Cybersecurity
Showing 36 of 267 projects
An automated phishing email analysis tool that extracts observables, integrates with TheHive/Cortex/MISP, and calculates verdicts.
A pre-configured Linux virtual machine for adversary emulation and threat hunting with attacker and defender toolkits.
A curated collection of periodic cybersecurity newsletters covering news, research, tools, vulnerabilities, and threat analysis.
An extensible open-source framework for running, monitoring, and managing honeypots to detect and analyze cyber threats.
Automated deployment of red team infrastructure using Docker with a web interface for managing offensive security tools.
A community-sourced, machine-readable knowledge base of digital forensic artifacts for use in forensic tools and investigations.
Binary data analysis and visualization tool that converts raw bytes into interactive visual patterns for rapid insight.
A CLI tool that audits API specifications, validates OpenAPI compliance, and runs security tests to prevent undefined user behavior.
A curated collection of fascinating and bizarre Censys Search queries for discovering exposed devices and services.
A flexible Python framework for fast network flow data analysis, offering encrypted application identification, statistical feature extraction, and extensibility via plugins.
A curated list of resources, tools, and frameworks for detection engineering in cybersecurity.
An open dataset and toolkit for training static PE malware machine learning models, featuring millions of labeled Windows executable samples.
An open dataset and toolkit for training static PE malware machine learning models, featuring extracted features from millions of Windows executable files.
A collection of operational incident response cheat sheets covering multiple security incident scenarios for CERT teams.
A security feed collection and processing solution for IT security teams using message queuing protocols.
A curated, vendor-neutral collection of free annual cybersecurity analysis and survey reports from trusted sources.
A curated, vendor-neutral collection of free annual cybersecurity analysis and survey reports from trusted sources.
A collection of sorted wordlists, hashcat masks, and advanced rules for password cracking based on analysis of billions of real passwords.
A framework of Python scripts for blue teams to test detection capabilities against malicious tradecraft modeled after MITRE ATT&CK.
A desktop application for incident responders to track findings, tasks, and visualize timelines during cybersecurity investigations.
A massive 82 billion entry wordlist compiled from multiple password dictionaries for security testing.
A curated list of tools and resources for anti-forensic activities, including data hiding, encryption, steganography, and evidence removal.
A curated awesome list of resources for Security Orchestration, Automation and Response (SOAR) technologies.
A CLI tool and library to identify hash types, supporting 675+ hash formats with hashcat and John the Ripper references.
A Python package with 30 low-high level honeypots for monitoring network traffic, bots, and credential attacks.
An intelligent wordlist generator for password profiling using permutations and statistics based on target information.
A professional-grade web security scanner for penetration testing with intelligent, context-aware scanning and proof-based vulnerability detection.
An extendable Python tool to extract and aggregate Indicators of Compromise (IOCs) from various threat intelligence feeds.
A digital forensics investigation platform for parsing, searching, visualizing evidence, and enabling team collaboration.
A low-interaction honeypot that emulates vulnerable services to capture malware and analyze attacks.
A collection of IPython notebooks demonstrating data analysis and machine learning techniques on security datasets.
A concise, directive, specific, flexible, and free template for creating an incident response plan organizations will actually use.
A collection of nearly 40,000 JavaScript malware samples for security research and analysis.
A machine learning tool that ranks strings by relevance for malware analysis, helping analysts prioritize suspicious strings.
A static analysis security scanner for Ruby web applications, supporting Rails, Sinatra, and Padrino frameworks.
A centralized repository summarizing practical and proposed defenses against prompt injection attacks on large language models.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.