agpl-3.0 267    
https://github.com/packetrat/packethunting Resources and materials for DEF CON 2018 Packet Hunting Workshop packetrat   75    
https://github.com/bloomberg/fast-noise-aware-topic-clustering Research code and scripts used in the Silburt et al. (2021) EMNLP 2021 paper ‘FANATIC: FAst Noise-Aware TopIc Clustering’ bloomberg apache-2.0 7    
https://github.com/bloomberg/memray Memray is a memory profiler for Python bloomberg apache-2.0 9504    
https://github.com/uber/orbit A Python package for Bayesian forecasting with object-oriented design and probabilistic models under the hood. uber other 1508    
https://github.com/hmatuschek/ATU Simple, portable automatic antenna tuner hmatuschek other 9    
https://github.com/JohnWoodman/VBA-Macro-Reverse-Shell Fully functioning reverse shell written entirely in VBA. JohnWoodman   72    
https://github.com/danghvu/pwp Python Web framework P0wner danghvu   73    
https://github.com/adamgreig/ecpdap ECPDAP allows you to program ECP5 FPGAs and attached SPI flash using CMSIS-DAP probes in JTAG mode. adamgreig apache-2.0 38    
https://github.com/natesales/q A tiny command line DNS client with support for UDP, TCP, DoT, DoH, DoQ and ODoH. natesales gpl-3.0 898    
https://github.com/0xdea/semgrep-rules A collection of my Semgrep rules to facilitate vulnerability research. 0xdea mit 239    
https://github.com/tsafavi/codex CoDEx: A set of knowledge graph Completion Datasets Extracted from Wikidata and Wikipedia tsafavi mit 109    
https://github.com/SECFORCE/sftp-exploit OpenSSH <=6.6 SFTP misconfiguration universal exploit SECFORCE   27    
https://github.com/felixwilhelm/mario_baslr PoC for breaking hypervisor ASLR using branch target buffer collisions felixwilhelm   163    
https://github.com/WB2CBA/ADX ADX - Arduino Digital Modes HF Transceiver WB2CBA   32    
https://github.com/yoeo/guesslang Detect the programming language of a source code yoeo mit 600    
https://github.com/G73st/BypassAV c++ shellcode loader G73st   63    
https://github.com/Hadi999/NXcrypt NXcrypt - ‘python backdoor’ framework Hadi999   352    
https://github.com/cdimascio/py-readability-metrics 📗 Score text readability using a number of formulas: Flesch-Kincaid Grade Level, Gunning Fog, ARI, Dale Chall, SMOG, and more cdimascio mit 233    
https://github.com/marktext/marktext 📝A simple and elegant markdown editor, available for Linux, macOS and Windows. marktext mit 36838    
https://github.com/trailofbits/pe-parse Principled, lightweight C/C++ PE parser trailofbits mit 590    
https://github.com/arget13/DDexec A technique to run binaries filelessly and stealthily on Linux using dd to replace the shell with another process. arget13 gpl-3.0 439    
https://github.com/ka9q/ka9q-radio Multichannel SDR based on fast convolution and IP multicasting ka9q gpl-3.0 60    
https://github.com/iamckn/backdoors Simple linux backdoors and hiding techniques iamckn   202    
https://github.com/vasturiano/react-force-graph React component for 2D, 3D, VR and AR force directed graphs vasturiano mit 1248    
https://github.com/dpalmasan/TRUNAJOD2.0 An easy-to-use library to extract indices from texts. dpalmasan mit 22    
https://github.com/bonjourmalware/melody Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulation. bonjourmalware mit 138    
https://github.com/kagancapar/CVE-2022-29072 7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. kagancapar gpl-3.0 673    
https://github.com/giladreich/ida_migrator IDA Migrator is an IDA Pro plugin which helps migrate existing work from one database instance to another. It Conveniently migrates function names, structures and enums. giladreich mit 65    
https://github.com/g3gg0/dump1090 Dump1090 is a simple Mode S decoder for RTLSDR devices g3gg0 other 1    
https://github.com/CERT-Polska/training-mwdb MWDB exercises CERT-Polska   14    
https://github.com/microsoft/playwright Playwright is a framework for Web Testing and Automation. It allows testing Chromium, Firefox and WebKit with a single API. microsoft apache-2.0 44063    
https://github.com/httpie/httpie 🥧 HTTPie for Terminal — modern, user-friendly command-line HTTP client for the API era. JSON support, colors, sessions, downloads, plugins & more. httpie bsd-3-clause 24541    
https://github.com/ssdeep-project/ssdeep Fuzzy hashing API and fuzzy hashing tool ssdeep-project gpl-2.0 498    
https://github.com/renatolond/mastodon-twitter-poster Crossposter to post statuses between Mastodon and Twitter renatolond agpl-3.0 567    
https://github.com/woodruffw/steg86 Hiding messages in x86 programs using semantic duals woodruffw other 206    
https://github.com/cloudtools/ssh-cert-authority An implementation of an SSH certificate authority. cloudtools bsd-2-clause 698    
https://github.com/J535D165/recordlinkage A powerful and modular toolkit for record linkage and duplicate detection in Python J535D165 bsd-3-clause 725    
https://github.com/Johnng007/Live-Forensicator Powershell Script to aid Incidence Response and Live Forensics Johnng007   310    
https://github.com/dnote/dnote A simple command line notebook for programmers dnote other 2396    
https://github.com/ve7it/STM32F769-FT8-Transceiver A DSP SDR project using a STM32f769 Disco board to field a self contained FT8 Transceiver utilizing SoftRock, UHFSDR , HobbyPCB RS-HFIQ SDR Transceiver Board and other SDR boards. ve7it   3    
https://github.com/ietf-tools/relaton-data-3gpp 3GPP data in Relaton format ietf-tools   3    
https://github.com/VollRagm/lpmapper A mapper that maps shellcode into loaded large page drivers VollRagm mit 112    
https://github.com/hakluke/hakrawler Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application hakluke gpl-3.0 3315    
https://github.com/JustinAzoff/pynfdump python wrapper for the nfdump cli application JustinAzoff   21    
https://github.com/omerbenamram/evtx A Fast (and safe) parser for the Windows XML Event Log (EVTX) format omerbenamram apache-2.0 402    
https://github.com/greatscottgadgets/libbtbb A Bluetooth baseband decoding library greatscottgadgets gpl-2.0 163    
https://github.com/martynvdijke/gr-lora_sdr This is the fully-functional GNU Radio software-defined radio (SDR) implementation of a LoRa transceiver with all the necessary transceiver components to operate correctly even at very low SNRs. This work is a collaboration of the Telecommunication Circuits Laboratory from EPFL and the Electronic Systems group from the Technical University of Eindhoven. martynvdijke gpl-3.0 19    
https://github.com/sbz/elfdbg Utility to determine if ELF binary is built with debug sections sbz   8    
https://github.com/jeffssh/exploits Mega repo for exploit development. Contains individual exploits and libraries to assist during exploitation jeffssh   19    
https://github.com/WhiteHSBG/JNDIExploit 对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改 WhiteHSBG   642    
https://github.com/Microsvuln/NtQuerySection-sample Retrieve Memory mapped file size on windows with NtQuerySection and _SECTION_BASIC_INFORMATION Microsvuln   1    
https://github.com/aemmitt-ns/radius radius2 is a fast binary emulation and symbolic execution framework using radare2 aemmitt-ns mit 295    
https://github.com/arthepsy/CVE-2021-4034 PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034) arthepsy   918    
https://github.com/cyrus-and/chrome-har-capturer Capture HAR files from a Chrome instance cyrus-and mit 479    
https://github.com/pyppeteer/pyppeteer Headless chrome/chromium automation library (unofficial port of puppeteer) pyppeteer other 2709    
https://github.com/Lissy93/personal-security-checklist 🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2022 Lissy93 other 9864    
https://github.com/hpuhr/COMPASS The OpenATS COMPASS (Compliance Assessment) tool aims at providing a generalized framework for air-traffic surveillance data analysis, visualization & evaluation. hpuhr gpl-3.0 58    
https://github.com/hpuhr/jASTERIX C++ Library for EUROCONTROL’s ASTERIX to JSON conversion. hpuhr gpl-3.0 23    
https://github.com/junzis/pyModeS Python decoder for Mode S and ADS-B signals junzis gpl-3.0 407    
https://github.com/ampledata/adsbcot ADS-B to Cursor on Target Gateway for TAK Products, including ATAK, WinTAK & iTAK. ampledata other 31    
https://github.com/TomerEven/Prefix-Filter Prefix Filter: Practically and Theoretically Better Than Bloom. TomerEven other 31    
https://github.com/NextronSystems/ransomware-simulator Ransomware simulator written in Golang NextronSystems mit 273    
https://github.com/DSecureMe/vmc VMC: a Scalable, Open Source and Free Vulnerability Management Platform DSecureMe apache-2.0 47    
https://github.com/dataplane/serverhosting Server hosting providers dataplane   22    
https://github.com/pathtofile/bad-bpf A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29 pathtofile bsd-3-clause 280    
https://github.com/s0md3v/Smap a drop-in replacement for Nmap powered by shodan.io s0md3v agpl-3.0 2237    
https://github.com/adamsvoboda/nim-loader WIP shellcode loader in nim with EDR evasion techniques adamsvoboda   158    
https://github.com/emptymonkey/revsh A reverse shell with terminal support, data tunneling, and advanced pivoting capabilities. emptymonkey mit 441    
https://github.com/csababarta/ntdsxtract Active Directory forensic framework csababarta gpl-3.0 269    
https://github.com/purocean/yn A Hackable Markdown Note Application for Programmers. Version control, AI completion, mind map, documents encryption, code snippet running, integrated terminal, chart embedding, HTML applets, Reveal.js, plug-in, and macro replacement. purocean agpl-3.0 4133    
https://github.com/krisnova/boopkit Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin. krisnova apache-2.0 1228    
https://github.com/danobot/notorious Offline-first note taking and knowledge management application for desktop and the web. Supports nested notebooks, tags, real-time sync, images and file attachments. Optimised for efficiency with keyboard navigation, full-text search and version control. Never lose a thought. Private, fast, notorious 😈 danobot gpl-3.0 74    
https://github.com/opensanctions/bods-ftm Import OpenOwnership BODS data opensanctions   5    
https://github.com/Guenael/rtlsdr-ft8d FT8 decoder of RTL devices Guenael   23    
https://github.com/CycloneDX/bom-examples A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc) CycloneDX cc0-1.0 63    
https://github.com/andrewjkerr/security-cheatsheets 🔒 A collection of cheatsheets for various infosec tools and topics. andrewjkerr mit 1007    
https://github.com/hashlookup/hashlookup-nsrl hashlookup-nsrl is a NSRL RDSv3 importer for hashlookup server hashlookup other 4    
https://github.com/CYBERDEVILZ/Cryptonite A ransomware created for Windows OS. It is easy to test in a safe environment before deploying it to the victims. Developed using Python CYBERDEVILZ mit 119    
https://github.com/mikeroyal/Open-Source-Security-Guide Open Source Security Guide. Learn all about Security Standards, Frameworks, Threat Models, Encryption, and Benchmarks. mikeroyal   602    
https://github.com/david-oswald/iot-fw-extraction Additional material for our paper “Breaking all the Things - A Systematic Survey of Firmware Extraction Techniques for IoT Devices” (CARDIS 2018) david-oswald   13    
https://github.com/github/securitylab Resources related to GitHub Security Lab github mit 1007    
https://github.com/cube0x0/MiniDump C# Lsass parser cube0x0   227    
https://github.com/lscardoso/gr-dsmx-rc GNU Radio RC DSMX decoder lscardoso   10    
https://github.com/nullt3r/jfscan JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap’s scripting abilities to discover information about services. Generate report. nullt3r mit 348    
https://github.com/amitschendel/venom-rootkit A simple Windows kernel rootkit. amitschendel   64    
https://github.com/uf0o/PykDumper Dumping credentials through windbg and pykd uf0o   34    
https://github.com/MISP/misp-grafana A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB MISP agpl-3.0 9    
https://github.com/snovvcrash/KeeThief Methods for attacking KeePass 2.X databases, including extracting of encryption key material from memory. snovvcrash bsd-3-clause 78    
https://github.com/nesg-ugr/c4darknet   nesg-ugr other 9    
https://github.com/HLasse/TextDescriptives A Python library for calculating a large variety of statistics from text HLasse apache-2.0 142    
https://github.com/sourcefrenchy/goqrexfil A mini project to exfiltrate data via QR codes sourcefrenchy mit 19    
https://github.com/hillu/local-spring-vuln-scanner Simple local scanner for applications containing vulnerable Spring libraries hillu gpl-3.0 130    
https://github.com/pre-commit/pre-commit A framework for managing and maintaining multi-language pre-commit hooks. pre-commit mit 9092    
https://github.com/uforia/exitgather Tool for automatic list generation of known TOR and VPN exit nodes uforia gpl-2.0 25    
https://github.com/log2timeline/plaso Super timeline all the things log2timeline apache-2.0 1363    
https://github.com/molly/static-timeline-generator Create static timeline webpages. molly mit 169    
https://github.com/graniet/operative-framework operative framework is a investigation OSINT framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules. graniet apache-2.0 591    
https://github.com/MISP/misp-usage-statistics MISP usage statistics using bokeh (as a static webpage) MISP bsd-2-clause 3    
https://github.com/chaosec2021/Spring-cloud-function-SpEL-RCE Spring-cloud-function-SpEL-RCE 批量检测脚本,反弹shell_EXP,欢迎师傅们试用 chaosec2021   239    
https://github.com/0xsp-SRD/OffensivePascal Pascal Offsec repo for malware dev and red teaming 🚩 0xsp-SRD   122    
https://github.com/Neo23x0/panopticon A YARA Rule Performance Measurement Tool Neo23x0 mit 51    
https://github.com/caliskanfurkan/quick-ir Python and WMI based incident response script caliskanfurkan   4    
https://github.com/disclose/bug-bounty-platforms A community-powered collection of all known bug bounty platforms, vulnerability disclosure platforms, and crowdsourced security platforms currently active on the Internet. disclose cc0-1.0 200    
https://github.com/mumble-voip/mumble Mumble is an open-source, low-latency, high quality voice chat software. mumble-voip other 5076    
https://github.com/JustasMasiulis/ida_bitfields IDA Pro plugin to make bitfield accesses easier to grep JustasMasiulis mpl-2.0 172    
https://github.com/Wilfred/difftastic a structural diff that understands syntax 🟥🟩 Wilfred mit 13362    
https://github.com/Ostorlab/ostorlab Ostorlab is a security scanning orchestrator for the modern age. Ostorlab apache-2.0 255    
https://github.com/bohops/SharpRDPHijack A POC Remote Desktop (RDP) session hijack utility for disconnected sessions bohops bsd-3-clause 323    
https://github.com/Bonfee/CVE-2022-0995 CVE-2022-0995 exploit Bonfee   483    
https://github.com/nsbogam/CVE-2022-26269 Suzuki connect app is used to get the car information like Fuel, Ignition status, Current location, Seat buckle status etc. In Ignis, Zeta variant car if the Fuel CAN messages and Seat buckle status is spoofed via OBD 2 port with the crafted value (e.g. zero percent fuel and Car seat is buckled ), then the same value is reflected on Suzuki connect app, which can mislead the user. nsbogam   2    
https://github.com/o1mate/AppLocker-Bypass Bypassing AppLocker with C# o1mate   131    
https://github.com/hktalent/spring-spel-0day-poc spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963 hktalent   340    
https://github.com/ehids/ecapture capture SSL/TLS text content without CA cert using eBPF. supports Linux x86_64/Aarch64, Android Aarch64. ehids agpl-3.0 4972    
https://github.com/saferwall/yara-rules Collection of Yara Rules saferwall apache-2.0 3    
https://github.com/soxoj/tiktok-scraper TikTok Scraper. Download video posts, collect user/trend/hashtag/music feed metadata, sign URL and etc. soxoj   39    
https://github.com/alexcard144803/KasperskyHook_NewKSDriver Started from https://github.com/iPower/KasperskyHook i updated sig and kaspersky driver alexcard144803   11    
https://github.com/vxunderground/VX-API Collection of various WINAPI tricks / features used or abused by Malware vxunderground   1207    
https://github.com/daniestevez/galileo-osnma Galileo OSNMA (Open Service Navigation Message Authentication) daniestevez apache-2.0 24    
https://github.com/hashlookup/hashlookup-lib hashlookup insert pipeline Python library hashlookup agpl-3.0 6    
https://github.com/P1sec/gea-implementation Implementations of the GEA-1 and GEA-2 (GPRS Encryption Algorithm) stream ciphers in C, Python and Rust. P1sec agpl-3.0 12    
https://github.com/gnuradio/gr-inspector Signal Analysis Toolbox for GNU Radio gnuradio gpl-3.0 230    
https://github.com/crytic/not-so-smart-contracts Examples of Solidity security issues crytic apache-2.0 1754    
https://github.com/gfek/Real-CyberSecurity-Datasets Public datasets to help you address various cyber security problems. gfek   95    
https://github.com/xpn/getsystem-offline Small tool to get a SYSTEM shell xpn   113    
https://github.com/bkerler/gr-atsc2 GNURadio TS Streaming server block that can be used to watch ATSC TV streams with a player like VLC in real-time provided your system can handle the processing of the rest of the flowgraph. bkerler gpl-3.0 3    
https://github.com/ghostop14/gr-xcorrelate GNURadio OOT Module Providing Signal Cross-Correlation ghostop14 gpl-3.0 14    
https://github.com/ghostop14/gr-correctiq GNURadio blocks to remove that IQ DC spike just like some software and drivers do! Three techniques available: auto, auto-tune to dc offset, and manual. ghostop14 gpl-3.0 68    
https://github.com/welk1n/JNDI-Injection-Exploit JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc) welk1n mit 2039    
https://github.com/cure53/Contracts A small collection of potentially useful contract templates cure53   299    
https://github.com/steakknife/bloomfilter Face-meltingly fast, thread-safe, marshalable, unionable, probability- and optimal-size-calculating Bloom filter in go steakknife mit 340    
https://github.com/tcostam/awesome-command-control A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assessments. tcostam   276    
https://github.com/PaloAltoNetworks/tcpsession A python library to extract TCP sessions from PCAPs. PaloAltoNetworks mit 12    
https://github.com/caiiiycuk/httpflow httpflow - extract http requests from tcpflow output caiiiycuk   8    
https://github.com/fpietrosanti/kaspersky-risks Risk Evaluation of Kaspersky related Risk, if subject to Coercion by Russian Government for Intelligence and Military Purposes fpietrosanti   7    
https://github.com/andrmuel/gr-dab GNU Radio DAB (digital audio broadcasting) module andrmuel gpl-3.0 73    
https://github.com/angr/binsync A collaborative reversing plugin for cross-decompiler collaboration, built on git. angr bsd-2-clause 122    
https://github.com/atlas0fd00m/rfcat RfCat - swiss-army knife of ISM band radio atlas0fd00m other 439    
https://github.com/axiros/terminal_markdown_viewer Styled Terminal Markdown Viewer axiros other 1651    
https://github.com/rushter/selectolax Python binding to Modest and Lexbor engines (fast HTML5 parser with CSS selectors). rushter mit 619    
https://github.com/awslabs/open-data-registry A registry of publicly available datasets on AWS awslabs apache-2.0 1036    
https://github.com/snovvcrash/OffensivePipeline OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises. snovvcrash gpl-3.0 79    
https://github.com/JPCERTCC/MalConfScan Volatility plugin for extracts configuration data of known malware JPCERTCC other 436    
https://github.com/m-chrome/py-suricataparser Pure python parser for Snort/Suricata rules. m-chrome apache-2.0 10    
https://github.com/0xADE1A1DE/AssemblyLine A C library and binary for generating machine code of x86_64 assembly language and executing on the fly without invoking another compiler, assembler or linker. 0xADE1A1DE apache-2.0 151    
https://github.com/alexandria-org/alexandria Full text search engine powering Alexandria.org - the open search engine. alexandria-org other 151    
https://github.com/karma9874/AndroRAT A Simple android remote administration tool using sockets. It uses java on the client side and python on the server side karma9874 mit 1310    
https://github.com/nadavrot/layout Layout is a rust library and a command line tool that renders Graphviz dot files. nadavrot mit 505    
https://github.com/claroty/arya Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA. claroty mit 161    
https://github.com/Sc00bz/break-uheprng Attack code for UHEPRNG (Ultra High Entropy Pseudo-Random Number Generator) Sc00bz mit 5    
https://github.com/Sc00bz/copilot-hash-collider   Sc00bz mit 24    
https://github.com/post-cyberlabs/Offensive_tools   post-cyberlabs   268    
https://github.com/opensemanticsearch/open-semantic-entity-search-api Open Source REST API for named entity extraction, named entity linking, named entity disambiguation, recommendation & reconciliation of entities like persons, organizations and places for (semi)automatic semantic tagging & analysis of documents by linked data knowledge graph like SKOS thesaurus, RDF ontology, database(s) or list(s) of names opensemanticsearch gpl-3.0 142    
https://github.com/tkuester/gr-lacrosse GNU Radio module for La Crosse weather stations. tkuester   21    
https://github.com/FunnyWolf/Viper Redteam operation platform with webui 图形化红队行动辅助平台 FunnyWolf bsd-3-clause 2626    
https://github.com/knownsec/404StarLink 404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目 knownsec   4225    
https://github.com/BeichenDream/InjectJDBC 注入JVM进程 动态获取目标进程连接的数据库 BeichenDream   237    
https://github.com/BeichenDream/BadPotato Windows 权限提升 BadPotato BeichenDream   570    
https://github.com/MISP/misp-training-lea Practical Information Sharing between Law Enforcement and CSIRT communities using MISP MISP   22    
https://github.com/khast3x/h8mail Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email khast3x other 2809    
https://github.com/D4Vinci/Cuteit IP obfuscator made to make a malicious ip a bit cuter D4Vinci gpl-3.0 515    
https://github.com/CalfCrusher/Poiana Meterpreter Reverse shell over TOR network using hidden services CalfCrusher mit 76    
https://github.com/r00tten/VTI-Cosplay Low budget VirusTotal Intelligence Cosplay r00tten gpl-3.0 20    
https://github.com/mpolden/echoip IP address lookup service mpolden bsd-3-clause 3598    
https://github.com/log2timeline/dfimagetools Collection of tools for processing storage media images log2timeline apache-2.0 6    
https://github.com/mttaggart/wtfbins WTF are these binaries doing?! A list of benign applications that mimic malicious behavior. mttaggart mit 62    
https://github.com/zeroSteiner/mayhem Runtime Process Manipulation zeroSteiner bsd-3-clause 216    
https://github.com/mborgerson/mdec Decompilation as a Service. Explore multiple decompilers and compare their output with minimal effort. Upload binary, get decompilation. mborgerson other 414    
https://github.com/cocaman/russian_root_ca   cocaman   5    
https://github.com/sysdream/ligolo Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/ sysdream gpl-3.0 1270    
https://github.com/cesena/ghidra2dwarf 🐉 Export ghidra decompiled code to dwarf sections inside ELF binary cesena mit 133    
https://github.com/net-protect/google-fs-recover Google Filestream Forensic Tool net-protect mit 14    
https://github.com/flesueur/mi-lxc Mini-Internet using LXC for practical works flesueur agpl-3.0 327    
https://github.com/emanuele-f/PCAPdroid No-root network monitor, firewall and PCAP dumper for Android emanuele-f gpl-3.0 742    
https://github.com/simonw/shot-scraper A command-line utility for taking automated screenshots of websites simonw apache-2.0 760    
https://github.com/cube0x0/SyscallPack BOF and Shellcode for full DLL unhooking using dynamic syscalls cube0x0   229    
https://github.com/r-cybersecurity/list-of-security-resources-for-ukraine List of companies or individuals offering cybersecurity services, data, or other tangible assets to assist in Ukraine’s defense of its independence. r-cybersecurity other 68    
https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit A root exploit for CVE-2022-0847 (Dirty Pipe) Arinerron gpl-2.0 989    
https://github.com/midnightslacker/exploit_training The best resources for learning exploit development midnightslacker   63    
https://github.com/thewhiteninja/ntfstool Forensics tool for NTFS (parser, mft, bitlocker, deleted files) thewhiteninja mit 288    
https://github.com/ail-project/ail-feeder-atom-rss   ail-project   2    
https://github.com/TomWright/dasel Select, put and delete data from JSON, TOML, YAML, XML and CSV files with a single tool. Supports conversion between formats and can be used as a Go package. TomWright mit 3768    
https://github.com/vgo0/nginx-backdoor Example nginx backdoor via malicious plugin vgo0   19    
https://github.com/DavidBuchanan314/libleakmydata A simple LD_PRELOAD library to disable SSL certificate verification. Inspired by libeatmydata. DavidBuchanan314 mit 153    
https://github.com/8051Enthusiast/biodiff Hex diff viewer using alignment algorithms from biology 8051Enthusiast mit 478    
https://github.com/armvirus/SinMapper usermode driver mapper that forcefully loads any signed kernel driver (legit cert) with a big enough section (example: .data, .rdata) to map your driver over. the main focus of this project is to prevent modern anti-cheats (BattlEye, EAC) from finding your driver and having the power to hook anything due to being inside of legit memory (signed legit driver). armvirus   160    
https://github.com/jazzband/prettytable Display tabular data in a visually appealing ASCII table format jazzband other 878    
https://github.com/crmulliner/adbi Android Dynamic Binary Instrumentation Toolkit crmulliner   1214    
https://github.com/cryptax/misc-code Miscellaneous code cryptax   58    
https://github.com/Cybernite-Technologies/trickbot-leak Repo for archiving research and investigation related to the recent Trickbot leaks. Cybernite-Technologies gpl-3.0 54    
https://github.com/trisulnsm/apps Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics. trisulnsm   13    
https://github.com/binarly-io/FwHunt The Binarly Firmware Hunt (FwHunt) rule format was designed to scan for known vulnerabilities in UEFI firmware. binarly-io cc0-1.0 143    
https://github.com/vinhjaxt/eBPF-sockmap-proxy eBPF Sockmap Proxy vinhjaxt   9    
https://github.com/qeeqbox/url-sandbox Scalable URL Sandbox for analyzing URLs and Domains from phishing attacks qeeqbox agpl-3.0 114    
https://github.com/defaultnamehere/cookie_crimes Read local Chrome cookies without root or decrypting defaultnamehere mit 506    
https://github.com/DynamiteAI/dynamite-nsm DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection DynamiteAI gpl-3.0 139    
https://github.com/Gerapy/Gerapy Distributed Crawler Management Framework Based on Scrapy, Scrapyd, Django and Vue.js Gerapy mit 2849    
https://github.com/mgdm/htmlq Like jq, but for HTML. mgdm mit 6172    
https://github.com/kimci86/bkcrack Crack legacy zip encryption with Biham and Kocher’s known plaintext attack. kimci86 zlib 786    
https://github.com/QAX-A-Team/openssh-7.6p1-patch a patched sshd for red team activities QAX-A-Team   66    
https://github.com/MISP/dockerized_training_environment A training environment, with docker. MISP mit 7    
https://github.com/eset/malware-research Code written as part of our various malware investigations eset bsd-2-clause 322    
https://github.com/opengs/uashield Voluntary Ukraine security platform to protect us from Russian forces in the Internet opengs unlicense 1089    
https://github.com/hashcat/princeprocessor Standalone password candidate generator using the PRINCE algorithm hashcat other 358    
https://github.com/cudeso/misp-tip-of-the-week A collection of tips for using MISP. cudeso   41    
https://github.com/SMAT-Lab/Scalpel Scalpel: The Python Static Analysis Framework SMAT-Lab apache-2.0 167    
https://github.com/hackerschoice/gsocket-relay Global Socket Server hackerschoice other 13    
https://github.com/hackerschoice/gsocket Connect like there is no firewall. Securely. hackerschoice bsd-2-clause 982    
https://github.com/adipinto/HP-Data-Protector-RCE HP Data Protector Arbitrary Remote Command Execution adipinto   11    
https://github.com/cxnder/bn-dyldsharedcache dyld_shared_cache processing / Single-Image loading for BinaryNinja cxnder mit 74    
https://github.com/mandiant/ADFSDump   mandiant apache-2.0 231    
https://github.com/erkexzcx/stoppropaganda A special DOS application to stop pro-Russian aggression websites. Support Ukraine! erkexzcx gpl-3.0 465    
https://github.com/ajax-lives/NoRussian Volunteer DoS tool via HTML + JS ajax-lives gpl-3.0 399    
https://github.com/Orange-Cyberdefense/russia-ukraine_IOCs Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake Orange-Cyberdefense   155    
https://github.com/curated-intel/Ukraine-Cyber-Operations Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine. curated-intel   845    
https://github.com/ail-project/ail-feeder-twitter External twitter feeder for AIL framework ail-project agpl-3.0 16    
https://github.com/ail-project/twint An advanced Twitter scraping & OSINT tool written in Python that doesn’t use Twitter’s API, allowing you to scrape a user’s followers, following, Tweets and more while evading most API limitations. ail-project mit 13    
https://github.com/deathau/markdownload A Firefox and Google Chrome extension to clip websites and download them into a readable markdown file. deathau apache-2.0 1120    
https://github.com/dashingsoft/pyarmor A tool used to obfuscate python scripts, bind obfuscated scripts to fixed machine or expire obfuscated scripts. dashingsoft other 1833    
https://github.com/ail-project/ail-feeder-ct Ail feeder for certificate transparency ail-project   2    
https://github.com/rjbhide/wireshark-forensics-plugin   rjbhide   82    
https://github.com/ail-project/ail-feeder-github-repo AIL feeder for GitHub Repository ail-project   1    
https://github.com/aaronkaplan/countryblocker simple scripts which fetch CIDR blocks by country code and add them to iptables/ipset blocklists aaronkaplan gpl-3.0 8    
https://github.com/flrs/visavail A D3.js Time Data Availability Visualization flrs mit 280    
https://github.com/github/advisory-database Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software. github cc-by-4.0 1184    
https://github.com/trailofbits/maat Open-source symbolic execution framework: https://maat.re trailofbits other 493    
https://github.com/banviktor/asnlookup CLI and Go package for fast, offline ASN lookups banviktor apache-2.0 9    
https://github.com/redcode-labs/BMJ Code snippets for bare-metal malware development redcode-labs mit 80    
https://github.com/MarkBaggett/ese-analyst This is a set of tools for doing forensics analysis on Microsoft ESE databases. MarkBaggett   108    
https://github.com/JrM2628/httpworker A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educational use only. JrM2628   57    
https://github.com/hrbrmstr/cisa-known-exploited-vulns Daily archiver & triage issue creator for new releases of CISA’s Known Exploited Vulnerabilities list hrbrmstr mit 16    
https://github.com/dataplane/fdns Dataplane.org DNS server daemon dataplane   2    
https://github.com/MolecularMatters/raw_pdb A C++11 library for reading Microsoft Program DataBase PDB files MolecularMatters bsd-2-clause 453    
https://github.com/miso-belica/jusText Heuristic based boilerplate removal tool miso-belica bsd-2-clause 485    
https://github.com/avast/yaramod Parsing of YARA rules into AST and building new rulesets in C++. avast mit 83    
https://github.com/mlodic/pdfid   mlodic mit 6    
https://github.com/blueteam0ps/AllthingsTimesketch This repository contains helper scripts and custom configs to get the best out of Google’s Timesketch project. blueteam0ps apache-2.0 32    
https://github.com/bhassani/doublepulsar DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64) bhassani   19    
https://github.com/redcode-labs/poXSSon A framework for easy payloads development and deployment, collection of customizable XSS payloads redcode-labs isc 22    
https://github.com/edgedb/edgedb A graph-relational database with declarative schema, built-in migration system, and a next-generation query language edgedb apache-2.0 9508    
https://github.com/khalladay/hooking-by-example A series of increasingly complex programs demonstrating function hooking on 64 bit Windows. Culminating in a program that hooks mspaint to make it always paint orange. khalladay mit 134    
https://github.com/leoloobeek/COMRunner A simple COM server which provides a component to run shellcode leoloobeek   129    
https://github.com/horsicq/PDBRipper PDBRipper is a utility for extract an information from PDB-files. horsicq mit 619    
https://github.com/garage44/pyrite Pyrite is a web(RTC) client for the Galène videoconference server. garage44 mit 258    
https://github.com/drk1wi/Modlishka Modlishka. Reverse Proxy. drk1wi other 4092    
https://github.com/openvinotoolkit/anomalib An anomaly detection library comprising state-of-the-art algorithms and features such as experiment management, hyper-parameter optimization, and edge inference. openvinotoolkit apache-2.0 1370    
https://github.com/Gyoonus/deoptfuscator Deobfuscator for Android Application Gyoonus mit 271    
https://github.com/MISP/misp-wireshark Lua plugin to extract data from Wireshark and convert it into MISP format MISP   19    
https://github.com/MISP/LuaMISP Lua Library to create and manipulate MISP entities MISP mit 3    
https://github.com/algorithmica-org/algorithmica A computer science textbook algorithmica-org   1183    
https://github.com/SecurityBrewery/catalyst Catalyst is an open source SOAR and ticket system that helps to automate alert handling and incident response processes SecurityBrewery agpl-3.0 126    
https://github.com/profdc9/RFBitBanger A QRP on-off keying digital transmission device profdc9   17    
https://github.com/olavolav/uniplot Lightweight plotting to the terminal. 4x resolution via Unicode. olavolav mit 190    
https://github.com/rsagroup/rsatoolbox Python library for Representational Similarity Analysis rsagroup mit 91    
https://github.com/ffuf/pencode Complex payload encoder ffuf mit 143    
https://github.com/nkrao220/accent-classification Accent Classification in Speech nkrao220   13    
https://github.com/shaarli/Shaarli The personal, minimalist, super-fast, database free, bookmarking service - community repo shaarli other 2788    
https://github.com/slingamn/mureq Single-file alternative to python-requests slingamn 0bsd 260    
https://github.com/idom-team/idom Create highly interactive web pages purely in Python idom-team mit 671    
https://github.com/mandiant/flare-floss FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware. mandiant apache-2.0 2434    
https://github.com/FelixChop/MediumArticles Sample of Python codes from mathematical problems FelixChop   100    
https://github.com/sanchikagn/topic-modeling-with-LDA Topic modeling (abstract topics) with LDA (Latent Dirichlet Allocation) in python sanchikagn   3    
https://github.com/karlicoss/promnesia Another piece of your extended mind karlicoss mit 1425    
https://github.com/MattMills/radiocapture-rf RF side of Radiocapture’s SDR based trunked radio bulk collection system MattMills gpl-3.0 48    
https://github.com/sudrich/sf-gad A statistical framework for graph anomaly detection. sudrich gpl-3.0 15    
https://github.com/milabs/khook Linux Kernel hooking engine (x86) milabs gpl-2.0 239    
https://github.com/JonathanSalwan/ROPgadget This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectures. JonathanSalwan other 3166    
https://github.com/trickest/cve Gather and update all available and newest CVEs with their PoC. trickest mit 3734    
https://github.com/ydkhatri/OneDrive OneDrive log .ODL reader ydkhatri mit 44    
https://github.com/obfuscator-llvm/obfuscator   obfuscator-llvm   3180    
https://github.com/hasherezade/process_overwriting Yet another variant of Process Hollowing hasherezade   288    
https://github.com/perkeep/perkeep Perkeep (née Camlistore) is your personal storage system for life: a way of storing, syncing, sharing, modelling and backing up content. perkeep apache-2.0 6046    
https://github.com/milabs/awesome-linux-rootkits awesome-linux-rootkits milabs cc0-1.0 1164    
https://github.com/Cyb0r9/SocialBox SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi Cyb0r9 mit 1038    
https://github.com/pysemtec/semantic-python-overview (subjective) overview of projects which are related both to python and semantic technologies (RDF, OWL, Reasoning, …) pysemtec cc0-1.0 414    
https://github.com/jbaines-r7/staystaystay Proof of Concept for CVE-2021-1585: Cisco ASA Device Manager RCE jbaines-r7 bsd-3-clause 9    
https://github.com/intellisec/lasershark LaserShark: Establishing Fast, Bidirectional Communication into Air-Gapped Systems (ACSAC 2021) intellisec gpl-3.0 57    
https://github.com/Flangvik/SharpDllProxy Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading Flangvik   399    
https://github.com/syloktools/misp_automation   syloktools   2    
https://github.com/bg3mdo/pisdr_hat This is budget Raspberry Pi SDR project. bg3mdo   12    
https://github.com/berty/berty Berty is a secure peer-to-peer messaging app that works with or without internet access, cellular data or trust in the network berty other 6175    
https://github.com/gaasedelen/patching An Interactive Binary Patching Plugin for IDA Pro gaasedelen mit 559    
https://github.com/vlang/v Simple, fast, safe, compiled language for developing maintainable software. Compiles itself in <1s with zero library dependencies. Supports automatic C => V translation. https://vlang.io vlang mit 30779    
https://github.com/malrev/ABD Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories malrev other 1009    
https://github.com/appneta/tcpreplay Pcap editing and replay tools for *NIX and Windows - Users please download source from appneta   931    
https://github.com/Cimbali/pympress Pympress is a simple yet powerful PDF reader designed for dual-screen presentations Cimbali gpl-2.0 745    
https://github.com/SoftSec-KAIST/TikNib Binary Code Similarity Analysis (BCSA) Tool SoftSec-KAIST mit 84    
https://github.com/ly4k/SpoolFool Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE) ly4k mit 650    
https://github.com/chuanjiesun/whatAV detect AV on windows via process name chuanjiesun   9    
https://github.com/Psmths/reave WIP Post-exploitation framework tailored for hypervisors. Psmths gpl-3.0 43    
https://github.com/usualsuspect/yara_vt_mock Emulates the VirusTotal “vt” YARA module for livehunt rule debugging/testing usualsuspect mit 18    
https://github.com/RUB-SysSec/Nyx USENIX 2021 - Nyx: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types RUB-SysSec gpl-2.0 160    
https://github.com/airbus-cert/Invoke-Bof Load any Beacon Object File using Powershell! airbus-cert apache-2.0 217    
https://github.com/P4nda0s/IDABeautify An IDA plugin for making pseudocode better. P4nda0s   196    
https://github.com/nbqofficial/CTHD Process hiding library nbqofficial   16    
https://github.com/MichaelDim02/Narthex Modular personalized dictionary generator. MichaelDim02 gpl-3.0 166    
https://github.com/cylance/PyPackerDetect A malware dataset curation tool which helps identify packed samples. cylance agpl-3.0 29    
https://github.com/M17-Project/M17_spec M17 standard specification M17-Project gpl-2.0 115    
https://github.com/bl4de/dictionaries Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks bl4de   198    
https://github.com/fabiospampinato/crypto-random-hexadecimal Generate a cryptographically-random hexadecimal string with the given number of bytes of entropy. fabiospampinato mit 1    
https://github.com/ytk2128/dll-merger Merging DLLs with a PE32 EXE without LoadLibrary ytk2128 mit 201    
https://github.com/CronUp/Malware-IOCs   CronUp   76    
https://github.com/pwn1sher/KillDefender A small POC to make defender useless by removing its token privileges and lowering the token integrity pwn1sher   559    
https://github.com/reb311ion/CapaExplorer Capa analysis importer for Ghidra. reb311ion mit 48    
https://github.com/boku7/HOLLOW EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and execute shellcode boku7   201    
https://github.com/inforion/idapython-cheatsheet Scripts and cheatsheets for IDAPython inforion   551    
https://github.com/FireyFly/hexd 🔍 Colourful, human-friendly hexdump tool FireyFly mit 131    
https://github.com/boyter/scc Sloc, Cloc and Code: scc is a very fast accurate code counter with complexity calculations and COCOMO estimates written in pure Go boyter mit 3903    
https://github.com/cartographia/geospatial-intelligence-library 🛰 Your geospatial intelligence tool belt for digital investigations cartographia   82    
https://github.com/61106960/adPEAS Powershell tool to automate Active Directory enumeration. 61106960   416    
https://github.com/dbdexter-dev/sdrpp_radiosonde Radiosonde decoder plugin for SDR++ dbdexter-dev mit 32    
https://github.com/remil1000/opensearch-ansible-playbook 🤖 A community repository for Ansible Playbook of OpenSearch Project. remil1000 apache-2.0 3    
https://github.com/xenoscr/manual-syscall-detect A tool for detecting manual/direct syscalls in x86 and x64 processes using Nirvana Hooks. xenoscr mit 67    
https://github.com/tahoe-lafs/tahoe-lafs The Tahoe-LAFS decentralized secure filesystem. tahoe-lafs other 1191    
https://github.com/NumLocK15/YaraStation Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centralized management solution that facilitates result investigation and easier scanning capabilities. NumLocK15   27    
https://github.com/dwmkerr/hacker-laws 💻📖 Laws, Theories, Principles and Patterns that developers will find useful. #hackerlaws dwmkerr cc-by-sa-4.0 24314    
https://github.com/CTFd/snicat TLS & SNI aware netcat CTFd apache-2.0 19    
https://github.com/meilisearch/meilisearch A lightning-fast search engine that fits effortlessly into your apps, websites, and workflow. meilisearch mit 30591    
https://github.com/oasis-open/cti-taxii-server OASIS TC Open Repository: TAXII 2 Server Library Written in Python oasis-open bsd-3-clause 82    
https://github.com/0x6d696368/ghidra-data Supporting Data Archives for Ghidra 0x6d696368 apache-2.0 184    
https://github.com/klezVirus/inceptor Template-Driven AV/EDR Evasion Framework klezVirus other 1060    
https://github.com/ail-project/ail-typo-squatting Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems. ail-project bsd-2-clause 27    
https://github.com/czs108/PE-Packer 🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering. czs108 gpl-3.0 162    
https://github.com/VectorCamp/vectorscan A portable fork of the high-performance regular expression matching library VectorCamp other 257    
https://github.com/silverhack/voyeur VOYEUR’s main purpose is to generate a fast (and pretty) Active Directory report. The tool is developed entirely in PowerShell (a powerful scripting language) without dependencies (just .Net Framework 3.5 and Ofiice Excel if you want an useful and pretty report). The generated report is a perfect starting point for well-established forensic, incident response team, or security researchers who want to quickly analyze threats in Active Directory Services. silverhack mit 146    
https://github.com/bitsadmin/fakelogonscreen Fake Windows logon screen to steal passwords bitsadmin bsd-3-clause 1069    
https://github.com/cisco/mercury Mercury: network metadata capture and analysis cisco other 340    
https://github.com/microsoft/ANCE A novel embedding training algorithm leveraging ANN search and achieved SOTA retrieval on Trec DL 2019 and OpenQA benchmarks microsoft mit 274    
https://github.com/AndrewRathbun/DFIRArtifactMuseum The goal of this repo is to archive artifacts from all versions of various OS’s and categorizing them by type. This will help with artifact validation processes as well as increase access to artifacts that may no longer be readily available anymore. AndrewRathbun mit 179    
https://github.com/erthink/libmdbx One of the fastest embeddable key-value ACID database without WAL. libmdbx surpasses the legendary LMDB in terms of reliability, features and performance. erthink other 1040    
https://github.com/ekzhu/datasketch MinHash, LSH, LSH Forest, Weighted MinHash, HyperLogLog, HyperLogLog++, LSH Ensemble ekzhu mit 1820    
https://github.com/aristocratos/btop A monitor of resources aristocratos apache-2.0 9349    
https://github.com/0vercl0k/udmp-parser A Windows user minidump C++ parser library. 0vercl0k mit 92    
https://github.com/DTolm/VkFFT Vulkan/CUDA/HIP/OpenCL/Level Zero/Metal Fast Fourier Transform library DTolm mit 925    
https://github.com/bluekitchen/raccoon Raccoon BLE Sniffer bluekitchen   63    
https://github.com/andrewjfreyer/monitor Distributed advertisement-based BTLE presence detection reported via mqtt andrewjfreyer   1402    
https://github.com/csirt-tooling-org/csirt-tooling-best-practices CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools csirt-tooling-org   11    
https://github.com/frida/frida-tools Frida CLI tools frida other 211    
https://github.com/ANSSI-FR/guide-journalisation-microsoft Guide journalisation Microsoft ANSSI-FR   44    
https://github.com/patois/abyss abyss - augmentation of Hexrays decompiler output patois mit 287    
https://github.com/Nudin/iptable_vis visualise your iptables chains Nudin lgpl-3.0 543    
https://github.com/scipag/HardeningKitty HardeningKitty - Checks and hardens your Windows configuration scipag mit 549    
https://github.com/volexity/threat-intel Signatures and IoCs from public Volexity blog posts. volexity other 124    
https://github.com/crytic/slither Static Analyzer for Solidity crytic agpl-3.0 3357    
https://github.com/sapics/ip-location-db ip to location database by ASN, GeoFeed, Whois, iptoasn.com, db-ip lite, GeoLite2 sapics other 247    
https://github.com/norasector/turbine SDR software for capturing trunked radio systems norasector gpl-3.0 92    
https://github.com/dhondta/webgrep Grep Web pages with extra features like JS deobfuscation and OCR dhondta gpl-3.0 87    
https://github.com/ForensicArtifacts/artifacts-kb Digital Forensics Artifacts Knowledge Base ForensicArtifacts apache-2.0 42    
https://github.com/ArsMasiuk/qvge Qt Visual Graph Editor ArsMasiuk mit 424    
https://github.com/VirusTotal/vt-py The official Python 3 client library for VirusTotal VirusTotal apache-2.0 276    
https://github.com/mborgerding/kissfft a Fast Fourier Transform (FFT) library that tries to Keep it Simple, Stupid mborgerding other 1017    
https://github.com/hirve/sdr-mini-kit Building SDR apps by mapping IQ streams with pipes in CLI or bash scripts. hirve mit 7    
https://github.com/0x4D31/fatt FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic 0x4D31 bsd-3-clause 588    
https://github.com/cado-security/rip_raw Rip Raw is a small tool to analyse the memory of compromised Linux systems. cado-security apache-2.0 127    
https://github.com/RolfRolles/IDBs Analyses in IDA/Hex-Rays RolfRolles   63    
https://github.com/x64dbg/x64dbg An open-source x64/x32 debugger for windows. x64dbg other 39331    
https://github.com/stairwell-inc/threat-research Repository of tools, YARA rules, and code-snippets from Stairwell’s research team. stairwell-inc mit 14    
https://github.com/igogo-x86/HexRaysPyTools IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes igogo-x86   1136    
https://github.com/lunixbochs/usercorn dynamic binary analysis via platform emulation lunixbochs mit 824    
https://github.com/slyd0g/DLLHijackTest DLL and PowerShell script to assist with finding DLL hijacks slyd0g   283    
https://github.com/cudeso/dfir-iris-misp-timesketch Scripts to integrate DFIR-IRIS, MISP and TimeSketch cudeso agpl-3.0 19    
https://github.com/cybersecsi/HOUDINI Hundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all. cybersecsi gpl-3.0 1100    
https://github.com/davidgfnet/card-cap-authenticator-android Android App that genereates passcode authentication codes for Postfinance cards davidgfnet bsd-3-clause 10    
https://github.com/RyanMarcus/dirty-json A parser for invalid JSON RyanMarcus agpl-3.0 173    
https://github.com/googleprojectzero/0days-in-the-wild Repository for information about 0-days exploited in-the-wild. googleprojectzero apache-2.0 516    
https://github.com/ditekshen/detection Detection in the form of Yara, Snort and ClamAV signatures. ditekshen other 90    
https://github.com/seintpl/osint Useful OSINT hints and links seintpl   66    
https://github.com/KaLendsi/CVE-2022-21882 win32k LPE KaLendsi   435    
https://github.com/JPCERTCC/jpcert-yara JPCERT/CC public YARA rules repository JPCERTCC   75    
https://github.com/pali/bmfdec Decompile binary MOF file (BMF) from WMI buffer pali   37    
https://github.com/mb21/panwriter Markdown editor with pandoc integration and paginated preview. mb21 gpl-3.0 762    
https://github.com/doegox/EMV-CAP This tool emulates an EMV-CAP device, to illustrate the article “Banque en ligne : à la decouverte d’EMV-CAP” published in MISC, issue #56 doegox gpl-3.0 27    
https://github.com/APTortellini/DefenderSwitch Stop Windows Defender using the Win32 API APTortellini   158    
https://github.com/scipag/nac_bypass Script collection to bypass Network Access Control (NAC, 802.1x) scipag mit 165    
https://github.com/hakluke/hakrevdns Small, fast tool for performing reverse DNS lookups en masse. hakluke mit 587    
https://github.com/jevinskie/litespih4x SPI flash MITM and emulation (QSPI is a WIP) jevinskie   18    
https://github.com/pandora-analysis/pandora Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results pandora-analysis agpl-3.0 158    
https://github.com/berdav/CVE-2021-4034 CVE-2021-4034 1day berdav mit 1686    
https://github.com/Reloaded-Project/Reloaded.Injector C# DLL Injection Library capable of injecting x86 DLLs to x86 process from x64 processes. Reloaded-Project lgpl-3.0 79    
https://github.com/arc298/instagram-scraper Scrapes an instagram user’s photos and videos arc298 unlicense 7296    
https://github.com/bouffalolab/bl_iot_sdk BL602/BL702 SDK. Any technical topic, please access the following link. bouffalolab apache-2.0 189    
https://github.com/cilium/cilium eBPF-based Networking, Security, and Observability cilium apache-2.0 13403    
https://github.com/hlldz/RefleXXion RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array. hlldz   389    
https://github.com/Idov31/FunctionStomping A new shellcode injection technique. Given as C++ header, standalone Rust program or library. Idov31 bsd-2-clause 592    
https://github.com/cyentific-rni/stix2.1-coa-playbook-extension A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-readable security playbooks such as CACAO Security Playbooks cyentific-rni mit 14    
https://github.com/ZephrFish/Red-Teaming-Toolkit This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter. ZephrFish gpl-3.0 9    
https://github.com/geodienst/lighthousemap OpenStreetMap’s Blinking Beacons geodienst mit 271    
https://github.com/daem0nc0re/PrivFu Kernel mode WinDbg extension and PoCs for token privilege investigation. daem0nc0re bsd-3-clause 366    
https://github.com/executemalware/Malware-IOCs   executemalware   315    
https://github.com/behas/ransomware-dataset Economics of Ransomware Dataset behas   16  
https://github.com/spenczar/usb-next Arduino adapter for a NeXT keyboard to work over USB spenczar bsd-3-clause 16    
https://github.com/lgandx/Responder Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication. lgandx gpl-3.0 3901    
https://github.com/dievus/Oh365UserFinder Python3 o365 User Enumeration Tool dievus mit 400    
https://github.com/DidierStevens/DidierStevensSuite Please no pull requests for this repository. Thanks! DidierStevens   1418    
https://github.com/AzizKpln/Social_X “Socialx” is a Social Engineering And Remote Access Trojan Tool. You can generate fud backdoor and you can embed any file you want inside of the exe file. AzizKpln mit 198    
https://github.com/forrest-orr/moneta Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs forrest-orr gpl-3.0 365    
https://github.com/tid4l/offensive-cybersec-toolkit A central place for offensive (and sometimes not) cybersecurity tools and resources. tid4l gpl-3.0 8    
https://github.com/vuejs/petite-vue 6kb subset of Vue optimized for progressive enhancement vuejs mit 7056    
https://github.com/resyncgg/ripgen Rust-based high performance domain permutation generator. resyncgg   185    
https://github.com/p0dalirius/ldap2json The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file. p0dalirius   63    
https://github.com/quarto-dev/quarto-cli Open-source scientific and technical publishing system built on Pandoc. quarto-dev other 1413    
https://github.com/adulau/active-scanning-techniques A compilation of network scanning strategies to find vulnerable devices adulau   61    
https://github.com/fkie-cad/cwe_checker cwe_checker finds vulnerable patterns in binary executables fkie-cad lgpl-3.0 745    
https://github.com/avast/ioc Threat Intel IoCs + bits and pieces of dark matter avast   251    
https://github.com/MrNox/XRaysComments A simple IDA Pro plugin to show all HexRays decompiler comments written by user MrNox   19    
https://github.com/g-les/100DaysofYARA 100 Days of YARA to be updated with rules & ideas as the year progresses g-les   27    
https://github.com/IQTLabs/SkyScan Automatically photograph planes that fly by! IQTLabs apache-2.0 237    
https://github.com/CiscoPSIRT/openVulnQuery A Python-based client for the Cisco openVuln API CiscoPSIRT mit 20    
https://github.com/github/gemoji Emoji images and names. github mit 4072    
https://github.com/dhondta/python-codext Python codecs extension featuring CLI tools for encoding/decoding anything dhondta gpl-3.0 199    
https://github.com/brandur/redis-cell A Redis module that provides rate limiting in Redis as a single command. brandur mit 1050    
https://github.com/jakubroztocil/podcats 🎧 🐈🐈🐈 Podcats generates RSS feeds for podcast episodes from local audio files and, optionally, exposes both via a built-in web server. jakubroztocil other 106    
https://github.com/sevagas/macro_pack macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research. sevagas apache-2.0 1725    
https://github.com/typedb-osi/typedb-cti Open Source Threat Intelligence Platform typedb-osi apache-2.0 100    
https://github.com/luigifcruz/pisdr-image 🥧 A SDR Linux Distro for the Raspberry Pi and other SBC. Compatible out of the box with multiple SDR. luigifcruz other 679    
https://github.com/DanielLin1986/Function-level-Vulnerability-Detection A deep learning-based vulnerability detection framework DanielLin1986   55    
https://github.com/void-stack/VMUnprotect VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect. void-stack mit 250    
https://github.com/AppThreat/dep-scan Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, Google CloudBuild. No server required! AppThreat mit 275    
https://github.com/geoacumen/geoacumen-country   geoacumen apache-2.0 35    
https://github.com/maxmind/MaxMind-DB-Reader-python Python MaxMind DB reader extension maxmind apache-2.0 138    
https://github.com/maxmind/mmdbinspect look up records for one or more IPs/networks in one or more .mmdb databases maxmind apache-2.0 62    
https://github.com/cloudflare/py-mmdb-encoder Create mmdb files to encode prefix lists. cloudflare bsd-3-clause 27    
https://github.com/upx/upx UPX - the Ultimate Packer for eXecutables upx other 10245    
https://github.com/allinurl/gwsocket fast, standalone, language-agnostic WebSocket server RFC6455 compliant allinurl mit 656    
https://github.com/RolfRolles/FinSpyVM Static unpacker for FinSpy VM RolfRolles   90    
https://github.com/ryan-weil/ReadWriteDriver A kernel driver for reading and writing memory ryan-weil   81    
https://github.com/jfmaes/SharpZipRunner Executes position independent shellcode from an encrypted zip jfmaes gpl-3.0 293    
https://github.com/InQuest/awesome-yara A curated list of awesome YARA rules, tools, and people. InQuest other 2369    
https://github.com/adsbxchange/adsb-exchange ADS-B Exchange Linux Setup Scripts adsbxchange mit 192    
https://github.com/StamusNetworks/suricata-language-server Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and auto-completion to your preferred editor once it is configured. StamusNetworks gpl-3.0 36    
https://github.com/PyCQA/flake8 flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code. PyCQA other 2394    
https://github.com/wavestone-cdt/wavecrack Wavestone’s web interface for password cracking with hashcat wavestone-cdt   151    
https://github.com/jerosoler/Drawflow Simple flow library 🖥️🖱️ jerosoler mit 2700    
https://github.com/jordanwildon/Telepathy Public release of Telepathy, an OSINT toolkit for investigating Telegram chats. jordanwildon mit 449    
https://github.com/orhun/rtl_map FFT-based visualizer for RTL-SDR devices. (RTL2832/DVB-T) orhun gpl-3.0 59    
https://github.com/marp-team/marp The entrance repository of Markdown presentation ecosystem marp-team mit 4349    
https://github.com/encode/starlette The little ASGI framework that shines. 🌟 encode bsd-3-clause 7534    
https://github.com/MoserMichael/pyasmtool Explores the python bytecode, provides some tools to access it for fun and profit. MoserMichael mit 275    
https://github.com/seanmcfeely/ThreatFox Python library and command line tool for interacting with the ThreatFox API. seanmcfeely gpl-3.0 6    
https://github.com/raghudotcc/simply-jekyll A simple yet highly functional jekyll theme with backlinks, wiki-style links, context menu, page preview, sidenote etc raghudotcc   160    
https://github.com/0vercl0k/rp rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM binaries. 0vercl0k mit 1383    
https://github.com/saruman9/ghidra_dev_pres Ghidra’s development plugins, scripts, contributing. Presentation saruman9   10    
https://github.com/felias-fogg/dw-link An Arduino-based debugWIRE hardware-debugger felias-fogg gpl-3.0 21    
https://github.com/CYB3RMX/Qu1cksc0pe All-in-One malware analysis tool. CYB3RMX gpl-3.0 418    
https://github.com/random-robbie/bruteforce-lists Some files for bruteforcing certain things. random-robbie apache-2.0 746    
https://github.com/packing-box/awesome-executable-packing A curated list of awesome resources related to executable packing packing-box cc0-1.0 664    
https://github.com/trickster0/LdrLoadDll-Unhooking LdrLoadDll Unhooking trickster0   73    
https://github.com/Tox/ToxStatus Status page that keeps track of Tox bootstrap nodes Tox agpl-3.0 32    
https://github.com/RedhawkSDR/core-framework REDHAWK is a software-defined radio (SDR) framework designed to support the development, deployment, and management of real-time software radio applications RedhawkSDR lgpl-3.0 39    
https://github.com/RedhawkSDR/redhawk A submodule repository for distributing REDHAWK artifacts and the latest REDHAWK source code. Use ‘git clone –recurse-submodules git@github.com:RedhawkSDR/redhawk.git’ to also clone all submodules. RedhawkSDR other 362    
https://github.com/hrvach/babyping A computer from 1948 in ICMP packets hrvach mit 74    
https://github.com/0xC01DF00D/Collabfiltrator Exfiltrate blind remote code execution output over DNS via Burp Collaborator. 0xC01DF00D gpl-3.0 226    
https://github.com/klinix5/ReverseRDP_RCE   klinix5 mit 267    
https://github.com/opensemanticsearch/open-semantic-search Open Source research tool to search, browse, analyze and explore large document collections by Semantic Search Engine and Open Source Text Mining & Text Analytics platform (Integrates ETL for document processing, OCR for images & PDF, named entity recognition for persons, organizations & locations, metadata management by thesaurus & ontologies, search user interface & search apps for fulltext search, faceted search & knowledge graph) opensemanticsearch gpl-3.0 659    
https://github.com/1N3/ReverseAPK Quickly analyze and reverse engineer Android packages 1N3   586    
https://github.com/gocolly/colly Elegant Scraper and Crawler Framework for Golang gocolly apache-2.0 18145    
https://github.com/gnuradio/SigMF The Signal Metadata Format Specification gnuradio cc-by-sa-4.0 227    
https://github.com/xbyl1234/android_analysis android analysis tools, jni trace by native hook, libc hook, write log with caller’s addr in file or AndroidLog xbyl1234   61    
https://github.com/odedshimon/BruteShark Network Analysis Tool odedshimon gpl-3.0 2519    
https://github.com/osmocom/rtl-sdr library for turning a RTL2832 based DVB dongle into a Software DefinedReceiver; mirror from https://gitea.osmocom.org/sdr/rtl-sdr osmocom gpl-2.0 483    
https://github.com/digitalevidencetoolkit/deptoolkit The Toolkit API, app, and browser extension. Start preserving now. digitalevidencetoolkit other 40    
https://github.com/shareef12/ExtractBB LLVM Obfuscation Pass via Extracted Basic Blocks shareef12   15    
https://github.com/pnkraemer/tueplots Figure sizes, font sizes, fonts, and more configurations at minimal overhead. Fix your journal papers, conference proceedings, and other scientific publications. pnkraemer mit 476    
https://github.com/splunk/salo Synthetic Adversarial Log Objects: A Framework for synthentic log generation splunk apache-2.0 40    
https://github.com/jina-ai/docarray 🧬 The data structure for unstructured multimodal data · Neural Search · Vector Search · Document Store jina-ai apache-2.0 1274    
https://github.com/coral-xyz/sealevel-attacks ☠️ Common Security Exploits and Protections on Solana coral-xyz   337    
https://github.com/knight0x07/pyc2bytecode A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*) knight0x07   87    
https://github.com/hausec/ADAPE-Script Active Directory Assessment and Privilege Escalation Script hausec   1018    
https://github.com/swimlane/pyattck A Python package to interact with the Mitre ATT&CK Framework swimlane mit 402    
https://github.com/FirmWire/FirmWire FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares FirmWire bsd-3-clause 552    
https://github.com/terryyin/lizard A simple code complexity analyser without caring about the C/C++ header files or Java imports, supports most of the popular languages. terryyin other 1460    
https://github.com/3vangel1st/100DaysOfYARA   3vangel1st   24    
https://github.com/certsocietegenerale/abuse_finder Find abuse contacts for observables certsocietegenerale gpl-3.0 54    
https://github.com/wbolster/jsonlines python library to simplify working with jsonlines and ndjson data wbolster other 203    
https://github.com/obsidianforensics/unfurl Extract and Visualize Data from URLs using Unfurl obsidianforensics apache-2.0 468    
https://github.com/sthagen/miyuchina-mistletoe A fast, extensible and spec-compliant Markdown parser in pure Python. sthagen mit 2    
https://github.com/ShutdownRepo/ShadowCoerce MS-FSRVP coercion abuse PoC ShutdownRepo gpl-3.0 211    
https://github.com/drmpeg/dtv-utils Utilities for SDR digital television drmpeg gpl-3.0 46    
https://github.com/puckiestyle/JNDI-Exploit-Kit   puckiestyle mit 19    
https://github.com/Li4n0/revsuit RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration. Li4n0 apache-2.0 322    
https://github.com/getCUJO/ThreatIntel   getCUJO bsd-3-clause-clear 102    
https://github.com/hijiki51/gotools Plugin for Ghidra to assist reversing Golang binaries hijiki51 mit 6    
https://github.com/Dump-GUY/Malware-analysis-and-Reverse-engineering Some of my publicly available Malware analysis and Reverse engineering. Dump-GUY   460    
https://github.com/fidgetingbits/IDArling Collaborative Reverse Engineering plugin for IDA Pro & Hex-Rays fidgetingbits gpl-3.0 94    
https://github.com/cudeso/tools Different tools, koen.vanimpe@cudeso.be cudeso other 87    
https://github.com/corelight/zeek-cheatsheets Bro Log Cheatsheets corelight other 232    
https://github.com/SecWiki/windows-kernel-exploits windows-kernel-exploits Windows平台提权漏洞集合 SecWiki mit 6754    
https://github.com/optiv/Ivy Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode. optiv mit 639    
https://github.com/AlexandreRouma/SDRPlusPlus Cross-Platform SDR Software AlexandreRouma gpl-3.0 2070    
https://github.com/yrp604/rappel A linux-based assembly REPL for x86, amd64, armv7, and armv8 yrp604 other 1002    
https://github.com/s-macke/VoxelSpace Terrain rendering algorithm in less than 20 lines of code s-macke mit 5533    
https://github.com/alphacep/vosk-api Offline speech recognition API for Android, iOS, Raspberry Pi and servers with Python, Java, C# and Node alphacep apache-2.0 4760    
https://github.com/intelowlproject/GreedyBear Threat Intel Platform for T-POTs intelowlproject mit 62    
https://github.com/rgerganov/aprs-sdr APRS tracker with an SDR rgerganov mit 19    
https://github.com/fabiangreffrath/crispy-doom Crispy Doom is a limit-removing enhanced-resolution Doom source port based on Chocolate Doom. fabiangreffrath gpl-2.0 609    
https://github.com/iconoir-icons/iconoir An open source icons library with 1K+ icons, supporting React, React Native, Flutter, CSS, Figma, and Framer. iconoir-icons mit 2858    
https://github.com/trapexit/mergerfs a featureful union filesystem trapexit other 2734    
https://github.com/niczem/trawler scraper for facebook, gab, google and tiktok niczem   20    
https://github.com/google/grr GRR Rapid Response: remote live forensics for incident response google apache-2.0 4223    
https://github.com/ioncodes/ceload Loading dbk64.sys and grabbing a handle to it ioncodes   120    
https://github.com/curran/data A collection of public data sets curran mit 450    
https://github.com/deepchecks/deepchecks Test Suites for Validating ML Models & Data. Deepchecks is a Python package for comprehensively validating your machine learning models and data with minimal effort. deepchecks other 2175    
https://github.com/profdc9/QRPAmplifier Layout of WA2EBY amplifier in Kicad, licensed CC-BY-SA 4.0 profdc9   15    
https://github.com/FChannel0/FChannel-Server   FChannel0 agpl-3.0 82    
https://github.com/GeneralMills/pytrends Pseudo API for Google Trends GeneralMills other 2556    
https://github.com/benlk/misc-licenses A collection of various licenses, with mild commentary upon them. benlk other 75    
https://github.com/aj-code/TimingIntrusionTool5000 A tool for performing network timing attacks on plaintext and hashed password authentication. aj-code gpl-3.0 20    
https://github.com/squidfunk/mkdocs-material Documentation that simply works squidfunk mit 11548    
https://github.com/NVISOsecurity/DLLoader   NVISOsecurity gpl-3.0 17    
https://github.com/R4yGM/garlicshare Private and self-hosted file sharing over the Tor network written in golang R4yGM apache-2.0 105    
https://github.com/travisbrown/stop-the-steal Stop the Steal / J6 Twitter user profiles travisbrown   18    
https://github.com/worldveil/dejavu Audio fingerprinting and recognition in Python worldveil mit 5919    
https://github.com/jonathandata1/pegasus_spyware decompiled pegasus_spyware jonathandata1 mit 1574    
https://github.com/tillmannw/yara-rules   tillmannw   8    
https://github.com/trailofbits/manticore Symbolic execution tool trailofbits agpl-3.0 3183    
https://github.com/forrest-orr/Exploits A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I’ve written to be used in conjunction with these exploits. forrest-orr gpl-3.0 80    
https://github.com/spaze/hashes Magic hashes – PHP hash “collisions” spaze   505    
https://github.com/uubs/firmware-collection   uubs   5    
https://github.com/desertbit/glue Glue - Robust Go and Javascript Socket Library (Alternative to Socket.io) desertbit mit 406    
https://github.com/MattETurner/DFIRlogbook Logbook for Digital Forensics and Incident Response MattETurner   40    
https://github.com/BatchDrake/SigDigger Qt-based digital signal analyzer, using Suscan core and Sigutils DSP library BatchDrake gpl-3.0 607    
https://github.com/directus/directus The Modern Data Stack 🐰 — Directus is an instant REST+GraphQL API and intuitive no-code data collaboration app for any SQL database. directus gpl-3.0 18144    
https://github.com/mzfr/liffy Local file inclusion exploitation tool mzfr gpl-3.0 523    
https://github.com/PaddlePaddle/PaddleOCR Awesome multilingual OCR toolkits based on PaddlePaddle (practical ultra lightweight OCR system, support 80+ languages recognition, provide data annotation and synthesis tools, support training and deployment among server, mobile, embedded and IoT devices) PaddlePaddle apache-2.0 26342    
https://github.com/seemoo-lab/opendrop An open Apple AirDrop implementation written in Python seemoo-lab gpl-3.0 7380    
https://github.com/cert-ee/cuckoo3 Cuckoo 3 is a Python 3 open source automated malware analysis system. cert-ee eupl-1.2 409    
https://github.com/pussycat0x/malicious-pdf Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator pussycat0x bsd-2-clause 163    
https://github.com/NUKIB/misp Docker image for MISP NUKIB gpl-3.0 43    
https://github.com/tb0hdan/idun DomainsProject.org HTTP worker tb0hdan bsd-3-clause 9    
https://github.com/tb0hdan/domains World’s single largest Internet domains dataset tb0hdan bsd-3-clause 394    
https://github.com/HuskyHacks/PMAT-labs Labs for Practical Malware Analysis & Triage HuskyHacks   436    
https://github.com/doomedraven/sflock Sample staging & detonation utility to be used in combination with Cuckoo Sandbox. doomedraven   8    
https://github.com/hrbrmstr/hashlookup #️⃣ 👀👆🏽Query and Orchestrate the CIRCL Hash Lookup Service hrbrmstr other 4    
https://github.com/benthosdev/benthos-plugin-example Benthos plugin examples benthosdev mit 59    
https://github.com/hatching/sflock Sample staging & detonation utility to be used in combination with Cuckoo Sandbox. hatching   74    
https://github.com/Zhuagenborn/Dll-Injector 💉 A Windows dynamic-link library injection tool written in C++20. It can inject a dynamic-link library into a running process by its window title or create a new process with an injection. Zhuagenborn gpl-3.0 48    
https://github.com/sdasgup3/binary-decompilation Extracting high level semantic information from binary code sdasgup3 other 57    
https://github.com/adulau/dcfldd dcfldd - enhanced version of dd for forensics and security adulau gpl-2.0 58    
https://github.com/infoskirmish/hive The CIA Hive source code as released by Wikileaks infoskirmish   46    
https://github.com/peazip/PeaZip Free Zip / Unzip software and Rar file extractor. Cross-platform file and archive manager. Features volume spanning, compression, authenticated encryption. Supports 7Z, 7-Zip sfx, ACE, ARJ, Brotli, BZ2, CAB, CHM, CPIO, DEB, GZ, ISO, JAR, LHA/LZH, NSIS, OOo, PAQ/LPAQ, PEA, QUAD, RAR, RPM, split, TAR, Z, ZIP, ZIPX, Zstandard. peazip lgpl-3.0 2232    
https://github.com/magwyz/mediaLexicometer Tools to do lexicometry on media magwyz agpl-3.0 40    
https://github.com/payloadbox/xss-payload-list 🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List payloadbox mit 3806    
https://github.com/swisscom/ArtifactCollectionMatrix Forensic Artifact Collection Tool Matrix swisscom other 29    
https://github.com/HoShiMin/Sig The most powerful and customizable binary pattern scanner HoShiMin mit 143    
https://github.com/cariboulabs/cariboulite CaribouLite turns any 40-pin Raspberry-Pi into a Tx/Rx 6GHz SDR cariboulabs   846    
https://github.com/threathunters-io/laurel Transform Linux Audit logs for SIEM usage threathunters-io gpl-3.0 440    
https://github.com/benthosdev/benthos Fancy stream processing made operationally mundane benthosdev mit 4912    
https://github.com/kevthehermit/volatility_symbols Volatility Symbol Generator for Linux Kernels kevthehermit   14    
https://github.com/mytechnotalent/Reverse-Engineering A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures. mytechnotalent apache-2.0 7459    
https://github.com/jthuraisamy/SysWhispers AV/EDR evasion via direct system calls. jthuraisamy apache-2.0 1410    
https://github.com/dfir-iris/iris-web Collaborative Incident Response platform dfir-iris lgpl-3.0 538    
https://github.com/tanc7/EXOCET-AV-Evasion EXOCET - AV-evading, undetectable, payload delivery tool tanc7   662    
https://github.com/Ne0nd0g/merlin-agent   Ne0nd0g gpl-3.0 95    
https://github.com/deepset-ai/haystack :mag: Haystack is an open source NLP framework that leverages pre-trained Transformer models. It enables developers to quickly implement production-ready semantic search, question answering, summarization and document ranking for a wide range of NLP applications. deepset-ai apache-2.0 5986    
https://github.com/fuzzuf/fuzzuf Fuzzing Unification Framework fuzzuf agpl-3.0 298    
https://github.com/LingDong-/shan-shui-inf Procedurally generated Chinese landscape painting. LingDong- mit 4922    
https://github.com/cdnjs/cdnjs 🤖 CDN assets - The #1 free and open source CDN built to make life easier for developers. cdnjs mit 9689    
https://github.com/IndrajeetPatil/ggstatsplot Enhancing {ggplot2} plots with statistical analysis 📊🎨📣 IndrajeetPatil gpl-3.0 1586    
https://github.com/juju4/ansible-hashlookupserver Install hashlookup-server, minimal and fast open source server (ReST/API) to lookup quickly hash value from large datase t. juju4 bsd-2-clause 1    
https://github.com/daniestevez/jupyter_notebooks Assorted Jupyter notebooks by Daniel Estévez daniestevez gpl-3.0 97    
https://github.com/constellation-app/constellation A graph-focused data visualisation and interactive analysis application. constellation-app apache-2.0 349    
https://github.com/archanchoudhury/SOC-OpenSource This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC architecture. archanchoudhury cc0-1.0 247    
https://github.com/hashlookup/hashlookup-forensic-analyser Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https://circl.lu/services/hashlookup/ hashlookup other 91    
https://github.com/ubfx/BinDiffHelper Ghidra Extension to integrate BinDiff for function matching ubfx   174    
https://github.com/Cracked5pider/KaynLdr KaynLdr is a Reflective Loader written in C/ASM Cracked5pider   406    
https://github.com/cursey/regenny A reverse engineering tool to interactively reconstruct structures and generate header files cursey mit 79    
https://github.com/gkiril/benchie Comprehensive evaluation framework for Open Information Extraction. gkiril other 26    
https://github.com/Yamato-Security/WELA WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ) Yamato-Security gpl-3.0 462    
https://github.com/rescuezilla/rescuezilla The Swiss Army Knife of System Recovery rescuezilla gpl-3.0 667    
https://github.com/NUKIB/misp-modules Docker image for MISP modules NUKIB gpl-3.0 4    
https://github.com/dragnet-org/dragnet Just the facts – web page content extraction dragnet-org mit 1075    
https://github.com/jstrosch/learning-malware-analysis This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to worry about handling live malware. jstrosch   124    
https://github.com/Fare9/KUNAI-static-analyzer Tool aimed to provide a binary analysis of different file formats through the use of an Intermmediate Representation. Fare9 mit 75    
https://github.com/SamuelTulach/efi-memory PoC EFI runtime driver for memory r/w & kdmapper fork SamuelTulach   330    
https://github.com/LanikSJ/dfimage Reverse-engineer a Dockerfile from a Docker image. LanikSJ mit 208    
https://github.com/ssthouse/tree-chart Flexible tree chart using Canvas and Svg, powered by D3.js; ✅Support Vue, Vue3 and React; ssthouse mit 328    
https://github.com/StrangerealIntel/Orion A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses … StrangerealIntel   112    
https://github.com/bats3c/shad0w A post exploitation framework designed to operate covertly on heavily monitored environments bats3c mit 1796    
https://github.com/Mr-Un1k0d3r/DKMC DKMC - Dont kill my cat - Malicious payload evasion tool Mr-Un1k0d3r other 1220    
https://github.com/Yamato-Security/hayabusa Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs. Yamato-Security gpl-3.0 815    
https://github.com/Srakai/Adun A way to backdoor every process Srakai gpl-3.0 58    
https://github.com/ChrisTheCoolHut/Zeratool Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems ChrisTheCoolHut gpl-3.0 950    
https://github.com/janmojzis/tinyssh TinySSH is small server (less than 100000 words of code) janmojzis other 881    
https://github.com/gqrx-sdr/gqrx Software defined radio receiver powered by GNU Radio and Qt. gqrx-sdr gpl-3.0 2257    
https://github.com/cve-search/git-vuln-finder Finding potential software vulnerabilities from git commit messages cve-search   320    
https://github.com/wader/fq jq for binary formats wader other 4534    
https://github.com/dgtlmoon/changedetection.io changedetection.io - The best and simplest self-hosted free open source website change detection tracking, monitoring and notification service. An alternative to Visualping, Watchtower etc. Designed for simplicity - the main goal is to simply monitor which websites had a text change for free. Free Open source web page change detection dgtlmoon apache-2.0 6310    
https://github.com/dafthack/DomainPasswordSpray DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS! dafthack mit 1254    
https://github.com/j3ssie/osmedeus A Workflow Engine for Offensive Security j3ssie mit 4082    
https://github.com/ziesemer/ad-privileged-audit Provides various Windows Server Active Directory (AD) security-focused reports. ziesemer   44    
https://github.com/mufeedvh/moonwalk Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. mufeedvh mit 1043    
https://github.com/boun-tabi/RELX The RELX Dataset and Matching the Multilingual Blanks for Cross-Lingual Relation Classification, EMNLP-Findings 2020. boun-tabi mit 19    
https://github.com/svenstaro/genact 🌀 A nonsense activity generator svenstaro mit 6632    
https://github.com/TheCruZ/EFI_Driver_Access Efi Driver Access is a simply project to load a driver during system boot with the idea to give the user kernel access for read/write memory without restrictions TheCruZ   212    
https://github.com/phoboslab/qoi The “Quite OK Image Format” for fast, lossless image compression phoboslab   5855    
https://github.com/tylerhou/fiber   tylerhou apache-2.0 225    
https://github.com/bohops/RogueAssemblyHunter Rogue Assembly Hunter is a utility for discovering ‘interesting’ .NET CLR modules in running processes. bohops mit 104    
https://github.com/msrkp/exploits ’>”><img src=x onerror=alert(1) />asd msrkp   46    
https://github.com/go-gitea/gitea Git with a cup of tea, painless self-hosted git service go-gitea mit 33084    
https://github.com/SigmaHQ/pySigma Python library to parse and convert Sigma rules into queries (and whatever else you could imagine) SigmaHQ lgpl-2.1 143    
https://github.com/MISP/cexf Common Exercise Format - CEXF MISP   9    
https://github.com/johnkerl/miller Miller is like awk, sed, cut, join, and sort for name-indexed data such as CSV, TSV, and tabular JSON johnkerl other 5779    
https://github.com/enisaeu/CNW The CSIRTs Network is a network composed of EU Member States’ appointed CSIRTs and CERT-EU. It provides a forum where members can cooperate, exchange information and build trust. enisaeu   17    
https://github.com/wagoodman/dive A tool for exploring each layer in a docker image wagoodman mit 34295    
https://github.com/Its-Vichy/GoriaNet 🐼 IoT worm written in pure golang. Its-Vichy gpl-3.0 68    
https://github.com/MaxHalford/procedural-art :milky_way: Procedural art with vanilla JavaScript MaxHalford mit 85    
https://github.com/lucidworks/banana Banana for Solr - A Port of Kibana lucidworks other 667    
https://github.com/gamozolabs/elfloader An architecture-agnostic ELF file flattener for shellcode gamozolabs mit 188    
https://github.com/vfsfitvnm/intruducer A Rust crate to load a shared library into a Linux process without using ptrace. vfsfitvnm mit 85    
https://github.com/saferwall/pe A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations. saferwall mit 152    
https://github.com/bongtrop/hbctool Hermes Bytecode Reverse Engineering Tool (Assemble/Disassemble Hermes Bytecode) bongtrop mit 185    
https://github.com/scottrogowski/code2flow Pretty good call graphs for dynamic languages scottrogowski mit 2812    
https://github.com/ius/rsatool rsatool can be used to calculate RSA and RSA-CRT parameters ius bsd-2-clause 856    
https://github.com/fomantic/Fomantic-UI Fomantic-UI is the official community fork of Semantic-UI fomantic mit 3074    
https://github.com/Semantic-Org/Semantic-UI Semantic is a UI component framework based around useful principles from natural language. Semantic-Org mit 50214    
https://github.com/elihunter173/java-manifest-py Encode/decode Java’s META-INF/MANIFEST.MF in Python. elihunter173 agpl-3.0 4    
https://github.com/RedHatProductSecurity/vulnerability-detection-scripts Vulnerability detection scripts for Red Hat Enterprise Linux RedHatProductSecurity gpl-3.0 15    
https://github.com/obriencj/python-javatools Tools for examining Java bytecode in Python obriencj lgpl-3.0 80    
https://github.com/haimgel/display-switch Turn a $30 USB switch into a full-featured multi-monitor KVM switch haimgel mit 2250    
https://github.com/curated-intel/Log4Shell-IOCs A collection of intelligence about Log4Shell and its exploitation activity. curated-intel   170    
https://github.com/zyantific/zasm x86-64 Assembler based on Zydis zyantific mit 158    
https://github.com/frohoff/ysoserial A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. frohoff mit 5833    
https://github.com/push0ebp/xMalHunter x64dbg Malware Plugin. Detect malicious materials push0ebp mit 13    
https://github.com/0dayCTF/reverse-shell-generator Hosted Reverse Shell generator with a ton of functionality. – (Great for CTFs) 0dayCTF mit 1548    
https://github.com/AFLplusplus/StdFuzzer StdFuzzer is the reference implementation of a generic bit-level fuzzer with LibAFL AFLplusplus   41    
https://github.com/unipacker/unipacker Automatic and platform-independent unpacker for Windows binaries based on emulation unipacker gpl-2.0 493    
https://github.com/staaldraad/dnstrap Trap dns requests staaldraad   4    
https://github.com/androguard/androguard Reverse engineering and pentesting for Android applications androguard apache-2.0 4163    
https://github.com/h2non/jsonpath-ng Finally, a JSONPath implementation for Python that aims to be standard compliant. That’s all. Enjoy it. h2non apache-2.0 358    
https://github.com/proferosec/log4jScanner log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services proferosec gpl-3.0 479    
https://github.com/NotSoSecure/password_cracking_rules One rule to crack all passwords. or atleast we hope so. NotSoSecure mit 977    
https://github.com/cbaziotis/ekphrasis Ekphrasis is a text processing tool, geared towards text from social networks, such as Twitter or Facebook. Ekphrasis performs tokenization, word normalization, word segmentation (for splitting hashtags) and spell correction, using word statistics from 2 big corpora (english Wikipedia, twitter - 330mil english tweets). cbaziotis mit 587    
https://github.com/jbesomi/texthero Text preprocessing, representation and visualization from zero to hero. jbesomi mit 2616    
https://github.com/chartbeat-labs/textacy NLP, before and after spaCy chartbeat-labs other 1991    
https://github.com/facebookresearch/cc_net Tools to download and cleanup Common Crawl data facebookresearch mit 469    
https://github.com/naim94a/lumen A private Lumina server for IDA Pro naim94a mit 557    
https://github.com/hydra-synth/hydra Livecoding networked visuals in the browser hydra-synth agpl-3.0 1796    
https://github.com/mrexodia/dumpulator An easy-to-use library for emulating code in minidump files. mrexodia bsl-1.0 339    
https://github.com/trailofbits/it-depends A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories. trailofbits lgpl-3.0 265    
https://github.com/facebook/mariana-trench Our security focused static analysis tool for Android and Java applications. facebook mit 896    
https://github.com/D4-project/pybgpranking Python API for BGP Ranking D4-project bsd-3-clause 3    
https://github.com/RolfRolles/Miscellaneous Small programs and scripts that do not require their own repositories RolfRolles gpl-3.0 110    
https://github.com/easystats/see :art: Visualisation toolbox for beautiful and publication-ready figures easystats gpl-3.0 677    
https://github.com/milvus-io/milvus Vector database for scalable similarity search and AI applications. milvus-io apache-2.0 14128    
https://github.com/adulau/ssldump ssldump - (de-facto repository gathering patches around the cyberspace) adulau other 168    
https://github.com/hectorm/demergi A proxy server that helps to bypass the DPI systems implemented by various ISPs. hectorm mit 8    
https://github.com/e-m-b-a/embark EMBArk - The firmware security scanning environment e-m-b-a mit 169    
https://github.com/monoxgas/sRDI Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode monoxgas other 1523    
https://github.com/knownsec/404StarLink-Project Focus on promoting the evolution of tools in different aspects of security research.专注于推动安全研究各个领域工具化.(项目收录逐步迁移至 https://github.com/knownsec/404StarLink) knownsec   738    
https://github.com/yogeshojha/rengine reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine’s correlation, it just makes recon effortless. yogeshojha gpl-3.0 4818    
https://github.com/unixpickle/gobfuscate Obfuscate Go binaries and packages unixpickle bsd-2-clause 1216    
https://github.com/0xsp-SRD/mortar evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR) 0xsp-SRD mit 980    
https://github.com/redcode-labs/REVENANT Volatile ELF payloads generator with Metasploit integrations for testing GNU/Linux ecosystems redcode-labs   53    
https://github.com/anchore/grype A vulnerability scanner for container images and filesystems anchore apache-2.0 4730    
https://github.com/ly4k/Pachine Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation) ly4k mit 247    
https://github.com/microsoft/recommenders Best Practices on Recommendation Systems microsoft mit 14336    
https://github.com/cisagov/log4j-affected-db A community sourced list of log4j-affected software cisagov cc0-1.0 1111    
https://github.com/weslambert/velociraptor-misp Artifacts for integrating MISP with Velociraptor weslambert   3    
https://github.com/GenericException/SkidSuite A collection of java reverse engineering tools and informational links GenericException   192    
https://github.com/WazeHell/sam-the-admin Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user WazeHell   860    
https://github.com/nccgroup/log4j-jndi-be-gone A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x “JNDI LDAP” vulnerability. nccgroup apache-2.0 72    
https://github.com/paradoxwastaken/Poseidon stealthy UM <-> KM communication system without creating any system threads, permanent hooks, driver objects, section objects or device objects. paradoxwastaken   188    
https://github.com/woodpecker-appstore/log4j-payload-generator Log4j jndi injects the Payload generator woodpecker-appstore   462    
https://github.com/LeakIX/l9fuzz Help fuzz various protocols and waits for ping backs Integrates LDAP server and JNDI payload LeakIX   11    
https://github.com/CycloneDX/specification Software Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis CycloneDX apache-2.0 185    
https://github.com/Ridter/noPac Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user Ridter   465    
https://github.com/NCSC-NL/log4shell Operational information regarding the log4shell vulnerabilities in the Log4j logging library. NCSC-NL   1887    
https://github.com/CycloneDX/cyclonedx-cli CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions. CycloneDX apache-2.0 117    
https://github.com/CycloneDX/cyclonedx-python Creates CycloneDX Software Bill of Materials (SBOM) from Python projects and environments. CycloneDX apache-2.0 104    
https://github.com/righel/log4shell_nse nse script to inject jndi payloads righel   42    
https://github.com/danieljs777/fastoverflowtk This Buffer Overflow Toolkit works through FTP, SMTP, POP, HTTP protocols as well file outputs for playlists exploiting customized variables/commands. Payloads can be generated through MSFVENOM or you can use your own ASM files. danieljs777   17    
https://github.com/Mr-Un1k0d3r/MiniDump alternative to procdump Mr-Un1k0d3r   177    
https://github.com/jivoi/awesome-osint :scream: A curated list of amazingly awesome OSINT jivoi other 10738    
https://github.com/inconvergent/weird Generative art in Common Lisp inconvergent other 1472    
https://github.com/kjellmf/dot2tex Convert graphs generated by Graphviz to LaTeX friendly formats kjellmf other 133    
https://github.com/malpedia/signator-rules Collection of rules created using YARA-Signator over Malpedia malpedia   62    
https://github.com/MelbourneFuzzingHub/aflteam AFLTeam Collaborative Parallel Fuzzing MelbourneFuzzingHub apache-2.0 63    
https://github.com/Cybereason/Logout4Shell Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell Cybereason mit 1726    
https://github.com/cube0x0/noPac CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter. cube0x0   1152    
https://github.com/nneonneo/ghidra-wasm-plugin Ghidra Wasm plugin with disassembly and decompilation support nneonneo gpl-3.0 88    
https://github.com/mozilla/mig Distributed & real time digital forensics at the speed of the cloud mozilla mpl-2.0 1194    
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words 🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks Puliczek   858    
https://github.com/paulbrodersen/netgraph Drawing utilities for publication quality plots of networks paulbrodersen gpl-3.0 428    
https://github.com/cert-lv/graphoscope Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph cert-lv   29    
https://github.com/YfryTchsGD/Log4jAttackSurface   YfryTchsGD   2091    
https://github.com/ptswarm/reFlutter Flutter Reverse Engineering Framework ptswarm gpl-3.0 874    
https://github.com/MISP/misp-warninglists Warning lists to inform users of MISP about potential false-positives or other information in indicators MISP   311    
https://github.com/charmbracelet/soft-serve A tasty, self-hostable Git server for the command line🍦 charmbracelet mit 2712    
https://github.com/horizon3ai/CVE-2021-44077 Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077 horizon3ai   26    
https://github.com/hughsie/python-uswid A tiny tool for embedding CoSWID tags in EFI binaries hughsie lgpl-2.1 10    
https://github.com/xonotic/darkplaces Mirror of https://gitlab.com/xonotic/darkplaces - The Quake engine that powers Xonotic https://xonotic.org xonotic gpl-2.0 158    
https://github.com/LDO-CERT/orochi The Volatility Collaborative GUI LDO-CERT mit 136    
https://github.com/minos-org/minos-static static binaries for linux minos-org   307    
https://github.com/CRED-CLUB/ARTIF An advanced real time threat intelligence framework to identify threats and malicious web traffic on the basis of IP reputation and historical data. CRED-CLUB mit 224    
https://github.com/Michaelangel007/crc32 CRC32 Demystified Michaelangel007   123    
https://github.com/joshlemon/DFIR-Reference-Frameworks Repository of public reference frameworks for the DFIR community. joshlemon gpl-3.0 87    
https://github.com/nickjj/notes A zero dependency shell script that makes it really simple to manage your text notes. nickjj mit 105    
https://github.com/zinclabs/zinc ZincSearch. A lightweight alternative to elasticsearch that requires minimal resources, written in Go. zinclabs other 12603    
https://github.com/blugelabs/bluge indexing library for Go blugelabs apache-2.0 1474    
https://github.com/mahaloz/objgraph Convert an objdump output into a CFG via Binary Ninja mahaloz bsd-2-clause 6    
https://github.com/idealeer/xmap XMap is a fast network scanner designed for performing Internet-wide IPv6 & IPv4 network research scanning. idealeer apache-2.0 184    
https://github.com/ycm-core/YouCompleteMe A code-completion engine for Vim ycm-core gpl-3.0 24377    
https://github.com/powerline/fonts Patched fonts for Powerline users. powerline   24032    
https://github.com/miguelgrinberg/promisio JavaScript-style async programming for Python. miguelgrinberg mit 190    
https://github.com/SpiderLabs/BlackByteDecryptor   SpiderLabs apache-2.0 53    
https://github.com/enisaeu/training-materials   enisaeu eupl-1.2 5    
https://github.com/zandi/eBPF_processor An IDA processor for eBPF bytecode zandi   52    
https://github.com/CIRCL/orbit-agents orbit-agents CIRCL   2    
https://github.com/nikeee/edotor.net Your favourite Graphviz editor nikeee mit 145    
https://github.com/post-cyberlabs/CVE-Advisory Publishing advisories for CVEs found by POST Cyberforce post-cyberlabs   8    
https://github.com/brimdata/zed A novel data lake based on super-structured data brimdata bsd-3-clause 883    
https://github.com/byt3bl33d3r/OffensiveNim My experiments in weaponizing Nim (https://nim-lang.org/) byt3bl33d3r bsd-2-clause 1867    
https://github.com/hashdd/sdhash similarity digest hashing tool hashdd apache-2.0 2    
https://github.com/gigablast/open-source-search-engine Nov 20 2017 – A distributed open source search engine and spider/crawler written in C/C++ for Linux on Intel/AMD. From gigablast dot com, which has binaries for download. See the README.md file at the very bottom of this page for instructions. gigablast apache-2.0 1391    
https://github.com/p0dalirius/webapp-wordlists This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version. p0dalirius   387    
https://github.com/ipv6hitlist/ipv6hitlist.github.io Website for IPv6 Hitlist Service with data, software, paper of “Clusters in the Expanse: Understanding and Unbiasing IPv6 Hitlists” IMC’18 publication. ipv6hitlist   25    
https://github.com/DanBloomberg/leptonica Leptonica is an open source library containing software that is broadly useful for image processing and image analysis applications. The official github repository for Leptonica is: danbloomberg/leptonica. See leptonica.org for more documentation and recent releases. DanBloomberg other 1313    
https://github.com/crowdsecurity/crowdsec CrowdSec - the open-source and participative IPS able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global CTI database to protect the user network. crowdsecurity mit 5727    
https://github.com/visjs/vis-timeline 📅 Create a fully customizable, interactive timelines and 2d-graphs with items and ranges. visjs other 1138    
https://github.com/visjs/vis-network :dizzy: Display dynamic, automatically organised, customizable network views. visjs apache-2.0 2241    
https://github.com/knownsec/Kunyu Kunyu, more efficient corporate asset collection knownsec gpl-2.0 744    
https://github.com/luispedro/jug Parallel programming with Python luispedro mit 385    
https://github.com/restic/chunker Implementation of Content Defined Chunking (CDC) in Go restic bsd-2-clause 263    
https://github.com/damoeb/rss-proxy RSS-proxy allows you to do create an RSS or ATOM feed of almost any website, just by analyzing just the static HTML structure. damoeb   1362    
https://github.com/apache/solr Apache Solr open-source search software apache apache-2.0 565    
https://github.com/Bioruebe/UniExtract2 Universal Extractor 2 is a tool to extract files from any type of archive or installer. Bioruebe gpl-2.0 2450    
https://github.com/dodancs/douglas-quaid-docker   dodancs gpl-3.0 2    
https://github.com/hasherezade/mal_unpack Dynamic unpacker based on PE-sieve hasherezade bsd-2-clause 458    
https://github.com/holoviz/colorcet A set of useful perceptually uniform colormaps for plotting scientific data holoviz other 584    
https://github.com/jsecurity101/MSRPC-to-ATTACK A repository that maps commonly used attacks using MSRPC protocols to ATT&CK jsecurity101 bsd-3-clause 213    
https://github.com/flashcode/gitchart Build SVG charts from a Git repository. flashcode gpl-3.0 51    
https://github.com/CIRCL/factual-rules-generator Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine. CIRCL agpl-3.0 66    
https://github.com/fleetdm/fleet Fleet is the lightweight, programmable telemetry platform for servers and workstations. Get comprehensive, customizable data from all your devices and operating systems — without the downtime risk. fleetdm other 961    
https://github.com/mazen160/server-status_PWN A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-status instances. mazen160 mit 363    
https://github.com/NCSC-NL/flubot Flubot DGA domains NCSC-NL isc 18    
https://github.com/TingPing/flatpak-cve-checker   TingPing gpl-3.0 2    
https://github.com/DoctorWebLtd/malware-iocs   DoctorWebLtd   127    
https://github.com/icyguider/DumpNParse A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0. icyguider gpl-3.0 116    
https://github.com/phage-nz/misp-feeds Python Service for MISP Feed Management phage-nz   7    
https://github.com/crate/crate CrateDB is a distributed SQL database that makes it simple to store and analyze massive amounts of machine data in real-time. Built on top of Lucene. crate apache-2.0 3527    
https://github.com/glitzflitz/pyxorfilter Python bindings for xorfilter(faster and smaller than bloom and cuckoo filters) glitzflitz apache-2.0 56    
https://github.com/FastFilter/xorfilter Go library implementing binary fuse and xor filters FastFilter apache-2.0 595    
https://github.com/pdillinger/wormhashing Source code and validation tests for “wide odd regenerative multiplication,” or “worm hashing” pdillinger mit 6    
https://github.com/dirtyfilthy/siem-from-scratch SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab dirtyfilthy gpl-3.0 34    
https://github.com/DavidXanatos/wumgr Windows update managemetn tool for windows 10 DavidXanatos gpl-3.0 1067    
https://github.com/stnolting/neoTRNG 🎲 A Tiny and Platform-Independent True Random Number Generator for any FPGA. stnolting bsd-3-clause 65    
https://github.com/klinix5/InstallerFileTakeOver   klinix5 mit 1673    
https://github.com/online-ml/river 🌊 Online machine learning in Python online-ml bsd-3-clause 3784    
https://github.com/KvrocksLabs/kvrocks_exporter Prometheus Exporter for Kvrocks Metrics KvrocksLabs mit 13    
https://github.com/dveselov/python-libmagic Python bindings to libmagic dveselov mit 20    
https://github.com/pdoc3/pdoc :snake: :arrow_right: :scroll: Auto-generate API documentation for Python projects pdoc3 agpl-3.0 894    
https://github.com/laixintao/iredis Interactive Redis: A Terminal Client for Redis with AutoCompletion and Syntax Highlighting. laixintao bsd-3-clause 2175    
https://github.com/vipshop/redis-migrate-tool A convenient and useful tool for migrating data between redis group. vipshop apache-2.0 902    
https://github.com/righel/ms-exchange-version-nse Nmap script to detect a Microsoft Exchange instance version with OWA enabled. righel apache-2.0 26    
https://github.com/ghuntley/thenftbay.org The NFT Bay is the galaxy’s most resilient NFT BitTorrent site! You wouldn’t steal a JPEG (or would you) ghuntley mit 319    
https://github.com/ssh-mitm/ssh-mitm ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation ssh-mitm gpl-3.0 970    
https://github.com/JPCERTCC/EmoCheck Emotet detection tool for Windows OS JPCERTCC other 616    
https://github.com/ets-labs/python-vimrc VIM Configuration for Python / Cython / C Development ets-labs bsd-3-clause 603    
https://github.com/jtesta/ssh-audit SSH server & client auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc) jtesta mit 1380    
https://github.com/blackberry/threat-research-and-intelligence BlackBerry Threat Research & Intelligence blackberry apache-2.0 38    
https://github.com/magicmonty/bash-git-prompt An informative and fancy bash prompt for Git users magicmonty bsd-2-clause 6326    
https://github.com/matusf/openapi-fuzzer Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free! matusf agpl-3.0 385    
https://github.com/OWASP/Python-Honeypot OWASP Honeypot, Automated Deception Framework. OWASP apache-2.0 328    
https://github.com/trufflesecurity/driftwood Private key usage verification trufflesecurity apache-2.0 309    
https://github.com/jmdx/TLS-poison   jmdx mit 639    
https://github.com/c3rb3ru5d3d53c/binlex A Binary Genetic Traits Lexer Framework c3rb3ru5d3d53c unlicense 303    
https://github.com/manishkatyan/bbb-optimize Better audio quality, increase recording processing speed, dynamic video profile, pagination, fix 1007/1020 errors and use apply-config.sh to manage your customizations are some key techniques for you to optimize and smoothly run your BigBlueButton servers. manishkatyan mit 75    
https://github.com/greatscottgadgets/ViewSB open-source USB analyzer toolkit with support for a variety of capture hardware greatscottgadgets bsd-3-clause 287    
https://github.com/nanoc/nanoc A powerful web publishing system nanoc mit 2013    
https://github.com/niedzielski/git-diff-img 📷 Diff Git versioned images graphically. niedzielski   69    
https://github.com/OpenAtomFoundation/pika Pika is a nosql compatible with redis, it is developed by Qihoo’s DBA and infrastructure team OpenAtomFoundation bsd-3-clause 4844    
https://github.com/drmpeg/gr-atsc3 An ATSC 3.0 Transmitter for GNU Radio drmpeg gpl-3.0 14    
https://github.com/sagpant/reindexer   sagpant apache-2.0 3    
https://github.com/searxng/searxng SearXNG is a free internet metasearch engine which aggregates results from various search services and databases. Users are neither tracked nor profiled. searxng agpl-3.0 3435    
https://github.com/tejado/telegram-nearby-map Discover the location of nearby Telegram users 📡🌍 tejado gpl-3.0 433    
https://github.com/dlukes/rbo Python implementation of the rank-biased overlap list similarity measure. dlukes   58    
https://github.com/helpsystems/nanodump A crappy LSASS dumper with no ASCII art helpsystems apache-2.0 1022    
https://github.com/quarkslab/titanm This repository contains the tools we used in our research on the Google Titan M chip quarkslab apache-2.0 147    
https://github.com/SEKOIA-IO/Community Welcome to the SEKOIA.IO Community repository! SEKOIA-IO   37    
https://github.com/stratosphereips/StratosphereLinuxIPS Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague. stratosphereips other 336    
https://github.com/opencybersecurityalliance/kestrel-lang Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel. opencybersecurityalliance apache-2.0 183    
https://github.com/PlumLulz/hashes.com-cli Command line interface to interact with hashes.com escrow service. PlumLulz   22    
https://github.com/Lookyloo/webext Web extension to submit a URL with its context to a Lookyloo instance Lookyloo bsd-3-clause 2    
https://github.com/mav8557/Father LD_PRELOAD rootkit mav8557 unlicense 73    
https://github.com/mmxgn/spacy-clausie Implementation of the ClausIE information extraction system for python+spacy mmxgn gpl-3.0 181    
https://github.com/magjac/d3-graphviz Graphviz DOT rendering and animated transitions using D3 magjac bsd-3-clause 1354    
https://github.com/b4den/rsacrack A toolbox for extracting RSA private keys from public keys. b4den   150    
https://github.com/righel/gitlab-version-nse Nmap script to guess* a GitLab version. righel apache-2.0 118    
https://github.com/mcore1976/antispy-jammer Simplest ultrasonic ANTISPY voice recording jammer based on ATTINY13 / ATTINY85 / ARDUINO with PAM8403 module driving piezo ultrasonic transducers (and optionally AD8933 signal generator) mcore1976   54    
https://github.com/docker-forensics-toolkit/toolkit A toolkit for the post-mortem examination of Docker containers from forensic HDD copies docker-forensics-toolkit apache-2.0 54    
https://github.com/ail-project/ail-feeder-gharchive AIL feeder for GitHub archive - gharchive.org ail-project   2    
https://github.com/NicholasMamo/multiplex-plot Multiplex: visualizations that tell stories—A Python library to create and annotate beautiful network graph visualizations, text visualizations and more. NicholasMamo gpl-3.0 90    
https://github.com/airbus-seclab/GEA1_break Implementation of the key recovery attack against GEA-1 keys (Eurocrypt 2021) airbus-seclab gpl-2.0 47    
https://github.com/Squiblydoo/MalAPIReader Reads and prints information from the website MalAPI.io Squiblydoo gpl-3.0 15    
https://github.com/binref/refinery High Octane Triage Analysis binref other 300    
https://github.com/FerretDB/FerretDB A truly Open Source MongoDB alternative FerretDB apache-2.0 4901    
https://github.com/xorhex/mlget A golang CLI tool to download malware from a variety of sources. xorhex   107    
https://github.com/netsampler/goflow2 High performance sFlow/IPFIX/NetFlow Collector netsampler bsd-3-clause 210    
https://github.com/kholia/john John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs kholia   13    
https://github.com/nbriz/sneakrypt A simple CLI for synchronously encrypting and decrypting text files modeled on the classic hacker film Sneakers, because there’s no technical reason hacking can’t look the way it does in the movies. nbriz gpl-3.0 11    
https://github.com/center-for-threat-informed-defense/attack_to_cve A methodology for mapping MITRE ATT&CK techniques to vulnerability records to describe the impact of a vulnerability. center-for-threat-informed-defense apache-2.0 127    
https://github.com/jiesutd/NCRFpp NCRF++, a Neural Sequence Labeling Toolkit. Easy use to any sequence labeling tasks (e.g. NER, POS, Segmentation). It includes character LSTM/CNN, word LSTM/CNN and softmax/CRF components. jiesutd apache-2.0 1833    
https://github.com/helloflask/bootstrap-flask Bootstrap 4 & 5 helper for your Flask projects. helloflask other 767    
https://github.com/EricZimmerman/KapeFiles This repository serves as a place for community created Targets and Modules for use with KAPE. EricZimmerman mit 391    
https://github.com/MiroKaku/Nt-Modules Collect different versions of Crucial modules. MiroKaku   93    
https://github.com/scottashipp/noted Lightweight CLI for taking markdown notes in a journal-like (time-seried) fashion scottashipp gpl-3.0 67    
https://github.com/KB5201314/yark Yet another Linux Rootkit KB5201314   17    
https://github.com/bestpractical/rtir-extension-misp   bestpractical   4    
https://github.com/ajkhoury/ReClassEx ReClassEx ajkhoury mit 736    
https://github.com/V1D1AN/S1EM This project is a SIEM with SIRP and Threat Intel, all in one. V1D1AN   262    
https://github.com/hashlookup/hashlookup-importer Directory importer for hashlookup server hashlookup   2    
https://github.com/zmap/constants Repository of constants used in TLS and X509 parsing zmap   10    
https://github.com/CERTCC/kaiju CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is the primary, canonical repository for this project – file bug reports and wishes here! CERTCC other 168    
https://github.com/Mahlet-Inc/hobbits A multi-platform GUI for bit-based analysis, processing, and visualization Mahlet-Inc mit 524    
https://github.com/cerebrate-project/module-collection   cerebrate-project agpl-3.0 2    
https://github.com/nccgroup/umap2 Umap2 is the second revision of NCC Group’s python based USB host security assessment tool. nccgroup agpl-3.0 223    
https://github.com/broccolini/swiss Jekyll theme inspired by Swiss design broccolini mit 444    
https://github.com/pantsbuild/pex A library and tool for generating .pex (Python EXecutable) files pantsbuild apache-2.0 2168    
https://github.com/Dvd848/pytai Kaitai Struct: Visualizer and Hex Viewer GUI in Python Dvd848 other 95    
https://github.com/B2R2-org/B2R2 B2R2 is a collection of useful algorithms, functions, and tools for binary analysis. B2R2-org mit 359    
https://github.com/curated-intel/Initial-Access-Broker-Landscape A visualized overview of the Initial Access Broker (IAB) cybercrime landscape curated-intel   91    
https://github.com/canonical/section_ops Section operation hacks canonical mit 3    
https://github.com/ANSSI-FR/MLA Multi Layer Archive - A pure rust encrypted and compressed archive file format ANSSI-FR lgpl-3.0 272    
https://github.com/center-for-threat-informed-defense/attack-workbench-rest-api An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository contains the REST API service for storing, querying, and editing ATT&CK objects. center-for-threat-informed-defense apache-2.0 19    
https://github.com/Shell-Company/Public-Shell-Company Provision on-demand anonymous shells via SMS Shell-Company   8    
https://github.com/BentonEdmondson/knock Convert ACSM files to PDFs/EPUBs with one command on Linux BentonEdmondson gpl-3.0 564    
https://github.com/SentineLabs/AlphaGolang IDApython Scripts for Analyzing Golang Binaries SentineLabs gpl-3.0 350    
https://github.com/RH-ISAC/PyOTI Python library for threat intelligence RH-ISAC gpl-3.0 54    
https://github.com/optiv/ScareCrow ScareCrow - Payload creation framework designed around EDR bypass. optiv mit 2069    
https://github.com/BushidoUK/CTI-Quiz Practice CTI Quiz BushidoUK   7    
https://github.com/D4-project/pyipasnhistory API client for IPASN History D4-project   3    
https://github.com/kindtime/nosferatu Windows NTLM Authentication Backdoor kindtime   189    
https://github.com/scrapinghub/article-extraction-benchmark Article extraction benchmark: dataset and evaluation scripts scrapinghub mit 146    
https://github.com/adbar/trafilatura Python & command-line tool to gather text on the Web: web crawling/scraping, extraction of text, metadata, comments adbar gpl-3.0 634    
https://github.com/matterpoll/matterpoll Create polls and surveys directly within Mattermost matterpoll mit 223    
https://github.com/tsale/Rita-zeek_analysis Script to install rita and zeek and then analyze related logs tsale   6    
https://github.com/CQCL/lambeq A high-level Python library for Quantum Natural Language Processing CQCL apache-2.0 304    
https://github.com/jfilter/clean-text 🧹 Python package for text cleaning jfilter other 716    
https://github.com/amir-zeldes/gum Repository for the Georgetown University Multilayer Corpus (GUM) amir-zeldes other 71    
https://github.com/GitJournal/GitJournal Mobile first Note Taking integrated with Git GitJournal agpl-3.0 2715    
https://github.com/kanidm/kanidm Kanidm: A simple, secure and fast identity management platform kanidm mpl-2.0 1179    
https://github.com/ranaroussi/yfinance Download market data from Yahoo! Finance’s API ranaroussi apache-2.0 7852    
https://github.com/RaRe-Technologies/gensim Topic Modelling for Humans RaRe-Technologies lgpl-2.1 13667    
https://github.com/aliyunav/Finger A tool for recognizing function symbol aliyunav gpl-3.0 319    
https://github.com/aquasecurity/tracee Linux Runtime Security and Forensics using eBPF aquasecurity apache-2.0 2258    
https://github.com/jubairsaidi/urlinsane Multilingual domain typo permutation engine used to perform or detect typosquatting, brandjacking, URL hijacking, fraud, phishing attacks, corporate espionage and threat intelligence. jubairsaidi mit 4    
https://github.com/meixler/Page-Integrity Page Integrity is a web browser extension for Firefox, for verifying the integrity of web pages. meixler   5    
https://github.com/SK-CERT/Taranis-NG Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains a user portal for simple self asset management. Taranis NG was developed by SK-CERT with a help from wide CSIRT community. SK-CERT eupl-1.2 45    
https://github.com/ail-project/ail-splash-manager   ail-project gpl-3.0 4    
https://github.com/quarkslab/mattermost-plugin-e2ee End-to-end encryption plugin for Mattermost quarkslab apache-2.0 48    
https://github.com/OALabs/hashdb-ida HashDB API hash lookup plugin for IDA Pro OALabs bsd-3-clause 223    
https://github.com/OALabs/hashdb Assortment of hashing algorithms used in malware OALabs apache-2.0 197    
https://github.com/mandiant/flare-ida IDA Pro utilities from FLARE team mandiant apache-2.0 1801    
https://github.com/zqtay/Telegram-Message-Analyzer Process the exported Telegram chat history .html and generate a report message count by date, and most used words. zqtay   22    
https://github.com/mncoppola/suterusu An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM mncoppola mit 580    
https://github.com/rly0nheart/occli A command line tool that queries the Open Corporates Database and returns data on corporations under the copyleft Open Database License. rly0nheart gpl-3.0 30    
https://github.com/bats3c/DarkLoadLibrary LoadLibrary for offensive operations bats3c   728    
https://github.com/okbob/pspg Unix pager (with very rich functionality) designed for work with tables. Designed for PostgreSQL, but MySQL is supported too. Works well with pgcli too. Can be used as CSV or TSV viewer too. It supports searching, selecting rows, columns, or block and export selected area to clipboard. okbob bsd-2-clause 1910    
https://github.com/herosi/CTO Call Tree Overviewer herosi mit 255    
https://github.com/Invoke-IR/PowerForensics PowerForensics provides an all in one platform for live disk forensic analysis Invoke-IR mit 1242    
https://github.com/xwmx/nb CLI and local web plain text note‑taking, bookmarking, and archiving with linking, tagging, filtering, search, Git versioning & syncing, Pandoc conversion, + more, in a single portable script. xwmx agpl-3.0 4872    
https://github.com/Jeija/librenard Reverse Engineered Sigfox Stack - Library Jeija   20    
https://github.com/dariusk/corpora A collection of small corpuses of interesting data for the creation of bots and similar stuff. dariusk   4536    
https://github.com/aparrish/pycorpora A simple Python interface for Darius Kazemi’s Corpora Project. aparrish mit 113    
https://github.com/zinggAI/zingg Scalable identity resolution, entity resolution, data mastering and deduplication using ML zinggAI agpl-3.0 632    
https://github.com/projectdiscovery/interactsh An OOB interaction gathering server and client library projectdiscovery mit 1978    
https://github.com/nil0x42/phpsploit Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor nil0x42 gpl-3.0 1808    
https://github.com/wagga40/Zircolite A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs wagga40   420    
https://github.com/jmpsec/osctrl Fast and efficient osquery management jmpsec mit 251    
https://github.com/zentralopensource/zentral Zentral provides a unified view for endpoint monitoring. Comprehensive features include Santa binary authorization and patch management orchestration on macOS, as well as detailed Qsquery fleet management - all paired with event based stream processing and direct support for a range of data store backends (Elastic, OpenSearch, SumoLogic, Splunk, e.g.). zentralopensource other 650    
https://github.com/ICIJ/datashare Better analyze information, in all its forms ICIJ agpl-3.0 438    
https://github.com/clockfort/GitHub-Backup Backup all the repositories of a github user or organization automatically. clockfort cc0-1.0 267    
https://github.com/HugoLB0/browser-creds recover Firefox and more browsers logins HugoLB0   42    
https://github.com/my5G/my5G-non3GPP-access Implements a security connection using untrusted non3GPP my5G apache-2.0 30    
https://github.com/qeeqbox/honeypots 25 different honeypots in a single pypi package! (dns, ftp, httpproxy, http, https, imap, mysql, pop3, postgres, redis, smb, smtp, socks5, ssh, telnet, vnc, mssql, elastic, ldap, ntp, memcache, snmp, oracle, sip and irc) qeeqbox agpl-3.0 234    
https://github.com/SocialConnect/auth :atom: Social (OAuth1\OAuth2\OpenID\OpenIDConnect) sign with PHP :shipit: SocialConnect mit 511    
https://github.com/mcrumm/mystex_pizza_on_broadway An example of batching for operations with Elixir and Broadway mcrumm apache-2.0 20    
https://github.com/nltk/nltk NLTK Source nltk apache-2.0 11185    
https://github.com/aaronland/go-flickr-api Go package for working with the Flickr API aaronland bsd-3-clause 1    
https://github.com/jbapple/libfilter High-speed Bloom filters and taffy filters for C, C++, and Java jbapple apache-2.0 24    
https://github.com/ossf/oss-vulnerability-guide A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disclosure notifications. ossf cc-by-4.0 72    
https://github.com/gallypette/ia-torrent Retrive torrent files from an Internet Archive search gallypette other 2    
https://github.com/stuhli/awesome-event-ids Collection of Event ID ressources useful for Digital Forensics and Incident Response stuhli mit 384    
https://github.com/shelld3v/PwnVPN The best exploitation tool for SSL VPN 0day vulnerabilities. shelld3v   71    
https://github.com/cisagov/crossfeed External monitoring for organization assets cisagov cc0-1.0 234    
https://github.com/advanced-threat-research/DarkSide-Config-Extract   advanced-threat-research   30    
https://github.com/wummel/patool patool is a portable command line archive file manager wummel gpl-3.0 312    
https://github.com/redpanda-data/redpanda Redpanda is a streaming data platform for developers. Kafka API compatible. 10x faster. No ZooKeeper. No JVM! redpanda-data   5150    
https://github.com/apjanke/ronn-ng Ronn-NG: An updated fork of ronn. Build man pages from Markdown. apjanke mit 48    
https://github.com/rtomayko/ronn the opposite of roff rtomayko other 1306    
https://github.com/aubio/aubio a library for audio and music analysis aubio gpl-3.0 2819    
https://github.com/slsa-framework/slsa Supply-chain Levels for Software Artifacts slsa-framework other 918    
https://github.com/alex-shpak/hugo-book Hugo documentation theme as simple as plain book alex-shpak mit 2062    
https://github.com/CESNET/ipfixprobe   CESNET bsd-3-clause 15    
https://github.com/CESNET/Nemea System for network traffic analysis and anomaly detection. CESNET other 70    
https://github.com/fofapro/fapro Fake Protocol Server fofapro   1324    
https://github.com/blacklanternsecurity/MANSPIDER Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported! blacklanternsecurity   591    
https://github.com/graphlab-fr/cosma Cosma is a document graph visualization tool. It modelizes interlinked Markdown files and renders them as an interactive network in a web interface. graphlab-fr gpl-3.0 40    
https://github.com/vesoft-inc/nebula A distributed, fast open-source graph database featuring horizontal scalability and high availability vesoft-inc apache-2.0 8170    
https://github.com/VIDA-NYU/ache ACHE is a web crawler for domain-specific search. VIDA-NYU apache-2.0 374    
https://github.com/ascoderu/xtarfile Wrapper around tarfile to add support for more compression formats ascoderu apache-2.0 6    
https://github.com/tylertreat/BoomFilters Probabilistic data structures for processing continuous, unbounded streams. tylertreat apache-2.0 1487    
https://github.com/DCSO/bloom A highly efficient Bloom filter library and command line tool written in Go. DCSO other 56    
https://github.com/DCSO/tiffy TIE Feed Generator for MISP (replaces tie2misp) DCSO bsd-3-clause 5    
https://github.com/ashemery/exploitation-course Offensive Software Exploitation Course ashemery   762    
https://github.com/aaugustin/websockets Library for building WebSocket servers and clients in Python aaugustin bsd-3-clause 4234    
https://github.com/lockedbyte/CVE-2021-40444 CVE-2021-40444 PoC lockedbyte   1444    
https://github.com/splunk/attack_data A repository of curated datasets from various attacks splunk apache-2.0 336    
https://github.com/caiobran/mstables MorningStar.com scraper that consolidates tens of thousands of financial records into a SQLite relational database. Class ‘dataframes’ easily converts the SQLite data into pandas DataFrames (see Jupyter notebook for examples) caiobran mit 137    
https://github.com/raw-packet/raw-packet Raw-packet Project raw-packet mit 197    
https://github.com/arthurdejong/python-stdnum A Python library to provide functions to handle, parse and validate standard numbers. arthurdejong lgpl-2.1 385    
https://github.com/PassiveDNS/PassiveDNS Web Application for domain name monitoring / alerting PassiveDNS agpl-3.0 54    
https://github.com/quotient-im/Quaternion A Qt5-based IM client for Matrix quotient-im gpl-3.0 550    
https://github.com/otiai10/ocrserver A simple OCR API server, seriously easy to be deployed by Docker, on Heroku as well otiai10 mit 531    
https://github.com/bitfieldaudio/OTTO Sampler, Sequencer, Multi-engine synth and effects - in a box! [WIP] bitfieldaudio other 2510    
https://github.com/austinsonger/Incident-Playbook GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly] austinsonger mit 963    
https://github.com/post-cyberlabs/PyMISP_Telecom Script examples to interact with Telecom Data / Objects via PyMISP post-cyberlabs agpl-3.0 6    
https://github.com/lorien/awesome-pastebin List of pastebin sites. lorien   47    
https://github.com/eljefe7000/RestApiToText RestApiToText Notepad++ plugin that uses input from an editor tab to make a REST call and display the results in a new tab. eljefe7000 gpl-3.0 13    
https://github.com/cristianzsh/freki :wolf: Malware analysis platform cristianzsh agpl-3.0 357    
https://github.com/coolacid/docker-misp A (nearly) production ready Dockered MISP coolacid gpl-3.0 181    
https://github.com/geemion/Khepri Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++. geemion apache-2.0 1375    
https://github.com/microsoft/APSI APSI is a C++ library for Asymmetric (unlabeled or labeled) Private Set Intersection. microsoft mit 107    
https://github.com/causaltext/causal-text-papers Curated research at the intersection of causal inference and natural language processing. causaltext   573    
https://github.com/jonasmalacofilho/git-cache-http-server A caching Git HTTP server jonasmalacofilho other 68    
https://github.com/dwmetz/CSIRT-Collect PowerShell script to collect memory and (triage) disk forensics dwmetz mit 188    
https://github.com/stephenbradshaw/hlextend Pure Python hash length extension module stephenbradshaw other 75    
https://github.com/ail-project/ail-feeder-leak AIL LeakFeeder: A Module for AIL Framework that automate the process to feed leaked files automatically ail-project agpl-3.0 8    
https://github.com/tabler/tabler-icons A set of over 2800 free MIT-licensed high-quality SVG icons for you to use in your web projects. tabler mit 13024    
https://github.com/doegox/awesome-rfid-talks   doegox   58    
https://github.com/WithSecureLabs/chainsaw Rapidly Search and Hunt through Windows Forensic Artefacts WithSecureLabs gpl-3.0 1717    
https://github.com/vertexproject/synapse Synapse Central Intelligence System vertexproject apache-2.0 247    
https://github.com/centrifugal/centrifugo Scalable real-time messaging server in a language-agnostic way. Set up once and forever. centrifugal apache-2.0 6505    
https://github.com/searx/searx Privacy-respecting metasearch engine searx agpl-3.0 12141    
https://github.com/google/docsy A set of Hugo doc templates for launching open source content. google apache-2.0 1942    
https://github.com/airbus-seclab/c-compiler-security Security-related flags and options for C compilers airbus-seclab cc-by-sa-4.0 128    
https://github.com/EdwardRaff/pyLZJD Python implementation of the LZJD algorithm EdwardRaff apache-2.0 18    
https://github.com/a4lg/ffuzzypp C++ implementation of ssdeep-compatible fast fuzzy hashing a4lg other 35    
https://github.com/a4lg/libffuzzy Fast ssdeep comparison library a4lg other 11    
https://github.com/libyal/libesedb Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format. libyal lgpl-3.0 305    
https://github.com/mpetri/FM-Index FM-Index full-text index implementation using RRR Wavelet trees (libcds) and fast suffix sorting (libdivsufsort) including experimental results. mpetri gpl-3.0 87    
https://github.com/a4lg/fast-ssdeep-clus Parallel ssdeep clustering kit a4lg   16    
https://github.com/mdecrevoisier/Microsoft-eventlog-mindmap Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,… mdecrevoisier bsd-2-clause 778    
https://github.com/pykeen/pykeen 🤖 A Python library for learning and evaluating knowledge graph embeddings pykeen mit 1015    
https://github.com/AndrewRathbun/DFIRMindMaps A repository of DFIR-related Mind Maps geared towards the visual learners! AndrewRathbun mit 390    
https://github.com/opsdisk/scantron A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows. opsdisk apache-2.0 121    
https://github.com/evilsocket/medusa A fast and secure multi protocol honeypot. evilsocket other 268    
https://github.com/EquiFox/KsDumper Dumping processes using the power of kernel space ! EquiFox mit 771    
https://github.com/center-for-threat-informed-defense/attack_to_veris The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation. center-for-threat-informed-defense apache-2.0 54    
https://github.com/falconry/falcon The no-magic web data plane API and microservices framework for Python developers, with a focus on reliability, correctness, and performance at scale. falconry apache-2.0 8930    
https://github.com/daniestevez/gr-satellites GNU Radio decoder for Amateur satellites daniestevez gpl-3.0 602    
https://github.com/django-oscar/django-oscar Domain-driven e-commerce for Django django-oscar bsd-3-clause 5506    
https://github.com/wdas/reposado Host Apple Software Updates on the hardware and OS of your choice. wdas other 840    
https://github.com/rizinorg/rz-ghidra Deep ghidra decompiler and sleigh disassembler integration for rizin rizinorg lgpl-3.0 667    
https://github.com/rizinorg/rizin UNIX-like reverse engineering framework and command-line toolset. rizinorg lgpl-3.0 1635    
https://github.com/radareorg/iaito Official QT frontend of radare2 radareorg gpl-3.0 448    
https://github.com/lzfse/lzfse LZFSE compression library and command line tool lzfse bsd-3-clause 1690    
https://github.com/marceloprates/prettymaps A small set of Python functions to draw pretty maps from OpenStreetMap data. Based on osmnx, matplotlib and shapely libraries. marceloprates agpl-3.0 8841    
https://github.com/encryptogroup/MobilePSI Implementation of precomputed PSI for smartphone encryptogroup   10    
https://github.com/eric-vader/PyPSI A Python library for private set intersection eric-vader apache-2.0 9    
https://github.com/alyssaxuu/screenity The most powerful screen recorder & annotation tool for Chrome 🎥 alyssaxuu mit 7714    
https://github.com/fastfire/deepdarkCTI Collection of Cyber Threat Intelligence sources from the deep and dark web fastfire gpl-3.0 1152    
https://github.com/IlanKalendarov/PyHook PyHook is an offensive API hooking tool written in python designed to catch various credentials within the API call. IlanKalendarov bsd-3-clause 156    
https://github.com/srossross/rpmfile Read rmp archive files srossross mit 20    
https://github.com/maana-io/ServiceReadinessLevels Service Readiness Levels (SRL) are a type of measurement system used to assess the maturity of software services deployed in an orchestration and management platform. SRL are loosely based on the NASA Technology Readiness Levels. maana-io mit 2    
https://github.com/organicmaps/organicmaps 🍃 Organic Maps is a free Android & iOS offline maps app for travelers, tourists, hikers, and cyclists. It uses crowd-sourced OpenStreetMap data and is developed with love by MapsWithMe (MapsMe) founders and our community. No ads, no tracking, no data collection, no crapware. Your donations and positive reviews motivate and inspire our small team! organicmaps apache-2.0 4032    
https://github.com/jonashaag/bjoern A screamingly fast Python 2/3 WSGI server written in C. jonashaag other 2851    
https://github.com/StrangerealIntel/SkyNeXus List SID of rules used by publics sandbox for hunting StrangerealIntel   2    
https://github.com/s0md3v/Hash-Buster Crack hashes in seconds. s0md3v mit 1393    
https://github.com/byronknoll/cmix cmix is a lossless data compression program aimed at optimizing compression ratio at the cost of high CPU/memory usage. byronknoll gpl-3.0 472    
https://github.com/sptonkin/fuzzyhashlib Python hashlib-like wrapper for several fuzzy hash algorithms. sptonkin gpl-3.0 12    
https://github.com/TheClimateCorporation/python-dpkg Python library for reading Debian package files and comparing version strings TheClimateCorporation other 26    
https://github.com/barneygale/pathlab Extends Pathlib to archives, images, remote filesystems, etc barneygale gpl-3.0 25    
https://github.com/cogsec-collaborative/AMITT AMITT (Adversarial Misinformation and Influence Tactics and Techniques) framework for describing disinformation incidents. Includes TTPs and countermeasures. cogsec-collaborative cc-by-sa-4.0 145    
https://github.com/linvon/cuckoo-filter Cuckoo Filter go implement, better than Bloom Filter, configurable and space optimized 布谷鸟过滤器的Go实现,优于布隆过滤器,可以定制化过滤器参数,并进行了空间优化 linvon mit 232    
https://github.com/hpthreatresearch/subcrawl SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data with optional output modules, such as MISP. hpthreatresearch mit 117    
https://github.com/Archive-42/My-Notes-Compilation This is just a running list of notes without any unifying theme or structure, however it will generally be somewhere in the realm of web development. Archive-42   6    
https://github.com/kkamagui/bitleaker This tool can decrypt a BitLocker-locked partition with the TPM vulnerability kkamagui other 135    
https://github.com/sigstore/cosign Container Signing sigstore apache-2.0 2681    
https://github.com/in-toto/docs Specification and other related documents. in-toto mit 25    
https://github.com/sigstore/rekor Software Supply Chain Transparency Log sigstore apache-2.0 610    
https://github.com/IceFireDB/IceFireDB IceFireDB is a database built for web3 and web2. It strives to fill the gap between web2 and web3 with a friendly database experience, making web3 application data storage more convenient, and making it easier for web2 applications to achieve decentralization and data immutability. IceFireDB mit 939    
https://github.com/OpenMined/PySyft Data science on data without acquiring a copy OpenMined apache-2.0 8399    
https://github.com/jazzband/django-payments Universal payment handling for Django. jazzband other 798    
https://github.com/OpenMined/PSI Private Set Intersection Cardinality protocol based on ECDH and Bloom Filters OpenMined apache-2.0 80    
https://github.com/farsightsec/fsmtrie fast string matching trie library farsightsec apache-2.0 8    
https://github.com/AsuharietYgvar/AppleNeuralHash2ONNX Convert Apple NeuralHash model for CSAM Detection to ONNX. AsuharietYgvar apache-2.0 1480    
https://github.com/minio/minfs A network filesystem client to connect to MinIO and Amazon S3 compatible cloud storage servers minio agpl-3.0 418    
https://github.com/jonaslejon/malicious-pdf 💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh jonaslejon bsd-2-clause 1867    
https://github.com/guelfoweb/peframe PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents. guelfoweb   542    
https://github.com/cloudflare/goflow The high-scalability sFlow/NetFlow/IPFIX collector used internally at Cloudflare. cloudflare bsd-3-clause 651    
https://github.com/satta/fever-threatbus FEVER<->Threat Bus connector satta   5    
https://github.com/hack4impact/flask-base A simple Flask boilerplate app with SQLAlchemy, Redis, User Authentication, and more. hack4impact mit 2816    
https://github.com/Yara-Rules/rules Repository of yara rules Yara-Rules gpl-2.0 3315    
https://github.com/SourceCode-AI/aura Python source code auditing and static analysis on a large scale SourceCode-AI gpl-3.0 103    
https://github.com/openwall/yescrypt Password-based key derivation function and password hashing scheme building upon scrypt openwall   60    
https://github.com/jaraco/keyring   jaraco mit 928    
https://github.com/riatelab/linemap :aquarius: Create maps made of lines riatelab   108    
https://github.com/xairy/vmware-exploitation A collection of links related to VMware escape exploits xairy cc-by-4.0 1178    
https://github.com/cudeso/CSIRT-Jump-Bag CSIRT Jump Bag cudeso   25    
https://github.com/markmap/markmap Visualize your Markdown as mindmaps with Markmap. markmap mit 4145    
https://github.com/med0x2e/SigFlip SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature. med0x2e mit 728    
https://github.com/ml874/Data-Science-Cheatsheet   ml874   2217    
https://github.com/G-Research/siembol An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework. G-Research apache-2.0 159    
https://github.com/c6fc/warcannon High speed/Low cost CommonCrawl RegExp in Node.js c6fc other 205    
https://github.com/GuidoBartoli/sherloq An open-source digital image forensic toolset GuidoBartoli gpl-3.0 2072    
https://github.com/rprinz08/hBPF hBPF = eBPF in hardware rprinz08 bsd-3-clause 326    
https://github.com/pucarasec/zuthaka Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and other post-exploitation tools. pucarasec other 159    
https://github.com/ail-project/ail-feeder-activity-pub External ActivityPub feeder for AIL-framework. ail-project   4    
https://github.com/baidu/BaikalDB BaikalDB, A Distributed HTAP Database. baidu apache-2.0 982    
https://github.com/quarkslab/qsynthesis Greybox Synthesizer geared for deobfuscation of assembly instructions. quarkslab agpl-3.0 89    
https://github.com/build-trust/ockam Orchestrate end-to-end encryption, mutual authentication, key management, credential management & authorization policy enforcement — at scale. build-trust apache-2.0 2622    
https://github.com/ukncsc/lme Logging Made Easy ukncsc apache-2.0 660    
https://github.com/mozilla/extension-workshop Firefox Extension Workshop mozilla   70    
https://github.com/cfalta/MicrosoftWontFixList A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-)) cfalta bsd-3-clause 897    
https://github.com/amirgamil/apollo A Unix-style personal search engine and web crawler for your digital footprint. amirgamil mit 1296    
https://github.com/humhub/humhub HumHub is an Open Source Enterprise Social Network. Easy to install, intuitive to use and extendable with countless freely available modules. humhub other 5922    
https://github.com/lektor/lektor The lektor static file content management system lektor bsd-3-clause 3623    
https://github.com/securisec/chepy Chepy is a python lib/cli equivalent of the awesome CyberChef tool. securisec gpl-3.0 466    
https://github.com/AresValley/Artemis Radio Signals Recognition Manual AresValley gpl-3.0 165    
https://github.com/sigstore/sigstore-git-verifier A Github Action to verify that new commits are present in the sigstore transparency log. sigstore apache-2.0 7    
https://github.com/poettering/fsprg Forward Secure Pseudo Random Generator poettering   7    
https://github.com/seperman/deepdiff DeepDiff: Deep Difference and search of any Python object/data. DeepHash: Hash of any object based on its contents. Delta: Use deltas to reconstruct objects by adding deltas together. seperman other 1508    
https://github.com/eclecticiq/stix-icons stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats according to the STIX language for intelligence exchange, defined by OASIS Cyber Threat Intelligence (CTI) TC eclecticiq other 17    
https://github.com/strozfriedberg/lightgrep Command-line utility for multipattern search using liblightgrep strozfriedberg gpl-3.0 36    
https://github.com/aaranxu/adidoks AdiDoks is a mordern documentation theme, which is a port of the Hugo theme Doks for Zola. aaranxu mit 123    
https://github.com/mvt-project/mvt MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise. mvt-project other 8168    
https://github.com/camelot-dev/camelot A Python library to extract tabular data from PDFs camelot-dev mit 1716    
https://github.com/AmnestyTech/investigations Indicators from Amnesty International’s investigations AmnestyTech   1400    
https://github.com/RosettaCommons/RoseTTAFold This package contains deep learning models and related scripts for RoseTTAFold RosettaCommons mit 1606    
https://github.com/g-deoliveira/TextSummarization Extractive Text Summarization Using LDA For Topic Modeling g-deoliveira   33    
https://github.com/tenacityteam/tenacity-legacy Old repository. Tenacity is an easy-to-use, privacy-friendly, FLOSS, cross-platform multi-track audio editor/recorder for Windows, macOS, Linux and other operating systems. tenacityteam other 7217    
https://github.com/mozilla/bleach Bleach is an allowed-list-based HTML sanitizing library that escapes or strips markup and attributes mozilla other 2407    
https://github.com/betrusted-io/gateware IP submodules, formatted for easier CI integration betrusted-io other 21    
https://github.com/iot-onboarding/mud-visualizer mud-visualizer is a tool to visualize MUD files iot-onboarding bsd-3-clause 11    
https://github.com/t4d/PhishingKit-Yara-Rules Repository of Yara rules dedicated to Phishing Kits Zip files t4d gpl-3.0 91    
https://github.com/D4-project/d4-rustclient Very basic rust client: listen for a message on stdin, write the message on stdout. D4-project bsd-2-clause 2    
https://github.com/rpetrich/deciduous App that makes building attack decision trees from the Security Chaos Engineering report easy rpetrich gpl-2.0 100    
https://github.com/litl/backoff Python library providing function decorators for configurable backoff and retry litl mit 1966    
https://github.com/bndw/wifi-card 📶 Print a QR code for connecting to your WiFi (wificard.io) bndw mit 6095    
https://github.com/tiimgreen/github-cheat-sheet A list of cool features of Git and GitHub. tiimgreen mit 37616    
https://github.com/sophoslabs/IoCs Sophos-originated indicators-of-compromise from published reports sophoslabs   359    
https://github.com/martinus/robin-hood-hashing Fast & memory efficient hashtable based on robin hood hashing for C++11/14/17/20 martinus mit 1240    
https://github.com/splunk/security_content Splunk Security Content splunk apache-2.0 738    
https://github.com/kellyjonbrazil/jello CLI tool to filter JSON and JSON Lines data with Python syntax. (Similar to jq) kellyjonbrazil mit 327    
https://github.com/virtualabs/piotr Piotr - IoT firmware emulation instrumentation for training and research virtualabs mit 52    
https://github.com/telekom-security/malware_analysis This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts. telekom-security   72    
https://github.com/SpiderLabs/REvil_config Configuration file for REvil / Kaseya July campaign SpiderLabs   4    
https://github.com/cisco/mindmeld An Open Source Conversational AI Platform for Deep-Domain Voice Interfaces and Chatbots. cisco apache-2.0 599    
https://github.com/CachetHQ/Cachet 📛 An open source status page system for everyone. CachetHQ bsd-3-clause 12934    
https://github.com/google/trax Trax — Deep Learning with Clear Code and Speed google apache-2.0 7156    
https://github.com/MISP/misp-expansion MISP expansion - a browser extension (Firefox and Chrome) to lookup on MISP MISP bsd-2-clause 5    
https://github.com/ail-project/ail-feeder-discord Discord feeder for AIL ail-project agpl-3.0 6    
https://github.com/imuledx/OSINT_sources   imuledx   112    
https://github.com/m8sec/subscraper Perform subdomain enumeration through various techniques and retrieve detailed output to aid in further testing. m8sec gpl-3.0 583    
https://github.com/piccolomo/plotext plotting on terminal piccolomo mit 1161    
https://github.com/benedekrozemberczki/karateclub Karate Club: An API Oriented Open-source Python Framework for Unsupervised Learning on Graphs (CIKM 2020) benedekrozemberczki gpl-3.0 1760    
https://github.com/z1pti3/jimi Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch jimi has developed into a fully fledged IT automation platform which effortlessly integrates with your existing tools unlocking the potential for autonomous IT and Security operations. z1pti3 apache-2.0 124    
https://github.com/CriticalPathSecurity/Zeek-Intelligence-Feeds Zeek-Formatted Threat Intelligence Feeds CriticalPathSecurity mit 176    
https://github.com/center-for-threat-informed-defense/security-stack-mappings This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about. center-for-threat-informed-defense apache-2.0 239    
https://github.com/ossf/scorecard Security Scorecards - Security health metrics for Open Source ossf apache-2.0 3011    
https://github.com/hm-seclab/YAFRA YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents. hm-seclab apache-2.0 24    
https://github.com/hamano/apache-mod-markdown Markdown filter module for Apache HTTPD Server hamano apache-2.0 81    
https://github.com/D4-project/ct-scrutinize ct-scrutinize is a set of tools extract information from Certificate Transparency logs D4-project agpl-3.0 3    
https://github.com/aniqfakhrul/Sharperner Simple executable generator with encrypted shellcode. aniqfakhrul   269    
https://github.com/ticarpi/jwt_tool :snake: A toolkit for testing, tweaking and cracking JSON Web Tokens ticarpi gpl-3.0 3512    
https://github.com/rhash/RHash Great utility for computing hash sums rhash 0bsd 445    
https://github.com/RCayre/mirage Mirage is a powerful and modular framework dedicated to the security analysis of wireless communications. RCayre mit 160    
https://github.com/a-luna/fastapi-redis-cache A simple and robust caching solution for FastAPI that interprets request header values and creates proper response header values (powered by Redis) a-luna mit 85    
https://github.com/facebookresearch/faiss A library for efficient similarity search and clustering of dense vectors. facebookresearch mit 18317    
https://github.com/facebookresearch/fastText Library for fast text representation and classification. facebookresearch mit 24007    
https://github.com/muesli/markscribe Your personal markdown scribe with template-engine and Git(Hub) & RSS powers 📜 muesli mit 249    
https://github.com/rayohauno/hierpart A Python package that implements the HierarchicalPartition data structure. rayohauno gpl-2.0 5    
https://github.com/google/osv.dev Open source vulnerability DB and triage service. google apache-2.0 653    
https://github.com/ehn-dcc-development/eu-dcc-hcert-spec Electronic Health Certificates Specification ehn-dcc-development   363    
https://github.com/eaglx/VMPROTECT Obfuscation method using virtual machine. eaglx gpl-3.0 551    
https://github.com/matrix-org/pinecone Peer-to-peer overlay routing for the Matrix ecosystem matrix-org apache-2.0 303    
https://github.com/matteodellamico/flexible-clustering Clustering for arbitrary data and dissimilarity function matteodellamico bsd-3-clause 57    
https://github.com/ruslashev/elfcat ELF visualizer. Generates HTML files from ELF binaries. ruslashev zlib 870    
https://github.com/facebookresearch/AugLy A data augmentations library for audio, image, text, and video. facebookresearch other 4595    
https://github.com/EmergingThreats/threatresearch I wanted to call this repo “Nuclear Football Codes”. I was outvoted.. EmergingThreats   64    
https://github.com/mapbox/storytelling Storytelling with maps template mapbox bsd-3-clause 424    
https://github.com/barrust/pyprobables Probabilistic data structures in python http://pyprobables.readthedocs.io/en/latest/index.html barrust mit 84    
https://github.com/hashlookup/PyHashlookup Python CLI and module for CIRCL hash lookup hashlookup gpl-3.0 8    
https://github.com/infeeeee/kimai2-cmd Command line client for Kimai2, the open source, self-hosted time tracker infeeeee mit 19    
https://github.com/kevinpapst/kimai2 Kimai v2 is a web-based multiuser time-tracking application. Free for everyone: freelancers, agencies, companies, organizations - all can track their times, generate invoices and more. SaaS version available at https://www.kimai.cloud kevinpapst mit 1901    
https://github.com/sh-dv/hat.sh Encrypt and Decrypt files securely in your browser. sh-dv mit 1560    
https://github.com/CpanelInc/tech-CSI cPanel Security Scan CpanelInc other 29    
https://github.com/3c7/bazaar Python based CLI for MalwareBazaar 3c7 mit 17    
https://github.com/e-m-b-a/emba EMBA - The firmware security analyzer e-m-b-a gpl-3.0 1463    
https://github.com/otgrkiss/apache-mellon-saml-misp-proxy   otgrkiss   2    
https://github.com/vimoutliner/vimoutliner Work fast, think well. vimoutliner other 554    
https://github.com/sylhare/Type-on-Strap 🎨 Simplistic, responsive jekyll based open source theme sylhare mit 671    
https://github.com/Velocidex/velociraptor Digging Deeper…. Velocidex other 1481    
https://github.com/facebookincubator/nvdtools A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD) facebookincubator apache-2.0 358    
https://github.com/krt/redis-asm Fast fuzzy string search on Redis using Lua. UTF-8 ready. krt mit 40    
https://github.com/iCopy-X-Community/icopyx-teardown   iCopy-X-Community   36    
https://github.com/javierbyte/pintr Create single line SVG illustrations from your pictures javierbyte bsd-3-clause 678    
https://github.com/zautomata/virusshare   zautomata bsd-3-clause 10    
https://github.com/rajkumar-rangaraj/PDB-Downloader PDB Downloader - An easier way to download Microsoft’s public symbols for Libraries and Executables. rajkumar-rangaraj   252    
https://github.com/SAP/credential-digger A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models :lock: SAP apache-2.0 218    
https://github.com/jiabailie/Althttpd Althttpd is a simple webserver that has run the https://sqlite.org/ website since 2004. Althttpd strives for simplicity, security, and low resource usage. jiabailie mit 12    
https://github.com/bits-and-blooms/bloom Go package implementing Bloom filters bits-and-blooms bsd-2-clause 1710    
https://github.com/mosajjal/dnsmonster Passive DNS Capture and Monitoring Toolkit mosajjal gpl-2.0 212    
https://github.com/eTextile/Matrix   eTextile other 9    
https://github.com/drawrowfly/tiktok-scraper TikTok Scraper. Download video posts, collect user/trend/hashtag/music feed metadata, sign URL and etc. drawrowfly   3115    
https://github.com/apurvsinghgautam/dark-web-osint-tools OSINT Tools for the Dark Web apurvsinghgautam   276    
https://github.com/marco-lancini/cartography-queries Utilities for programmatic analysis of Cartography data. marco-lancini apache-2.0 27    
https://github.com/kirei/python-base45 Base45 kirei bsd-2-clause 19    
https://github.com/cudeso/misp-training-environment Setting up a training environment for MISP cudeso   10    
https://github.com/berkgoksel/sysref Terminal Linux Syscall Reference Table for x86, x64, arm32 and arm64 berkgoksel mit 18    
https://github.com/airbus-seclab/bincat Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free detection airbus-seclab   1416    
https://github.com/jampp/pybloomfiltermmap Fast Python Bloom Filter using Mmap jampp mit 3    
https://github.com/prashnts/pybloomfiltermmap3 Fast Python Bloom Filter using Mmap prashnts mit 89    
https://github.com/mzucker/noteshrink Convert scans of handwritten notes to beautiful, compact PDFs mzucker mit 4750    
https://github.com/MiroKaku/DetoursX Kernel-Mode extended version of https://github.com/microsoft/Detours MiroKaku mit 69    
https://github.com/HanseSecure/credgrap_ie_edge Extract stored credentials from Internet Explorer and Edge HanseSecure gpl-3.0 303    
https://github.com/wowthemesnet/mundana-theme-jekyll Mundana is a free Jekyll theme, Medium styled. wowthemesnet   572    
https://github.com/lclevy/PyTac_verif a python tool to check French covid-19 vaccination certificate ECDSA signature lclevy gpl-2.0 7    
https://github.com/beryldb/beryldb BerylDB is a fully modular data structure data manager that can be used to store data as key-value entries. The server allows channel subscription and is optimized to be used as a cache repository. Supported structures include lists, sets, multimaps, and keys. beryldb bsd-3-clause 201    
https://github.com/Ignitetechnologies/Credential-Dumping This cheatsheet is aimed at the Red Teamers to help them understand the fundamentals of Credential Dumping (Sub Technique of Credential Access) with examples. There are multiple ways to perform the same tasks Ignitetechnologies   309    
https://github.com/W3ndige/aurora Malware similarity platform with modularity in mind. W3ndige other 71    
https://github.com/Viralmaniar/MurMurHash This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform. Viralmaniar mit 76    
https://github.com/mdecrevoisier/EVTX-to-MITRE-Attack Set of EVTX samples (>170) mapped to MITRE Att@k tactic and techniques to measure your SIEM coverage or developed new use cases. mdecrevoisier   327    
https://github.com/apache/superset Apache Superset is a Data Visualization and Data Exploration Platform apache apache-2.0 48897    
https://github.com/sthagen/thampiman-reverse-geocoder A fast, offline reverse geocoder in Python sthagen lgpl-2.1 2    
https://github.com/nhairs/nserver Python DNS Name Server Framework nhairs mit 6    
https://github.com/davidteather/TikTok-Api The Unofficial TikTok API Wrapper In Python davidteather mit 2744    
https://github.com/bradleytaunt/ET-Jekyll A minimal Jekyll theme inspired by Tufte CSS bradleytaunt mit 135    
https://github.com/riverloopsec/hashashin Hashashin: A Fuzzy Matching Tool for Binary Ninja riverloopsec mit 69    
https://github.com/riverloopsec/ninjadiff NinjaDiff is a binary diffing plugin for Binary Ninja. Read more on our blog, and contribute code & improvements! riverloopsec mit 46    
https://github.com/XiphosResearch/netelf Run executables from memory, over the network, on Windows, Linux, OpenVMS… routers… spaceships… toasters etc. XiphosResearch   265    
https://github.com/observablehq/plot A concise API for exploratory data visualization observablehq isc 2134    
https://github.com/knadh/listmonk High performance, self-hosted, newsletter and mailing list manager with a modern dashboard. Single binary app. knadh agpl-3.0 8804    
https://github.com/sdhash/sdhash similarity digest hashing tool sdhash apache-2.0 144    
https://github.com/google/oss-vulnerability-guide A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disclosure notifications. google cc-by-4.0 102    
https://github.com/medsec/kiasubc Cryptanalysis of KIASU-BC medsec other 2    
https://github.com/detectify/page-fetch Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pages and see the returned values detectify mit 460    
https://github.com/brimdata/brimcap Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more) brimdata bsd-3-clause 36    
https://github.com/nsacyber/Event-Forwarding-Guidance Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber nsacyber other 730    
https://github.com/Spacial/awesome-csirt Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities. Spacial gpl-3.0 260    
https://github.com/secworks/trng True Random Number Generator core implemented in Verilog. secworks bsd-2-clause 51    
https://github.com/strontic/xcyclopedia Encyclopedia for Executables strontic mit 289    
https://github.com/center-for-threat-informed-defense/adversary_emulation_library An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs. center-for-threat-informed-defense apache-2.0 814    
https://github.com/pydio/cells Future-proof content collaboration platform pydio agpl-3.0 1360    
https://github.com/CiscoSecurity/tr-05-serverless-misp Threat Response integration for MISP Project CiscoSecurity mit 6    
https://github.com/ninoseki/whois-parser Yet another whois parser for Python ninoseki mit 3    
https://github.com/valayDave/arxiv-miner arxiv_miner is a toolkit for mining research papers on CS ArXiv. valayDave mit 96    
https://github.com/d3sre/IntelligentProcessLifecycle The Intelligent Process Lifecycle of Active Cyber Defenders d3sre   29    
https://github.com/CyCat-project/cycat-service CyCAT.org API back-end server including crawlers CyCat-project agpl-3.0 23    
https://github.com/davidlatwe/montydb Monty, Mongo tinified. MongoDB implemented in Python ! davidlatwe bsd-3-clause 516    
https://github.com/APIs-guru/openapi-directory 🌐 Wikipedia for Web APIs. Directory of REST API definitions in OpenAPI 2.0/3.x format APIs-guru cc0-1.0 2956    
https://github.com/ninoseki/whois-rest A RESTful whois ninoseki mit 4    
https://github.com/droher/etymology-db An open etymology dataset created using Wiktionary data. Contains 3.8M entries, 1.8M terms, 2900 languages, and 31 unique relationship types. droher apache-2.0 21    
https://github.com/wwwtyro/candygraph Fast by default, flexible 2D plotting library. wwwtyro unlicense 399    
https://github.com/bee-san/pyWhat 🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it’ll tell you what it is! 🧙‍♀️ bee-san mit 5537    
https://github.com/CodingGay/BlackDex BlackDex is an Android unpack(dexdump) tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phone or emulator, you can unpack APK File in several seconds. CodingGay apache-2.0 4142    
https://github.com/panther-labs/panther-analysis Built-in Panther detection rules and policies panther-labs agpl-3.0 202    
https://github.com/nimrodpar/Labeled-Elfs A collection of well labeled ELF binaries compiled from benign and malicious code in various ways. Great for exploring similarity in executables and training various ML models. nimrodpar mit 74    
https://github.com/EdgeSecurityTeam/Vulnerability 此项目将不定期从棱角社区对外进行公布一些最新漏洞。 EdgeSecurityTeam   2738    
https://github.com/jfmaes/SharpRDPDump Create a minidump of TermService for clear text pw extraction jfmaes   88    
https://github.com/georgenicolaou/icarus The Exploitation Toolkit Icarus is a cross platform software exploitation library that assists in the development of proof of concept exploit code. georgenicolaou   17    
https://github.com/python-restx/flask-restx Fork of Flask-RESTPlus: Fully featured framework for fast, easy and documented API development with Flask python-restx other 1650    
https://github.com/onnx/onnx Open standard for machine learning interoperability onnx apache-2.0 13496    
https://github.com/jordanpotti/AWSBucketDump Security Tool to Look For Interesting Files in S3 Buckets jordanpotti mit 1184    
https://github.com/gvalkov/rsstail.py A command-line syndication feed monitor gvalkov other 42    
https://github.com/yahoojapan/NGT Nearest Neighbor Search with Neighborhood Graph and Tree for High-dimensional Data yahoojapan apache-2.0 941    
https://github.com/EC-DIGIT-CSIRC/credentialLeakDB A database for storing, querying and doing stats on credential leaks EC-DIGIT-CSIRC   25    
https://github.com/zedeus/nitter Alternative Twitter front-end zedeus agpl-3.0 6032    
https://github.com/jart/redisbayes Naïve Bayesian Text Classifier on Redis jart   108    
https://github.com/lcashdol/UPX A utility to fix intentionally corrupted UPX packed files. lcashdol apache-2.0 52    
https://github.com/adulau/rss-tools A set of old and crappy RSS scripts to handle RSS in an Unix way. adulau   3    
https://github.com/pixelfed/pixelfed Photo Sharing. For Everyone. pixelfed agpl-3.0 3914    
https://github.com/Python-Markdown/markdown A Python implementation of John Gruber’s Markdown with Extension support. Python-Markdown other 3041    
https://github.com/Captain-P-Goldfish/scim-for-keycloak a third party module that extends keycloak by SCIM functionality Captain-P-Goldfish bsd-3-clause 110    
https://github.com/cloudtrust/keycloak-wsfed WS-Federation implementation for keycloak cloudtrust agpl-3.0 32    
https://github.com/matplotlib/cheatsheets Official Matplotlib cheat sheets matplotlib bsd-2-clause 6603    
https://github.com/smdu57/ail-feeder-vk   smdu57   2    
https://github.com/BushidoUK/CTI-Lexicon Dictionary of CTI-related acronyms, terms, and jargon BushidoUK   117    
https://github.com/hasherezade/hollows_hunter Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches). hasherezade bsd-2-clause 1456    
https://github.com/xwiki-labs/cryptpad Collaboration suite, end-to-end encrypted and open-source. xwiki-labs agpl-3.0 3948    
https://github.com/hedgedoc/container HedgeDoc container image resources hedgedoc   178    
https://github.com/vxcute/WindowsInternals Yet another windows internals repo vxcute   189    
https://github.com/slidevjs/slidev Presentation Slides for Developers slidevjs mit 23154    
https://github.com/farsightsec/dnsdbflex command line tool to use the DNSDB Flexible Search API extensions. farsightsec   12    
https://github.com/UnaPibaGeek/ctfr Abusing Certificate Transparency logs for getting HTTPS websites subdomains. UnaPibaGeek gpl-3.0 1651    
https://github.com/adobe/OSAS One Stop Anomaly Shop: Anomaly detection using two-phase approach: (a) pre-labeling using statistics, Natural Language Processing and static rules; (b) anomaly scoring using supervised and unsupervised machine learning. adobe apache-2.0 145    
https://github.com/c3rb3ru5d3d53c/mwdb-feeds A Modular MWDB Utility to Collect Fresh Malware Samples c3rb3ru5d3d53c bsd-3-clause 32    
https://github.com/Cr4sh/MicroBackdoor Small and convenient C2 tool for Windows targets. [ Русский – значит нахуй! ] Cr4sh gpl-3.0 449    
https://github.com/camptocamp/inkmap A library for generating high-quality, printable maps on the browser. camptocamp other 77    
https://github.com/endrazine/wcc The Witchcraft Compiler Collection endrazine other 1707    
https://github.com/D4-project/TinyCheck TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere. D4-project apache-2.0 3    
https://github.com/bstoilov/py3-pinterest Fully fledged Python Pinterest client bstoilov mit 218    
https://github.com/sa7mon/S3Scanner Scan for open S3 buckets and dump the contents sa7mon mit 1903    
https://github.com/pralab/secml_malware Create adversarial attacks against machine learning Windows malware detectors pralab gpl-3.0 137    
https://github.com/ion-storm/sysmon-edr Sysmon EDR POC Build within Powershell to prove ability. ion-storm   186    
https://github.com/P4T12ICK/Sigma-Rule-Repository Sigma Detection Rule Repository P4T12ICK gpl-3.0 69    
https://github.com/nccgroup/autochrome This tool downloads, installs, and configures a shiny new copy of Chromium. nccgroup apache-2.0 391    
https://github.com/ppwwyyxx/wechat-dump Cracking encrypted wechat message history from android ppwwyyxx gpl-3.0 1479    
https://github.com/TheWover/CertStealer A .NET tool for exporting and importing certificates without touching disk. TheWover mit 383    
https://github.com/Genivia/ugrep 🔍NEW ugrep v3.9: ultra fast grep with interactive TUI, fuzzy search, boolean queries, hexdumps and more: search file systems, source code, text, binary files, archives (cpio/tar/pax/zip), compressed files (gz/Z/bz2/lzma/xz/lz4/zstd), documents etc. A faster, user-friendly and compatible grep replacement. Genivia bsd-3-clause 1363    
https://github.com/JSCU-NL/logging-essentials A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention. JSCU-NL apache-2.0 215    
https://github.com/certtools/ieps IntelMQ Enhancement Proposals certtools   4    
https://github.com/mandiant/pulsesecure_exploitation_countermeasures   mandiant other 23    
https://github.com/D4-project/d4-pretensor Easing tor proxies botnet analysis D4-project   4    
https://github.com/0xrawsec/gene-rules   0xrawsec gpl-3.0 32    
https://github.com/ail-project/PyAIL Python library using the AIL Rest API ail-project other 6    
https://github.com/BSI-Bund/RdpCacheStitcher RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps. BSI-Bund   172    
https://github.com/brannondorsey/PassGAN A Deep Learning Approach for Password Guessing (https://arxiv.org/abs/1709.00440) brannondorsey mit 813    
https://github.com/DSecurity/efiSeek Ghidra analyzer for UEFI firmware. DSecurity apache-2.0 233    
https://github.com/domainaware/parsedmarc A Python package and CLI for parsing aggregate and forensic DMARC reports domainaware apache-2.0 610    
https://github.com/shadowsocks/shadowsocks-crypto Shadowsocks Crypto shadowsocks mit 32    
https://github.com/angr/fidget A tool to add simple inline patches to a binary to rearrange its stack frames, and other things! angr bsd-2-clause 43    
https://github.com/GaretJax/misp-tr-cli   GaretJax   1    
https://github.com/opensearch-project/OpenSearch 🔎 Open source distributed and RESTful search engine. opensearch-project apache-2.0 5939    
https://github.com/chrislee35/yaratool Python libary to normalize Yara signatures chrislee35   19    
https://github.com/Ch0pin/medusa Binary instrumentation framework based on FRIDA Ch0pin   790    
https://github.com/bloomberg/comdb2 Bloomberg’s distributed RDBMS bloomberg other 1169    
https://github.com/OAI/OpenAPI-Specification The OpenAPI Specification Repository OAI apache-2.0 25230    
https://github.com/microsoft/CyberBattleSim An experimentation and research platform to investigate the interaction of automated agents in an abstract simulated network environments. microsoft mit 1460    
https://github.com/cyb3rfox/Aurora-Incident-Response Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders cyb3rfox apache-2.0 553    
https://github.com/ValdikSS/GoodbyeDPI GoodbyeDPI — Deep Packet Inspection circumvention utility (for Windows) ValdikSS apache-2.0 7772    
https://github.com/chronicle/detection-rules Collection of YARA-L 2.0 sample rules for the Chronicle Detection API chronicle apache-2.0 107    
https://github.com/glitchedgitz/cook An overpower wordlist generator, splitter, merger, finder, saver, create words permutation and combinations, apply different encoding/decoding and everything you need. Frustation Killer!!! glitchedgitz mit 466    
https://github.com/akoksal/BERT-Sentiment-Analysis-Turkish Sentiment Analysis with BERT in Turkish Tweets akoksal gpl-3.0 101    
https://github.com/bilde2910/Hauk Open-source realtime location sharing bilde2910 apache-2.0 428    
https://github.com/fboldewin/misc_malware   fboldewin   37    
https://github.com/jorisschellekens/borb borb is a library for reading, creating and manipulating PDF files in python. jorisschellekens other 2835    
https://github.com/tbarabosch/apihash_to_yara Generates YARA rules to detect malware using API hashing tbarabosch apache-2.0 14    
https://github.com/sjewo/cartogram r package for cartogram creation sjewo   131    
https://github.com/jtleek/datasharing The Leek group guide to data sharing jtleek   6199    
https://github.com/ekamioka/datasharing The Leek group guide to data sharing ekamioka   1    
https://github.com/Coldzer0/Cmulator Cmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript Coldzer0 agpl-3.0 262    
https://github.com/revng/pagebuster PageBuster - dump all executable pages of packed processes. revng gpl-2.0 188    
https://github.com/trehn/termdown Countdown timer and stopwatch in your terminal trehn gpl-3.0 1090    
https://github.com/urbanadventurer/WhatWeb Next generation web scanner urbanadventurer gpl-2.0 4178    
https://github.com/ninoseki/mitaka A browser extension for OSINT search ninoseki mit 918    
https://github.com/dibsy/SLAEx86 SLAE x86 Assembly Language and Shellcoding on Linux dibsy   7    
https://github.com/williballenthin/siglib function identification signatures williballenthin apache-2.0 8    
https://github.com/axt/angr-utils Handy utilities for the angr binary analysis framework, most notably CFG visualization axt bsd-2-clause 225    
https://github.com/trimstray/the-book-of-secret-knowledge A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more. trimstray mit 81702    
https://github.com/US-CBP/GTAS Global Travel Assessment System A passenger data screening and analysis system for enhancing global security US-CBP other 93  
https://github.com/actions/runner-images GitHub Actions runner images actions mit 6819    
https://github.com/3c7/yaramanager Simple yara rule manager 3c7 mit 65    
https://github.com/ayman/flickrsavr A preservation experiment to save photos from Flickr to your disk with the metadata embedded. ayman mit 16    
https://github.com/ninoseki/eml_analyzer EML analyzer is an application to analyze the EML file ninoseki mit 146    
https://github.com/quickwit-oss/tantivy Tantivy is a full-text search engine library inspired by Apache Lucene and written in Rust quickwit-oss mit 7224    
https://github.com/codeyourweb/irma enpoint detection / live analysis & sandbox host / signatures quality test codeyourweb mit 31    
https://github.com/GiulioRossetti/ndlib Network Diffusion Library - (for NetworkX and iGraph) GiulioRossetti bsd-2-clause 225    
https://github.com/lunasorcery/Blossom 4K Executable Graphics framework lunasorcery other 174    
https://github.com/Tylous/Limelighter A tool for generating fake code signing certificates or signing real ones Tylous mit 683    
https://github.com/jakejarvis/awesome-shodan-queries 🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻 jakejarvis cc0-1.0 3548    
https://github.com/dwisiswant0/apkleaks Scanning APK file for URIs, endpoints & secrets. dwisiswant0 apache-2.0 3337    
https://github.com/liyansong2018/firmware-analysis-plus Simulate firmware with one click of firmadyne (使用 firmadyne 一键模拟固件) liyansong2018 mit 174    
https://github.com/falzm/burl Pure Bash HTTP client falzm mit 38    
https://github.com/newsviz/newsviz Project on text topics evolution over time analysis newsviz gpl-3.0 74    
https://github.com/palantir/phishcatch A browser extension and API server for detecting corporate password use on external websites palantir apache-2.0 73    
https://github.com/synacktiv/shannon-dbg Debugger for the Shannon Baseband synacktiv   52    
https://github.com/mxrch/GHunt 🕵️‍♂️ Offensive Google framework. mxrch mpl-2.0 12131    
https://github.com/MISP/misp-stix MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats MISP bsd-2-clause 20    
https://github.com/CERT-Polska/drakvuf-sandbox DRAKVUF Sandbox - automated hypervisor-level malware analysis system CERT-Polska other 729    
https://github.com/arvidn/torrent-tools tools for creating, inspecting and modifying torrent files arvidn bsd-3-clause 8    
https://github.com/gracenolan/Notes   gracenolan   929    
https://github.com/GONZOsint/gitrecon OSINT tool to get information from a Github and Gitlab profile and find user’s email addresses leaked on commits. GONZOsint gpl-3.0 208    
https://github.com/DIVD-NL/scanning   DIVD-NL   2    
https://github.com/KaanSK/Go-MISPFeedGenerator Golang implementation of PyMISP-feedgenerator KaanSK gpl-3.0 15    
https://github.com/Malfrats/xeuledoc Fetch information about a public Google document. Malfrats gpl-3.0 634    
https://github.com/can1357/NoVmp A static devirtualizer for VMProtect x64 3.x. powered by VTIL. can1357 gpl-3.0 1501    
https://github.com/PwC-IR/MIA-MailItemsAccessed- Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features from the Office 365 Audit Log. PwC-IR   14    
https://github.com/PwC-IR/Office-365-Extractor The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL) PwC-IR   157    
https://github.com/didix21/mdutils Python package contains a set of basic tools that can help to create a markdown file. didix21 mit 135    
https://github.com/vp777/procrustes A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering vp777   207    
https://github.com/cisagov/CHIRP A DFIR tool written in Python. cisagov cc0-1.0 1041    
https://github.com/mattermost/focalboard Focalboard is an open source, self-hosted alternative to Trello, Notion, and Asana. mattermost other 13402    
https://github.com/justfoxing/ghidra_bridge Python 3 bridge to Ghidra’s Python scripting justfoxing mit 232    
https://github.com/domenukk/strudra Use Ghidra Structs in Python domenukk mit 26    
https://github.com/gloxec/CrossC2 generate CobaltStrike’s cross-platform payload gloxec   1516    
https://github.com/alexandreborges/malwoverview Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT. alexandreborges gpl-3.0 1959    
https://github.com/speedata/publisher speedata Publisher - a professional database Publishing system speedata agpl-3.0 245    
https://github.com/GraxCode/threadtear Multifunctional java deobfuscation tool suite GraxCode gpl-3.0 684    
https://github.com/intelowlproject/IntelOwl Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale intelowlproject agpl-3.0 2441    
https://github.com/chasemccoy/museo 🏛 Museo is a tool for finding images in the public domain from some of the best museums in the world. chasemccoy   50    
https://github.com/mentebinaria/retoolkit Reverse Engineer’s Toolkit mentebinaria apache-2.0 3436    
https://github.com/marjatech/threatfox2misp Creating a Feed of MISP Events from ThreatFox (by abuse.ch) marjatech gpl-3.0 18    
https://github.com/doyensec/regexploit Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service) doyensec apache-2.0 641    
https://github.com/bbalet/jorani Leave and Overtime Management System bbalet agpl-3.0 329    
https://github.com/ancailliau/YadaYara   ancailliau agpl-3.0 6    
https://github.com/hedgedoc/hedgedoc HedgeDoc - The best platform to write and share markdown. hedgedoc agpl-3.0 3327    
https://github.com/hedgedoc/cli A tiny CLI for HedgeDoc hedgedoc agpl-3.0 126    
https://github.com/brython-dev/brython Brython (Browser Python) is an implementation of Python 3 running in the browser brython-dev bsd-3-clause 5851    
https://github.com/ckan/ckan CKAN is an open-source DMS (data management system) for powering data hubs and data portals. CKAN makes it easy to publish, share and use data. It powers catalog.data.gov, open.canada.ca/data, data.humdata.org among many other sites. ckan other 3579    
https://github.com/QKaiser/voodoo This repository holds proof-of-concepts for the VOOdoo vulnerabilities found in NETGEAR CG3100 and CG3700B cable modems provided by VOO to its subscribers. QKaiser   14    
https://github.com/amuehlem/MISP-RPM RPM packages for MISP amuehlem   24    
https://github.com/rsharo/bgrep Binary Grep rsharo   42    
https://github.com/beerfactory/hbmqtt MQTT client/broker using Python asynchronous I/O beerfactory mit 768    
https://github.com/markdown-it/markdown-it Markdown parser, done right. 100% CommonMark support, extensions, syntax plugins & high speed markdown-it mit 14391    
https://github.com/qeeqbox/social-analyzer API, CLI, and Web App for analyzing and finding a person’s profile in 1000 social media \ websites qeeqbox agpl-3.0 9414    
https://github.com/qeeqbox/chameleon 19 Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres, MySQL, MSSQL, Elastic and ldap) qeeqbox agpl-3.0 516    
https://github.com/evildmp/C-is-for-Camera A 35mm camera, based on the Canonet G-III QL17 rangefinder, modelled in Python. evildmp   146    
https://github.com/Ariana1729/RSA-is-alive Implementation of https://eprint.iacr.org/2021/232 Ariana1729   92    
https://github.com/microsoft/CSS-Exchange Exchange Server support tools and scripts microsoft mit 1071    
https://github.com/hzbd/kazam A screencasting program created with design in mind.(https://launchpad.net/kazam) hzbd gpl-3.0 294    
https://github.com/c0ny1/vulstudy 使用docker快速搭建各大漏洞靶场,目前可以一键搭建17个靶场。 c0ny1   1717    
https://github.com/csirt-tooling-org/tooling-directory Tools used by CSIRT and especially in the scope of CNW csirt-tooling-org   10    
https://github.com/MISP/misp-book User guide of MISP MISP   193    
https://github.com/mbrengel/yarix   mbrengel   54    
https://github.com/metebalci/pdftitle a utility to extract the title from a PDF file metebalci gpl-3.0 86    
https://github.com/jart/cosmopolitan build-once run-anywhere c library jart isc 9485    
https://github.com/irevenko/tsukae 🐚📊 Show off your most used shell commands irevenko mit 431    
https://github.com/trailofbits/graphtage A semantic diff utility and library for tree-like files such as JSON, JSON5, XML, HTML, YAML, and CSV. trailofbits lgpl-3.0 2171    
https://github.com/nymtech/nym Nym provides strong network-level privacy against sophisticated end-to-end attackers, and anonymous transactions using blinded, re-randomizable, decentralized credentials. nymtech   621    
https://github.com/iluxonchik/rfc-bibtex A command line tool that creates bibtex entries for IETF RFCs and Internet Drafts. iluxonchik mit 43    
https://github.com/pydata/xarray N-D labeled arrays and datasets in Python pydata apache-2.0 2733    
https://github.com/karlicoss/myinfra A diagram of my personal infrastructure karlicoss mit 37    
https://github.com/loseys/BlackMamba C2/post-exploitation framework loseys mit 866    
https://github.com/FrenchCisco/RATel RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software. FrenchCisco mit 217    
https://github.com/cert-orangecyberdefense/datalake_misp_integration   cert-orangecyberdefense   3    
https://github.com/effgarces/BookedScheduler Repository for the last open source version of Booked Scheduler. The “develop” branch contains the most current working code of the project and should be considered beta. The “master” branch is the most current stable release of BookedScheduler. Please read doc/README.md for further details. effgarces gpl-3.0 239    
https://github.com/honkit/honkit :book: HonKit is building beautiful books using Markdown - Fork of GitBook honkit apache-2.0 2344    
https://github.com/misterch0c/CrimeBoards A list of private and public (more or less) blackhat boards misterch0c   214    
https://github.com/threatgrid/ctia Cisco Threat Intelligence API threatgrid epl-1.0 51    
https://github.com/projectdiscovery/mapcidr Small utility program to perform multiple operations for a given subnet/CIDR ranges. projectdiscovery mit 566    
https://github.com/f0wl/MalwareLab_VM-Setup Setup scripts for my Malware Analysis VMs f0wl gpl-3.0 210    
https://github.com/projectdiscovery/nuclei Fast and customizable vulnerability scanner based on simple YAML based DSL. projectdiscovery mit 10399    
https://github.com/easylist/easylist EasyList filter subscription (EasyList, EasyPrivacy, EasyList Cookie, Fanboy’s Social/Annoyances/Notifications Blocking List) easylist   1408    
https://github.com/nitefood/asn ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server nitefood mit 680    
https://github.com/itm4n/Perfusion Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012) itm4n   397    
https://github.com/jeffjbowie/intelligence_gathering   jeffjbowie   23    
https://github.com/deepmind/tree tree is a library for working with nested data structures deepmind apache-2.0 783    
https://github.com/zoobab/mobib-extractor MOBIB-extractor allows you to read the data stored on your STIB Mobib card zoobab   17    
https://github.com/jackullrich/syscall-detect PoC capable of detecting manual syscalls from usermode. jackullrich   120    
https://github.com/pablomarle/networkmaps Online network diagram editor pablomarle mit 86    
https://github.com/MBCProject/mbc-markdown MBC content in markdown MBCProject   195    
https://github.com/ambrop72/badvpn NCD scripting language, tun2socks proxifier, P2P VPN ambrop72 other 1702    
https://github.com/allegro/ralph Ralph is the CMDB / Asset Management system for data center and back office hardware. allegro apache-2.0 1898    
https://github.com/cyberark/BlobHunter Find exposed data in Azure with this public blob scanner cyberark mit 240    
https://github.com/tidwall/ptree A data structure for storing points. tidwall mit 17    
https://github.com/sthagen/asenci-uipcalc Universal (IPv4/IPv6) CIDR calculator sthagen isc 4    
https://github.com/superbaud/HEAI fun with GSM superbaud   1    
https://github.com/jonasstrehle/supercookie ⚠️ Browser fingerprinting via favicon! jonasstrehle mit 3987    
https://github.com/open-sdr/openwifi open-source IEEE 802.11 WiFi baseband FPGA (chip) design: driver, software open-sdr agpl-3.0 2736    
https://github.com/srsran/srsRAN Open source SDR 4G/5G software suite from Software Radio Systems (SRS) srsran agpl-3.0 2805    
https://github.com/vixie/cron Vixie Cron, an open source implementation of POSIX Cron, later imported into BSD and Linux vixie other 27    
https://github.com/dataspectra/base-station-mapping   dataspectra gpl-3.0 4    
https://github.com/frictionlessdata/schema-collaboration Carles Pina Estany’s 2020 Tool Fund: data managers and researchers collaborate to write the Frictionless Data packages, tabular schemas, etc. frictionlessdata mit 15    
https://github.com/medialab/minet A webmining CLI tool & library for python. medialab gpl-3.0 156    
https://github.com/Guillaume-Levrier/PANDORAE A data retrieval & exploration protocol designed to investigate science and policy processes Guillaume-Levrier mit 5    
https://github.com/medialab/gazouilloire Twitter stream + search API grabber medialab gpl-3.0 94    
https://github.com/medialab/hyphe-browser Browser version of Hyphe (WIP) medialab agpl-3.0 25    
https://github.com/ossf/wg-securing-critical-projects Helping allocate resources to secure the critical open source projects we all depend on. ossf apache-2.0 244    
https://github.com/ossf/criticality_score Gives criticality score for an open source project ossf apache-2.0 1095    
https://github.com/spyder-ide/spyder Official repository for Spyder - The Scientific Python Development Environment spyder-ide mit 7235    
https://github.com/phage-nz/infosec-bazaar A collection of infosec related scripts and information. phage-nz   55    
https://github.com/ail-project/ail-feeder-telegram External telegram feeder for AIL framework ail-project agpl-3.0 6    
https://github.com/microsoft/graspologic Python package for graph statistics microsoft mit 268    
https://github.com/counteractive/incident-response-plan-template A concise, directive, specific, flexible, and free incident response plan template counteractive other 355    
https://github.com/ifduyue/python-xxhash Python Binding for xxHash ifduyue bsd-2-clause 294    
https://github.com/m8sec/pymeta Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions. m8sec gpl-3.0 300    
https://github.com/CyCat-project/cycat-taxonomy CyCAT.org taxonomies CyCat-project   13    
https://github.com/CyCat-project/cycat-project-website   CyCat-project mit 3    
https://github.com/berneout/berneout-pledge a simple tool for hassle-free open-source contribution licensing berneout   31    
https://github.com/RedLectroid/OverThruster HID attack payload generator for Arduinos RedLectroid gpl-3.0 145    
https://github.com/googleworkspace/md2googleslides Generate Google Slides from markdown googleworkspace apache-2.0 4270    
https://github.com/MITRECND/malchive Various capabilities for static malware analysis. MITRECND other 65    
https://github.com/clong/DetectionLab Automate the creation of a lab environment complete with security tooling and logging best practices clong mit 3946    
https://github.com/0xn0ne/weblogicScanner weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883 0xn0ne   1536    
https://github.com/theevilbit/injection   theevilbit   699    
https://github.com/angr/phuzzer The new phuzzing framework! angr bsd-2-clause 132    
https://github.com/Lookyloo/scraping-tutorial This tutorial explains the benefits, pitfalls, and limitations of scraping, and why Lookyloo is an important tool. Lookyloo mit 8    
https://github.com/poljar/matrix-nio A Python Matrix client library, designed according to sans I/O (http://sans-io.readthedocs.io/) principles poljar other 386    
https://github.com/anthonynsimon/timeflake Timeflake is a 128-bit, roughly-ordered, URL-safe UUID. anthonynsimon mit 795    
https://github.com/CyCat-project/cycat-logo Logo of the CyCat.org project CyCat-project   1    
https://github.com/MISP/matrix-misp-bot Very basic MISP bot for matrix. MISP apache-2.0 5    
https://github.com/ayushoriginal/Sentiment-Analysis-Twitter :mortar_board:RESEARCH [NLP :thought_balloon:] We use different feature sets and machine learning classifiers to determine the best combination for sentiment analysis of twitter. ayushoriginal   726    
https://github.com/zyw-200/FirmAFL FIRM-AFL is the first high-throughput greybox fuzzer for IoT firmware. zyw-200   354    
https://github.com/danielplohmann/smda SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps. danielplohmann bsd-2-clause 179    
https://github.com/vkbo/novelWriter novelWriter is an open source plain text editor designed for writing novels. It supports a minimal markdown-like syntax for formatting text. It is written with Python 3 (3.7+) and Qt 5 (5.10+) for cross-platform support. vkbo gpl-3.0 1402    
https://github.com/InfiniTimeOrg/InfiniTime Firmware for Pinetime smartwatch written in C/C++ and based on FreeRTOS InfiniTimeOrg gpl-3.0 1858    
https://github.com/py7hagoras/CovenantTasks Source for tasks I have used with Covenant py7hagoras   123    
https://github.com/mailvelope/keyserver A simple OpenPGP public key server that validates email address ownership of uploaded keys. mailvelope agpl-3.0 311    
https://github.com/ForensicITGuy/handy-cti Resources I’ve found useful for my CTI work ForensicITGuy mit 5    
https://github.com/OTRF/Security-Datasets Re-play Security Events OTRF mit 1311    
https://github.com/kryptoslogic/binja_degobfuscate Fix Go obfuscated binaries that were obfuscated using gobfuscator kryptoslogic mit 42    
https://github.com/igrigorik/gharchive.org GH Archive is a project to record the public GitHub timeline, archive it, and make it easily accessible for further analysis. igrigorik mit 2334    
https://github.com/dbarzin/mercator Cartographie du système d’information / Mapping the information system dbarzin gpl-3.0 77    
https://github.com/mohlcyber/MISP-STIX-ESM Exports MISP events to STIX and ingest into McAfee ESM mohlcyber   14    
https://github.com/nccgroup/pybeacon A collection of scripts for dealing with Cobalt Strike beacons in Python nccgroup   161    
https://github.com/hatari/hatari The Atari ST, STE, TT and Falcon emulator. This is a mirror repository, the official one can be found on https://hatari.tuxfamily.org/ hatari   51    
https://github.com/google/trillian A transparent, highly scalable and cryptographically verifiable data store. google apache-2.0 3151    
https://github.com/vertrex/DFF DFF (Digital Forensics Framework) vertrex gpl-2.0 9    
https://github.com/rsd-devel/rsd RSD: RISC-V Out-of-Order Superscalar Processor rsd-devel apache-2.0 719    
https://github.com/cedowens/C2-JARM A list of JARM hashes for different ssl implementations used by some C2/red team tools. cedowens   101    
https://github.com/tailwindlabs/heroicons A set of free MIT-licensed high-quality SVG icons for UI development. tailwindlabs mit 17016    
https://github.com/disclose/diodata Tools, data, and contact lists relevant to The disclose.io Project. disclose gpl-3.0 304    
https://github.com/d0c-s4vage/gramfuzz gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats. d0c-s4vage mit 229    
https://github.com/goretk/redress Redress - A tool for analyzing stripped Go binaries goretk agpl-3.0 651    
https://github.com/daniel-thompson/wasp-os A MicroPython based development environment for smart watches (including Pine64 PineTime) daniel-thompson gpl-3.0 598    
https://github.com/MichaelKoczwara/Awesome-CobaltStrike-Defence Defences against Cobalt Strike MichaelKoczwara mit 1151    
https://github.com/mori-b/aioconnectors Simple secure asynchronous message queue mori-b apache-2.0 18    
https://github.com/codenotary/immudb immudb - immutable database based on zero trust, SQL and Key-Value, tamperproof, data change history codenotary apache-2.0 7940    
https://github.com/VeryBueno/bash-websocket-server Websocket server written in bash VeryBueno   11    
https://github.com/sinwindie/OSINT Collections of tools and methods created to aid in OSINT collection sinwindie   1795    
https://github.com/ethereal-vx/Antivirus-Artifacts Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot. ethereal-vx   641    
https://github.com/TDAmeritrade/stumpy STUMPY is a powerful and scalable Python library for modern time series analysis TDAmeritrade other 2402    
https://github.com/jgamblin/CVEHeatMap A CVE Heatmap Using CalPlot jgamblin mit 98    
https://github.com/antvis/G6 ♾ A Graph Visualization Framework in JavaScript antvis mit 9299    
https://github.com/salesforce/jarm   salesforce bsd-3-clause 808    
https://github.com/CERT-Polska/karton Distributed malware processing framework based on Python, Redis and S3. CERT-Polska bsd-3-clause 294    
https://github.com/center-for-threat-informed-defense/attack-control-framework-mappings Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process. center-for-threat-informed-defense apache-2.0 333    
https://github.com/dask/fastparquet python implementation of the parquet columnar file format. dask apache-2.0 614    
https://github.com/apache/parquet-format Apache Parquet apache apache-2.0 1200    
https://github.com/madaidans-insecurities/madaidans-insecurities.github.io   madaidans-insecurities   92    
https://github.com/mattsse/voyager crawl and scrape web pages in rust mattsse apache-2.0 532    
https://github.com/NoDataFound/RiskIQ.SunBurst.Hunter The Purpose of this research tool is to provide a Python client into RiskIQ API services. NoDataFound   21    
https://github.com/WillOram/cyber-incident-management Notes on managing and coordinating the response to major cyber incidents WillOram other 24    
https://github.com/darcosion/limier Limier est un petit outil en CLI permettant de trouver un flux RSS quand il est planqué sur un site. darcosion mpl-2.0 17    
https://github.com/ninoseki/mmhdan Calculate fingerprints of a website for OSINT search ninoseki mit 38    
https://github.com/paulgb/Treeverse A browser extension for navigating burgeoning Twitter conversations paulgb mit 469    
https://github.com/hacklcx/HFish 安全、可靠、简单、免费的企业级蜜罐 hacklcx   3388    
https://github.com/projectdiscovery/naabu A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests projectdiscovery mit 2733    
https://github.com/Cretezy/dSock Distributed WebSocket broker Cretezy mit 215    
https://github.com/KasperskyLab/TinyCheck TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere. KasperskyLab apache-2.0 2608    
https://github.com/cisagov/Sparrow Sparrow.ps1 was created by CISA’s Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment. cisagov cc0-1.0 1348    
https://github.com/mlkui/chrome-cookie-password-decryption The decryption implementation of Chrome cookie(encrypted_value) and password(password_value) on Windows with Java mlkui   15    
https://github.com/Cgboal/SonarSearch A rapid API for the Project Sonar dataset Cgboal mit 592    
https://github.com/pielco11/fav-up IP lookup by favicon using Shodan pielco11 mit 781    
https://github.com/devanshbatham/FavFreak Making Favicon.ico based Recon Great again ! devanshbatham mit 846    
https://github.com/Te-k/harpoon CLI tool for open source and threat intelligence Te-k gpl-3.0 995    
https://github.com/bytedance/terarkdb A RocksDB compatible KV storage engine with better performance bytedance apache-2.0 1776    
https://github.com/jech/galene The Galène videoconference server jech mit 702    
https://github.com/joewalnes/websocketd Turn any program that uses STDIN/STDOUT into a WebSocket server. Like inetd, but for WebSockets. joewalnes bsd-2-clause 16397    
https://github.com/ITAYC0HEN/SUNBURST-Cracked The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations. ITAYC0HEN   57    
https://github.com/icedland/iced Blazing fast and correct x86/x64 disassembler, assembler, decoder, encoder for .NET, Rust, Python, JavaScript icedland mit 1976    
https://github.com/BorjaMerino/Pazuzu Pazuzu: Reflective DLL to run binaries from memory BorjaMerino   215    
https://github.com/sdcampbell/Internal-Pentest-Playbook Internal Network Penetration Test Playbook sdcampbell   706    
https://github.com/closeio/socketshark A WebSocket message router based on Python/Redis/asyncio closeio mit 83    
https://github.com/0xdefendA/policies Open source information security policies 0xdefendA mpl-2.0 13    
https://github.com/google/security-research-pocs Proof-of-concept codes created as part of security research done by Google Security Team. google apache-2.0 1798    
https://github.com/owncast/owncast Take control over your live stream video by running it yourself. Streaming + chat out of the box. owncast mit 6625    
https://github.com/cve-search/CveXplore CveXplore cve-search gpl-3.0 21    
https://github.com/CaliDog/certstream-server Certificate Transparency Log aggregation, parsing, and streaming service written in Elixir CaliDog mit 165    
https://github.com/volatilityfoundation/volatility An advanced memory forensics framework volatilityfoundation gpl-2.0 5710    
https://github.com/Cn33liz/p0wnedShell PowerShell Runspace Post Exploitation Toolkit Cn33liz bsd-3-clause 1449    
https://github.com/bellingcat/instagram-location-search Finds Instagram location IDs near a specified latitude and longitude. bellingcat mit 302    
https://github.com/bambenek/research   bambenek cc0-1.0 98    
https://github.com/davidsonmizael/dwarf Tiny botnet client that is controlled by a remote blog davidsonmizael   5    
https://github.com/damnever/pigar :coffee: A tool to generate requirements.txt for Python project, and more than that. (IT IS NOT A PACKAGE MANAGEMENT TOOL) damnever bsd-3-clause 1336    
https://github.com/DongyunLee/vulnerability_db The Personal Database about CNVD DongyunLee other 2    
https://github.com/RedDrip7/SunBurst_DGA_Decode SunBurst DGA Decode Script RedDrip7   206    
https://github.com/mandiant/sunburst_countermeasures   mandiant other 548    
https://github.com/rackerlabs/scantron A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows. rackerlabs apache-2.0 684    
https://github.com/TheEconomist/covid-19-excess-deaths-tracker Source code and data for The Economist’s covid-19 excess deaths tracker TheEconomist   632    
https://github.com/BinaryAnalysisPlatform/bap Binary Analysis Platform BinaryAnalysisPlatform mit 1716    
https://github.com/facontidavide/PlotJuggler The Time Series Visualization Tool that you deserve. facontidavide mpl-2.0 3124    
https://github.com/tromp/cuckoo a memory-bound graph-theoretic proof-of-work system tromp other 780    
https://github.com/mandiant/red_team_tool_countermeasures   mandiant other 2544    
https://github.com/DNSCrypt/dnscrypt-resolvers Lists of public DNSCrypt / DoH DNS servers and DNS relays DNSCrypt   865    
https://github.com/RichieB2B/nioc No Indicators of Compromise RichieB2B agpl-3.0 3    
https://github.com/coredns/coredns CoreDNS is a DNS server that chains plugins coredns apache-2.0 9918    
https://github.com/oskarsve/ms-teams-rce   oskarsve   1085    
https://github.com/filesender/filesender FileSender server software filesender bsd-3-clause 157    
https://github.com/ufrisk/MemProcFS The Memory Process File System ufrisk agpl-3.0 1580    
https://github.com/LLVM-but-worse/maple-ir Industrial IR-based static analysis framework for Java bytecode LLVM-but-worse gpl-3.0 47    
https://github.com/gallypette/Fortigate Extract Useful info from SSL VPN Directory Traversal Vulnerability (FG-IR-18-384) gallypette gpl-3.0 1    
https://github.com/beurtschipper/Depix Recovers passwords from pixelized screenshots beurtschipper other 22897    
https://github.com/deepseagirl/degoogle search Google and extract results directly. skip all the click-through links and other sketchiness deepseagirl mit 469    
https://github.com/3c7/infrastructure-tracking-schema   3c7 mit 22    
https://github.com/rabbitstack/fibratus A modern tool for Windows kernel exploration and tracing with a focus on security rabbitstack other 1657    
https://github.com/0xchase/modality Symbolic execution in radare2 with angr 0xchase   40    
https://github.com/mhx/dwarfs A fast high compression read-only file system mhx gpl-3.0 1001    
https://github.com/Mebus/cupp Common User Passwords Profiler (CUPP) Mebus gpl-3.0 3066    
https://github.com/ioerror/csidh-reference-implementation   ioerror other 3    
https://github.com/ggerganov/dot-to-ascii Graphviz to ASCII converter using Graph::Easy ggerganov mit 324    
https://github.com/redshiftzero/awesome-threat-modeling a curated list of useful threat modeling resources redshiftzero apache-2.0 91    
https://github.com/x0rz/tweetentropy Twitter as an extra entropy source x0rz gpl-3.0 93    
https://github.com/matrix-org/dendrite Dendrite is a second-generation Matrix homeserver written in Go! matrix-org apache-2.0 4013    
https://github.com/0xcpu/bonomen BONOMEN - Hunt for Malware Critical Process Impersonation 0xcpu gpl-3.0 42    
https://github.com/Apr4h/CobaltStrikeScan Scan files or process memory for CobaltStrike beacons and parse their configuration Apr4h mit 756    
https://github.com/WerWolv/ImHex 🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM. WerWolv gpl-2.0 22314    
https://github.com/vector-im/element-ios A glossy Matrix collaboration client for iOS vector-im apache-2.0 1468    
https://github.com/tchapgouv/tchap-ios A Matrix client for iOS tchapgouv apache-2.0 51    
https://github.com/matrix-org/synapse Synapse: Matrix homeserver written in Python/Twisted. matrix-org apache-2.0 10110    
https://github.com/KonradIT/parler-py-api UNOFFICIAL Python API to interface with Parler.com KonradIT   54    
https://github.com/ma1uta/ma1sd Federated Matrix Identity Server (formerly fork of kamax/mxisd) ma1uta agpl-3.0 154    
https://github.com/DissectMalware/XLMMacroDeobfuscator Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros) DissectMalware apache-2.0 500    
https://github.com/willglynn/pdb A parser for Microsoft PDB (Program Database) debugging information willglynn apache-2.0 267    
https://github.com/opensanctions/opensanctions An open database of international sanctions data, persons of interest and politically exposed persons opensanctions mit 318    
https://github.com/jakobwesthoff/prettytable.sh A shell script to pretty print tabular data into the terminal jakobwesthoff bsd-2-clause 28    
https://github.com/MontFerret/ferret Declarative web scraping MontFerret apache-2.0 5108    
https://github.com/nrdmn/elbrus-docs   nrdmn   58    
https://github.com/MythicAgents/Nimplant DEPRECATED - A cross-platform implant written in Nim MythicAgents bsd-3-clause 152    
https://github.com/cudeso/rsit-attck Link RSIT with ATT&CK cudeso   3    
https://github.com/vxunderground/MalwareSourceCode Collection of malware source code for a variety of platforms in an array of different programming languages. vxunderground   11493    
https://github.com/benreardon-sfdc/fatt FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic benreardon-sfdc bsd-3-clause 3    
https://github.com/hugsy/ctfpad An OK way to manage CTFs for teams playing CTFs hugsy   52    
https://github.com/iceychris/LibreASR :speech_balloon: An On-Premises, Streaming Speech Recognition System iceychris mit 683    
https://github.com/ComodoSecurity/openedr Open EDR public repository ComodoSecurity other 1593    
https://github.com/telekom-security/explo Human and machine readable web vulnerability testing format telekom-security gpl-3.0 152    
https://github.com/solemnwarning/rehex Reverse Engineers’ Hex Editor solemnwarning gpl-2.0 2032    
https://github.com/nneonneo/universal-doom A single .exe binary which runs DOOM on DOS 6, Windows 95 and Windows 10 (and probably everything in between). nneonneo   252    
https://github.com/D4-project/passive-ssh A Passive SSH back-end and scanner. D4-project agpl-3.0 92    
https://github.com/ulixee/secret-agent The web scraper that’s nearly impossible to block - now called @ulixee/hero ulixee mit 537    
https://github.com/subat0mik/whoamsi An effort to track security vendors’ use of Microsoft’s Antimalware Scan Interface subat0mik gpl-3.0 149    
https://github.com/microsoft/Microsoft-365-Defender-Hunting-Queries Sample queries for Advanced hunting in Microsoft 365 Defender microsoft mit 1556    
https://github.com/davidpany/WMI_Forensics   davidpany   241    
https://github.com/quentinhardy/pytmipe Python library and client for token manipulations and impersonations for privilege escalation on Windows quentinhardy   115    
https://github.com/ralphje/signify Module to generate and verify PE signatures ralphje other 28    
https://github.com/gmsoft-tuxicoman/packet-o-matic Network forensic tool. Please use pom-ng instead. gmsoft-tuxicoman   1    
https://github.com/ovh/the-bastion Authentication, authorization, traceability and auditability for SSH accesses. ovh other 1140    
https://github.com/Freakboy/CobaltStrike CobaltStrike’s source code Freakboy   1361    
https://github.com/DevoInc/feeds   DevoInc mit 1    
https://github.com/Te-k/pecli CLI tool to analyze PE files Te-k mit 67    
https://github.com/NLnetLabs/routinator An RPKI Validator and RTR server written in Rust NLnetLabs bsd-3-clause 328    
https://github.com/cerebrate-project/cerebrate-docker   cerebrate-project agpl-3.0 4    
https://github.com/fastavro/fastavro Fast Avro for Python fastavro mit 531    
https://github.com/sq5bpf/etherify Etherify - bringing the ether back to ethernet sq5bpf gpl-3.0 335    
https://github.com/jlevy/the-art-of-command-line Master the command line, in one page jlevy   114958    
https://github.com/firmadyne/scraper Firmware scraper firmadyne mit 97    
https://github.com/alwashmi/MasterParser MasterParser is a simple, all-in-one, digital forensics artifact parser alwashmi gpl-3.0 18    
https://github.com/muteb/Hoarder This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole har drive. muteb gpl-3.0 131    
https://github.com/QuoSecGmbH/grap grap: define and match graph patterns within binaries QuoSecGmbH mit 149    
https://github.com/bitdefender/bddisasm bddisasm is a fast, lightweight, x86/x64 instruction decoder. The project also features a fast, basic, x86/x64 instruction emulator, designed specifically to detect shellcode-like behavior. bitdefender apache-2.0 706    
https://github.com/crossroadsfpga/pigasus 100Gbps Intrusion Detection and Prevention System crossroadsfpga   599    
https://github.com/yogsototh/ymetapost A better interface to metapost for generating graphs for the web yogsototh   5    
https://github.com/threatgrid/ctim Cisco Threat Intellligence Model threatgrid epl-1.0 55    
https://github.com/rnpgp/rnp RNP: high performance C++ OpenPGP library used by Mozilla Thunderbird rnpgp other 147    
https://github.com/fonsp/Pluto.jl 🎈 Simple reactive notebooks for Julia fonsp mit 4188    
https://github.com/somenonymous/OshiUpload Ephemeral file sharing engine somenonymous wtfpl 98    
https://github.com/kam800/MachObfuscator MachObfuscator is a programming-language-agnostic Mach-O apps obfuscator for Apple platforms. kam800 mit 476    
https://github.com/samyk/slipstream NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewall, just by anyone on the victim’s network visiting a website samyk   1748    
https://github.com/mozilla/DeepSpeech DeepSpeech is an open source embedded (offline, on-device) speech-to-text engine which can run in real time on devices ranging from a Raspberry Pi 4 to high power GPU servers. mozilla mpl-2.0 20503    
https://github.com/target/halogen Automatically create YARA rules from malicious documents. target mit 191    
https://github.com/Cyan4973/xxHash Extremely fast non-cryptographic hash algorithm Cyan4973 other 6722    
https://github.com/jxy-s/herpaderping Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process. jxy-s mit 898    
https://github.com/libyal/libevt Library and tools to access the Windows Event Log (EVT) format libyal lgpl-3.0 52    
https://github.com/linuxthor/slimpack Toolkit for building encrypted file loaders for single source file NASM projects (uses AES-NI instructions) linuxthor   3    
https://github.com/Jana-Marie/EF-S-Adapter https://twitter.com/_Jana_Marie/status/1317520812761546753 Jana-Marie mit 93    
https://github.com/omerbenamram/pyevtx-rs Python bindings for https://github.com/omerbenamram/evtx/ omerbenamram   35    
https://github.com/Binary-Hackers/42_Subjects All Subjects of 42 School Binary-Hackers   930    
https://github.com/RedisGraph/redisgraph-py RedisGraph python client RedisGraph bsd-3-clause 185    
https://github.com/RedisGraph/RedisGraph A graph database as a Redis module RedisGraph other 1749    
https://github.com/Lichtsinnig/EVTX-ATTACK-SAMPLES   Lichtsinnig   9    
https://github.com/mitre/advmlthreatmatrix Adversarial Threat Landscape for AI Systems mitre   917    
https://github.com/mitre-attack/attack-datasources This content is analysis and research of the data sources currently listed in ATT&CK. mitre-attack apache-2.0 325    
https://github.com/antham/yogo Check yopmail mails and inboxes from command line. antham mit 26    
https://github.com/OSMNames/OSMNames Data for place names from OpenStreetMap prepared for fulltext search. Downloadable. Ranked. With bbox and hierarchy. Ready for geocoding. OSMNames gpl-2.0 287    
https://github.com/bcmc/oss \B\C\M\C\ Open Source Software bcmc   17    
https://github.com/peering-manager/peering-manager BGP sessions management tool peering-manager apache-2.0 345    
https://github.com/geovista/GeoCorpora The GeoCorpora project aims at creating corpora of fully geo-annotated texts (in particular microblog texts) and developing tools to support the corpus building process using crowd-sourcing and visual analytics approaches. Created corpora will be made publicly available in this repository. A first corpus of ~6000 geo-annotated tweets will be published here in the near future. geovista   15    
https://github.com/geovista/GeoTxt   geovista lgpl-3.0 20    
https://github.com/thampiman/reverse-geocoder A fast, offline reverse geocoder in Python thampiman lgpl-2.1 1787    
https://github.com/gaspardpetit/base64   gaspardpetit   77    
https://github.com/Hironsan/anago Bidirectional LSTM-CRF and ELMo for Named-Entity Recognition, Part-of-Speech Tagging and so on. Hironsan mit 1463    
https://github.com/fastai/fastai The fastai deep learning library fastai apache-2.0 22940    
https://github.com/sebastianruder/NLP-progress Repository to track the progress in Natural Language Processing (NLP), including the datasets and the current state-of-the-art for the most common NLP tasks. sebastianruder mit 21029    
https://github.com/RoiArthurB/Side-Auto_Sci-Hub Cross-Browser Plugin to open Sci-Hub 🗝 page with the article from your current tab RoiArthurB gpl-3.0 226    
https://github.com/adobe/stringlifier Stringlifier is on Opensource ML Library for detecting random strings in raw text. It can be used in sanitising logs, detecting accidentally exposed credentials and as a pre-processing step in unsupervised ML-based analysis of application text data. adobe apache-2.0 143    
https://github.com/trendmicro/telfhash Symbol hash for ELF files trendmicro apache-2.0 70    
https://github.com/ail-project/ail-feeder-jsonlogs Aggregate json log lines and push to AIL framework. ail-project agpl-3.0 1    
https://github.com/americanexpress/earlybird EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more. americanexpress apache-2.0 514    
https://github.com/microsoftgraph/security-api-solutions Microsoft Graph Security API applications and services. microsoftgraph mit 189    
https://github.com/matthewwithanm/python-markdownify Convert HTML to Markdown matthewwithanm mit 354    
https://github.com/megadose/OnionSearch OnionSearch is a script that scrapes urls on different .onion search engines. megadose gpl-3.0 647    
https://github.com/matiskay/html-similarity Compare html similarity using structural and style metrics matiskay bsd-3-clause 186    
https://github.com/Neo23x0/Raccine A Simple Ransomware Vaccine Neo23x0 unlicense 846    
https://github.com/nanomsg/nng nanomsg-next-generation – light-weight brokerless messaging nanomsg mit 2947    
https://github.com/ancailliau/sans-indexes Indexes for SANS Courses and GIAC Certifications ancailliau   124    
https://github.com/Debdut/names.io A Global Exhaustive First and Last Name Database Debdut apache-2.0 712    
https://github.com/WorldBrain/Memex Browser extension to curate, annotate, and discuss the most valuable content and ideas on the web. As individuals, teams and communities. WorldBrain   3552    
https://github.com/thalesgroup-cert/Watcher Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS. thalesgroup-cert agpl-3.0 646    
https://github.com/google/cld3   google apache-2.0 585    
https://github.com/libnet/libnet A portable framework for low-level network packet construction libnet bsd-2-clause 762    
https://github.com/BloodHoundAD/BloodHound Six Degrees of Domain Admin BloodHoundAD gpl-3.0 7537    
https://github.com/unprovable/PentestHardware Kinda useful notes collated together publicly unprovable   475    
https://github.com/ALFA-group/BRON “Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyber Hunting” by Erik Hemberg, Jonathan Kelly, Michal Shlapentokh-Rothman, Bryn Reinstadler, Katherine Xu, Nick Rutar, Una-May O’Reilly ALFA-group mit 39    
https://github.com/dstotijn/hetty An HTTP toolkit for security research. dstotijn mit 4987    
https://github.com/D4-project/analyzer-d4-pewpew This analyzer creates a pewpew map out of d4 data D4-project agpl-3.0 5    
https://github.com/sherlock-project/sherlock 🔎 Hunt down social media accounts by username across social networks sherlock-project mit 36753    
https://github.com/iojw/socialscan Python library and CLI for accurately querying username and email usage on online platforms iojw mpl-2.0 953    
https://github.com/ahmadawais/hacktoberfest #Hacktoberfest + Git Resources Contributions beginners just like you. Jump in! 🎯 ahmadawais mit 91  
https://github.com/EFForg/yaya Yet Another Yara Automaton - Automatically curate open source yara rules and run scans EFForg gpl-3.0 201    
https://github.com/google/licenseclassifier A License Classifier google apache-2.0 263    
https://github.com/corkami/mitra A generator of weird files (binary polyglots, near polyglots…) corkami mit 958    
https://github.com/mne-tools/mne-python MNE: Magnetoencephalography (MEG) and Electroencephalography (EEG) in Python mne-tools bsd-3-clause 2054    
https://github.com/sobolevn/git-secret :busts_in_silhouette: A bash-tool to store your private data inside a git repository. sobolevn mit 3059    
https://github.com/JustAnotherArchivist/snscrape A social networking service scraper in Python JustAnotherArchivist gpl-3.0 1999    
https://github.com/gnebbia/kb A minimalist command line knowledge base manager gnebbia gpl-3.0 2901    
https://github.com/skeeto/endlessh SSH tarpit that slowly sends an endless banner skeeto unlicense 5633    
https://github.com/designsecurity/progpilot A static analysis tool for security designsecurity mit 269    
https://github.com/mxrch/darkshot Lightshot scraper on steroids with OCR. mxrch mpl-2.0 232    
https://github.com/oryon-osint/querytool Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more. oryon-osint   130    
https://github.com/yeti-platform/yetigo Maltego Transforms for Yeti yeti-platform apache-2.0 7    
https://github.com/internetarchive/fatcat Perpetual Access To The Scholarly Record internetarchive other 95    
https://github.com/CERT-Polska/malduck :duck: Malduck is your ducky companion in malware analysis journeys CERT-Polska gpl-3.0 203    
https://github.com/dfirtrack/dfirtrack DFIRTrack - The Incident Response Tracking Application dfirtrack other 405    
https://github.com/Sentinel-One/CobaltStrikeParser   Sentinel-One other 795    
https://github.com/mandiant/capa The FLARE team’s open-source tool to identify capabilities in executable files. mandiant apache-2.0 2442    
https://github.com/sowdust/tafferugli Tafferugli is a Twitter Analysis Framework sowdust agpl-3.0 357    
https://github.com/SiliconAnalysis/bitract Extract bits from photos SiliconAnalysis bsd-2-clause 60    
https://github.com/lorenzoromani1983/facebookTranscripts A simple (work in progress) script to extract transcripts from Google-indexed Facebook videos containing high quality transcripts lorenzoromani1983   11    
https://github.com/fossology/fossology FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and web ui are provided to give you a compliance workflow. License, copyright and export scanners are tools used in the workflow. fossology gpl-2.0 597    
https://github.com/Fizzadar/pyinfra pyinfra automates infrastructure super fast at massive scale. It can be used for ad-hoc command execution, service deployment, configuration management and more. Fizzadar mit 2066    
https://github.com/melicertes/docs The knowledge base reference to the MeliCERTes project melicertes cc0-1.0 4    
https://github.com/lightbody/browsermob-proxy A free utility to help web developers watch and manipulate network traffic from their AJAX applications. lightbody apache-2.0 1878    
https://github.com/keepassxreboot/keepassxc KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”. keepassxreboot other 14161    
https://github.com/viper-framework/viper-modules   viper-framework bsd-3-clause 5    
https://github.com/Flangvik/BetterSafetyKatz Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into memory. Flangvik other 649    
https://github.com/FRRouting/frr The FRRouting Protocol Suite FRRouting gpl-2.0 2340    
https://github.com/iovisor/ubpf Userspace eBPF VM iovisor apache-2.0 552    
https://github.com/raphaelm/android-barcode-keyboard Barcode keyboard for Android (not actively maintained) raphaelm   31    
https://github.com/ping/instagram_private_api A Python library to access Instagram’s private API. ping mit 2563    
https://github.com/vysecurity/morphHTA morphHTA - Morphing Cobalt Strike’s evil.HTA vysecurity   490    
https://github.com/rnd-ash/MBUX-Port Custom Infotainment UI for older Mercedes vehicles (2000-2007), inspired loosely by the 2021 S Class MBUX UI rnd-ash   95    
https://github.com/trimstray/multitor Create multiple TOR instances with a load-balancing. trimstray gpl-3.0 832    
https://github.com/sarciszewski/onionimbus-old Dedicated Reverse Proxy for Tor Hidden Services sarciszewski wtfpl 4    
https://github.com/m0nad/Diamorphine LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64) m0nad other 1130    
https://github.com/manubot/manubot Python utilities for Manubot: Manuscripts, open and automated manubot other 354    
https://github.com/AlgoSecure/Pollenisator Collaborative pentest tool with highly customizable tools AlgoSecure gpl-3.0 66    
https://github.com/roomylee/awesome-relation-extraction 📖 A curated list of awesome resources dedicated to Relation Extraction, one of the most important tasks in Natural Language Processing (NLP). roomylee   1013    
https://github.com/DC11331/website DC11331 DCG website repository, talks, news and archives DC11331   2    
https://github.com/returntocorp/semgrep Lightweight static analysis for many languages. Find bug variants with patterns that look like source code. returntocorp other 7348    
https://github.com/resemble-ai/Resemblyzer A python package to analyze and compare voices with deep learning resemble-ai apache-2.0 2050    
https://github.com/Datalux/Osintgram Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname Datalux gpl-3.0 5379    
https://github.com/johnjhacking/Buffer-Overflow-Guide This Bufferflow Guide includes instructions and the scripts necessary for Buffer Overflow Exploitation. This guide is a supplement for TheCyberMentor’s walkthrough. Please watch his walkthrough if you’re confused. Feel free to implement Pull Requests or raise Issues. johnjhacking   456    
https://github.com/adulau/napkin-text-analysis Napkin is a simple tool to produce statistical analysis of a text adulau agpl-3.0 11    
https://github.com/ail-project/ail-yara-rules A set of YARA rules for the AIL framework to detect leak or information disclosure ail-project agpl-3.0 31    
https://github.com/eCrimeLabs/phish2MISP Easy way to create a MISP event related to a Phishing page eCrimeLabs mit 15    
https://github.com/cablelabs/transparent-security Transparent Security is a solution for identify the source devices of a DDoS attack and mitigates the attack in the customer premises or the access network. This solution leverages a P4 based programmable data plane for add in-band network telemetry (INT) for device identification and in-band mitigation. cablelabs apache-2.0 25    
https://github.com/cablelabs/ddos-info-sharing The repository for the CRITS based DDoS Information Sharing platform cablelabs   5    
https://github.com/scythe-io/community-threats A place to share attack chains for testing people, process, and technology with the entire community. The largest, public library of adversary emulation and adversary simulation plans! #ThreatThursday scythe-io mit 547    
https://github.com/CodisLabs/codis Proxy based Redis cluster solution supporting pipeline and scaling dynamically CodisLabs mit 12690    
https://github.com/ignis-sec/Pwdb-Public A collection of all the data i could extract from 1 billion leaked credentials from internet. ignis-sec mit 2679    
https://github.com/SixGenInc/Noctilucent Using TLS 1.3 to evade censors, bypass network defenses, and blend in with the noise SixGenInc   636    
https://github.com/Ciphey/Ciphey ⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡ Ciphey mit 10904    
https://github.com/jdkato/prose :book: A Golang library for text processing, including tokenization, part-of-speech tagging, and named-entity extraction. jdkato mit 2952    
https://github.com/juhakivekas/multidiff Binary data diffing for multiple objects or streams of data juhakivekas mit 297    
https://github.com/TheWover/donut Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters TheWover bsd-3-clause 2281    
https://github.com/explosion/spacy-lookups-data 📂 Additional lookup tables and data resources for spaCy explosion mit 74    
https://github.com/darrenmartyn/vBulldozer Very loud vBulletin exploit darrenmartyn   15    
https://github.com/raylene/eng-handbook A developer’s guide to management: an open-sourced handbook for leading software engineering teams. raylene gpl-3.0 1210    
https://github.com/reald/urh Universal Radio Hacker: Experimental PlutoSDR support (via gnuradio). reald gpl-3.0 7    
https://github.com/reversinglabs/reversinglabs-yara-rules ReversingLabs YARA Rules reversinglabs mit 502    
https://github.com/blackberry/pe_tree Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall to dump in-memory PE files and reconstruct imports. blackberry apache-2.0 1241    
https://github.com/cytopia/pwncat pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE) cytopia mit 1493    
https://github.com/gto76/python-cheatsheet Comprehensive Python Cheatsheet gto76   30554    
https://github.com/souffle-lang/souffle Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification. souffle-lang upl-1.0 625    
https://github.com/GrammaTech/ddisasm A fast and accurate disassembler GrammaTech agpl-3.0 469    
https://github.com/skelsec/pypykatz Mimikatz implementation in pure Python skelsec mit 2048    
https://github.com/cypress-io/cypress Fast, easy and reliable testing for anything that runs in a browser. cypress-io mit 41383    
https://github.com/Dewera/Lunar A lightweight native DLL mapping library that supports mapping directly from memory Dewera mit 529    
https://github.com/redsolver/noteless A Markdown-based note-taking app for mobile devices. redsolver mit 447    
https://github.com/redcode-labs/SNOWCRASH A polyglot payload generator redcode-labs mit 221    
https://github.com/kpcyrd/sn0int Semi-automatic OSINT framework and package manager kpcyrd gpl-3.0 1349    
https://github.com/xHak9x/fbi Facebook Information xHak9x gpl-2.0 1058    
https://github.com/saffsd/langid.py Stand-alone language identification system saffsd other 2003    
https://github.com/Gamithra/terms-of-endearment struggled with finding cute words to call boys so I automated this Gamithra   4    
https://github.com/neolea/neolea-training-materials Open source training materials for law-enforcement and organisations interested in DFIR. neolea   47    
https://github.com/bsolomon1124/demoji Accurately find/replace/remove emojis in text strings bsolomon1124 apache-2.0 130    
https://github.com/ail-project/equaeris A modular scanner for finding open data store (MongoDB, Redis or alike) and feed result into AIL ail-project agpl-3.0 6    
https://github.com/glscopeclient/scopehal Test and measurement hardware abstraction library and protocol decodes. This is the library only. Most users should use scopehal-apps. glscopeclient bsd-3-clause 120    
https://github.com/cerebrate-project/cerebrate-training Cerebrate training materials cerebrate-project   7    
https://github.com/excalidraw/excalidraw Virtual whiteboard for sketching hand-drawn like diagrams excalidraw mit 34603    
https://github.com/foambubble/foam A personal knowledge management and sharing system for VSCode foambubble other 13015    
https://github.com/ndionysus/multitask-cyberthreat-detection This repository holds the data, source code and resulting model weights for the paper “Towards end-to-end Cyberthreat Detection from Twitter using Multi-Task Learning” to be presented at IJCNN 2020. ndionysus mit 14    
https://github.com/caresteouvert/caresteouvert Ça reste ouvert - the collaborative map of open places during the lockdown caresteouvert agpl-3.0 56    
https://github.com/scriptingislife/s3eker s3eker is an extensible way to find open S3 buckets. scriptingislife   17    
https://github.com/lucky-luk3/Grafiki Threat Hunting tool about Sysmon and graphs lucky-luk3 lgpl-3.0 245    
https://github.com/target/huntlib A Python library to help with some common threat hunting data analysis operations target mit 123    
https://github.com/huggingface/tokenizers 💥 Fast State-of-the-Art Tokenizers optimized for Research and Production huggingface apache-2.0 5995    
https://github.com/huggingface/datasets 🤗 The largest hub of ready-to-use datasets for ML models with fast, easy-to-use and efficient data manipulation tools huggingface apache-2.0 14676    
https://github.com/bitquark/dnspop Analysis of DNS records to find popular trends bitquark mit 412    
https://github.com/alphaSeclab/persistence Resources About Persistence, Multiple Platforms. Including ~80 Tools and 300+ Posts. alphaSeclab   84    
https://github.com/bigb0sss/LinkedinMama Linkedin Employee Profile Scrapper bigb0sss mit 45    
https://github.com/IFGHou/Unicornscan An asynchronous TCP and UDP port scanner developed by the late Jack C. Louis. IFGHou other 9    
https://github.com/HyperDbg/HyperDbg State-of-the-art native debugging tool HyperDbg gpl-3.0 1877    
https://github.com/yunuscadirci/CallStranger Vulnerability checker for Callstranger (CVE-2020-12695) yunuscadirci mit 386    
https://github.com/ntop/PF_RING High-speed packet processing framework ntop lgpl-2.1 2319    
https://github.com/ZecOps/CVE-2020-0796-RCE-POC CVE-2020-0796 Remote Code Execution POC ZecOps   479    
https://github.com/flameshot-org/flameshot Powerful yet simple to use screenshot software :desktop_computer: :camera_flash: flameshot-org gpl-3.0 19243    
https://github.com/ZecOps/CVE-2020-1206-POC CVE-2020-1206 Uninitialized Kernel Memory Read POC ZecOps other 144    
https://github.com/0xThiebaut/sigmai Import specific data sources into the Sigma generic and open signature format. 0xThiebaut eupl-1.2 69    
https://github.com/github/gitignore A collection of useful .gitignore templates github cc0-1.0 140235    
https://github.com/CERTCC/PoC-Exploits Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems. CERTCC bsd-3-clause 167    
https://github.com/m4ll0k/SecretFinder SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files m4ll0k gpl-3.0 1180    
https://github.com/paperbay/publishing-hack.lu-2020 publishing - hack.lu 2020 book paperbay   3    
https://github.com/quarkslab/binbloom Raw binary firmware analysis software quarkslab apache-2.0 360    
https://github.com/enisaeu/IRtools The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams enisaeu   47    
https://github.com/fmarotta/kaobook A LaTeX class for books, reports or theses based on https://github.com/kenohori/thesis and https://github.com/Tufte-LaTeX/tufte-latex. fmarotta lppl-1.3c 594    
https://github.com/InQuest/ThreatIngestor Extract and aggregate threat intelligence. InQuest gpl-2.0 604    
https://github.com/nazywam/AutoIt-Ripper Extract AutoIt scripts embedded in PE binaries nazywam mit 116    
https://github.com/3c7/common-osint-model Converting data from services like Censys and Shodan to a common data model 3c7 mit 34    
https://github.com/secdev/scapy Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3. secdev gpl-2.0 8124    
https://github.com/C00kie-/squirrel.lu   C00kie- cc-by-sa-4.0 5    
https://github.com/free5gc/free5gc Open source 5G core network base on 3GPP R15 free5gc apache-2.0 1468    
https://github.com/chompie1337/SMBGhost_RCE_PoC   chompie1337   1189    
https://github.com/googleprojectzero/TinyInst A lightweight dynamic instrumentation library googleprojectzero apache-2.0 837    
https://github.com/KingNull-dumps/Hosting Daniel’s Hosting - 8350 DBs KingNull-dumps   4    
https://github.com/cerebrate-project/cerebrate Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other security tools. cerebrate-project agpl-3.0 64    
https://github.com/certat/rtir-scripts Various small scripts that make life easier with RT(IR) certat agpl-3.0 3    
https://github.com/Binject/backdoorfactory A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire. Binject gpl-3.0 339    
https://github.com/zadam/trilium Build your personal knowledge base with Trilium Notes zadam agpl-3.0 18514    
https://github.com/nshalabi/Coding-Ghidra Java Library wrapper for Ghidra Headless Analysis + Java Samples nshalabi   13    
https://github.com/JoelGMSec/AutoRDPwn The Shadow Attack Framework JoelGMSec gpl-3.0 911    
https://github.com/xnih/satori Python rewrite of passive OS fingerprinting tool xnih gpl-2.0 74    
https://github.com/BardinPetr/FINCERT-Sirius Automated IOC-scanner for FinCERT BardinPetr gpl-3.0 6    
https://github.com/Textualize/rich Rich is a Python library for rich text and beautiful formatting in the terminal. Textualize mit 40549    
https://github.com/utkusen/shotlooter a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc utkusen bsd-3-clause 553    
https://github.com/0xballistics/inject2pe inject or convert shellcode to PE 0xballistics gpl-3.0 22    
https://github.com/nsacyber/WALKOFF A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing them down. #nsacyber nsacyber other 1106    
https://github.com/WithSecureLabs/captcha22 CAPTCHA22 is a toolset for building, and training, CAPTCHA cracking models using neural networks. WithSecureLabs mit 238    
https://github.com/paulpierre/informer A Telegram Mass Surveillance Bot in Python paulpierre mit 1088    
https://github.com/citcheese/telegramMonitor Dump messages and media info from list of Telegram channels to CSV and monitor for changes citcheese   17    
https://github.com/j-core/gnss-baseband Baseband Receiver IP for GPS like DSSS signals j-core other 21    
https://github.com/F5OEO/dvbsdr DVB transmit and receive F5OEO gpl-3.0 31    
https://github.com/sheharbano/scan_liveness Code for the paper “Scanning the Internet for Liveness” sheharbano   10    
https://github.com/WithSecureLabs/C3 Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits. WithSecureLabs other 1222    
https://github.com/citcheese/SqlParserPlus convert SQL dumps and other leaked db dump formats to CSV citcheese   28    
https://github.com/java-deobfuscator/deobfuscator The real deal java-deobfuscator apache-2.0 1245    
https://github.com/antijingoist/opendyslexic OpenDyslexic, a typeface that uses typeface shapes & features to help offset some visual symptoms of Dyslexia. Now in SIL-OFL. antijingoist other 347    
https://github.com/spacerace/romfont VGA and BIOS rom font extraction spacerace   495    
https://github.com/Alir3z4/html2text Convert HTML to Markdown-formatted text. Alir3z4 gpl-3.0 1318    
https://github.com/google/AFL american fuzzy lop - a security-oriented fuzzer google apache-2.0 2931    
https://github.com/outflanknl/EvilClippy A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows. outflanknl gpl-3.0 1777    
https://github.com/MISP/misp-opendata Tool to submit / delete data from MISP to opendata portal MISP agpl-3.0 5    
https://github.com/nemec/elasticslurp identify and investigate open ElasticSearch servers nemec mit 6    
https://github.com/git-artes/gr-tempest An implementation of TEMPEST en GNU Radio git-artes other 414    
https://github.com/Shuffle/Shuffle Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing. Shuffle agpl-3.0 812    
https://github.com/S1sirocks/TwitterMon TwitterMon is a module developed for AIL framework which allows to monitor the content published in Twitter either within a certain period of time or in real time, in addition to performing a sentiment analysis and a statistical analysis of the publications collected. S1sirocks agpl-3.0 8    
https://github.com/byt3bl33d3r/WitnessMe Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier. byt3bl33d3r gpl-3.0 641    
https://github.com/cyrozap/mediatek-lte-baseband-re Notes and utilities for reverse engineering the MediaTek LTE baseband and its Coresonic DSP. cyrozap gpl-3.0 142    
https://github.com/DissectMalware/xlrd2 xlrd2 is a variant of xlrd that is actively maintained DissectMalware apache-2.0 21    
https://github.com/intel/cve-bin-tool The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with a list of components and versions. intel gpl-3.0 588    
https://github.com/JarryShaw/PyPCAPKit Python multi-engine PCAP analysis kit. JarryShaw bsd-3-clause 155    
https://github.com/SecureAuthCorp/impacket Impacket is a collection of Python classes for working with network protocols. SecureAuthCorp other 10061    
https://github.com/stricaud/research Placeholder for my research content stricaud   1    
https://github.com/JPCERTCC/SysmonSearch Investigate suspicious activity by visualizing Sysmon’s event log JPCERTCC other 371    
https://github.com/python-telegram-bot/python-telegram-bot We have made you a wrapper you can’t refuse python-telegram-bot gpl-3.0 20051    
https://github.com/oseiskar/corona-sniffer Contact Tracing BLE sniffer PoC oseiskar agpl-3.0 75    
https://github.com/nasa-jpl/COVID-19-respirators JPL designed 3D and tested printed respirators to help with the COVID-19 pandemic response. nasa-jpl apache-2.0 118    
https://github.com/ail-project/ail-training AIL project training materials ail-project   12    
https://github.com/jgm/pandoc Universal markup converter jgm other 26845    
https://github.com/cgarciae/pypeln Concurrent data pipelines in Python  »> cgarciae mit 1382    
https://github.com/GliaX/Stethoscope A research-validated stethoscope whose plans are available Freely and openly. The cost of the entire stethoscope is between $2.5 to $5 to produce GliaX other 688    
https://github.com/StrangerealIntel/CyberThreatIntel Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups StrangerealIntel   588    
https://github.com/osrg/rustybgp BGP implemented in the Rust Programming Language osrg apache-2.0 340    
https://github.com/mimno/Mallet MALLET is a Java-based package for statistical natural language processing, document classification, clustering, topic modeling, information extraction, and other machine learning applications to text. mimno other 889    
https://github.com/evllabs/JGAAP The Java Graphical Authorship Attribution Program evllabs   233    
https://github.com/Postuf/telegram-osint-lib Telegram scenario-based API aimed at OSINT Postuf mit 129    
https://github.com/apache/incubator-kvrocks Kvrocks is a distributed key value NoSQL database that uses RocksDB as storage engine and is compatible with Redis protocol. apache apache-2.0 1805    
https://github.com/pts/tinygpgs symmetric key encryption compatible with GPG in Python pts mit 2    
https://github.com/nsacyber/Mitigating-Web-Shells Guidance for mitigation web shells. #nsacyber nsacyber other 871    
https://github.com/Alexiskln/Taxonomy_Of_Infantry_Small_Arms This is a taxonomy of infantry small arms based on https://www.militaryfactory.com/smallarms/guns-by-type.asp Alexiskln   2    
https://github.com/M0un/SE_API_module MISP module which displays informations about an URL based on a google search engine API. In order to use this hover type module you need to download the following API : https://github.com/abenassi/Google-Search-API. No API key is needed. M0un   1    
https://github.com/N1col4s5742/StolenCarsUS Projet Threat Intelligence - PyMisp - Stolen Cars US N1col4s5742   1    
https://github.com/Nedfire2347/Taxonomy-cia-Intelligence-Analysis-Variables Foundations for Meta-Analysis by Rob Johnston for MISP-Instance Nedfire2347   1    
https://github.com/ail-project/ail-framework AIL framework - Analysis Information Leak framework ail-project agpl-3.0 333    
https://github.com/goose3/goose3 A Python 3 compatible version of goose http://goose3.readthedocs.io/en/latest/index.html goose3 apache-2.0 590    
https://github.com/deep-insights-ai/covid-19-classifier A fastai2 based Covid-19 classifier deep-insights-ai gpl-3.0 16    
https://github.com/citcheese/ODBParser OSINT tool to search, parse and dump only the open Elasticsearch and MongoDB directories that have the data you care about exposing citcheese mit 41    
https://github.com/martinvigo/email2phonenumber A OSINT tool to obtain a target’s phone number just by having his email address martinvigo mit 1090    
https://github.com/Rob–W/cookie-manager Cookie Manager for Firefox (Desktop/Android), Chrome.