Cybersecurity

#python-tool#crits-integration#data-enrichment

CombinePython

A tool to gather and enrich threat intelligence indicators from publicly available sources into a structured CSV format.

Stars657

Forks172

#mime-validation#upload-file#npm

PompelmiJavaScript

Route-level file upload security for Node.js, scanning files for malware, spoofing, and risky archives before storage.

Stars646

Forks28

Last commit16 days ago

A2SVPython

A Python tool for automated scanning and detection of SSL/TLS vulnerabilities like Heartbleed, POODLE, and FREAK.

#python-tool#vulnerability#poodle-scan

Stars634

Forks168

Last commit5 years ago

graphql-armorTypeScript

A customizable security middleware for Apollo GraphQL, Yoga, and Envelop GraphQL servers.

#hacktoberfest#dos-protection#graphql

Stars584

Forks49

Last commit2 days ago

iocextractPython

A Python library and CLI for extracting and refanging defanged Indicators of Compromise (IOCs) from text.

#defang#defanging#threat-sharing

Stars580

Forks92

Real Intelligence Threat Analysis (RITA)Go

An open-source framework for detecting command and control communication through network traffic analysis using Zeek logs.

#security-analytics#beacons#dns-tunneling

Stars573

Forks63

Last commit5 days ago

MalSploitBasePython

A collection of public exploits targeting malware infrastructure for security research and analysis.

#exploit-development#infrastructure-exploitation#malware-analysis

Stars563

Forks204

Last commit9 months ago

docker-explorerPython

A forensic tool for exploring offline Docker filesystems to analyze compromised containers.

#digital-forensics#python-tool#container-security

Stars554

Forks45

Phantom Community PlaybooksPython

Default playbooks and custom functions for Splunk SOAR (formerly Phantom) security orchestration and automation platform.

#splunk-soar#phantom-platform#security-automation

Stars540

Forks221

Last commit2 months ago

pwntools writeupsPython

A collection of CTF challenge write-ups that demonstrate solutions using the pwntools exploit development library.

#exploit-development#python#pwntools

Stars524

Forks114

Last commit9 years ago

Prompt Injection

A curated list of resources for understanding, detecting, and mitigating prompt injection attacks against machine learning models.

#ai-safety#red-teaming#awesome-list

Stars521

Forks83

Last commit6 days ago

maskprocessorC

A high-performance word generator for password cracking with per-position configurable character sets.

#wordlist-generator#penetration-testing#password-recovery

Stars500

Forks118

Last commit4 years ago

MalConfScanPython

A Volatility plugin that extracts configuration data and decoded strings from known malware families in memory images.

#digital-forensics#memory#security

Stars496

Forks69

#batch-script#digital-forensics#sysinternals

ir-rescueBatchfile

A Windows Batch and Unix Bash script suite for comprehensive host forensic data collection during incident response.

Stars489

Forks92

Last commit5 years ago

Python-HoneypotPython

An open-source Python framework for creating honeypots and honeynets to detect and analyze cyber attacks.

#honeypot#owasp#informationsecurity

Stars480

Forks149

#hacktoberfest#sensor#honeypot

SnarePython

A web application honeypot sensor that clones websites to attract and analyze malicious attacks.

Stars479

Forks136

#honeypot#plugin-system#python2

HoneyPyPython

A low to medium interaction honeypot written in Python, designed for easy deployment and extensibility.

Stars475

Forks91

#malware-detection#apache-2.0#indicators-of-compromise

FireEye OpenIOCs

A collection of publicly shared Indicators of Compromise (IOCs) from FireEye for threat intelligence and security research.

Stars470

Forks117

#suricata#opensearch-dashboards#infosec

MalcolmPython

A powerful, easily deployable network traffic analysis tool suite for PCAP files, Zeek logs, and Suricata alerts.

Stars469

Forks72

Last commit7 days ago

Damn Vulnerable LLM AgentPython

An educational chatbot designed to demonstrate and experiment with prompt injection attacks against LLM ReAct agents.

#react-agent#vulnerability-testing#chatbot

A collection of hashcat and John the Ripper rules for password cracking, optimized for common password generation patterns.

#john#john-rules#penetration-testing

Stars463

Forks47

Panther Labs Detection RulesPython

A collection of built-in detection rules and policies for Panther, a modern SIEM, enabling security monitoring as code.

#yaml#siem#detection-as-code

Stars452

Forks203

Last commit5 days ago

MellivoraPHP

A lightweight, fast, and scalable CTF (Capture The Flag) competition engine written in PHP.

#security-training#competition-engine#aws-s3

Stars451

Forks168

#security-analytics#security-documentation#ioc-tracking

threat_noteHTML

A lightweight investigation notebook for security analysts to document and track threat intelligence.

Stars435

Forks93

GuardSIght Playbook Battle Cards

A collection of prescriptive recipes for preparing and applying countermeasures against cyber threats and attacks.

#cyber-threats#playbook-battle-cards#secops

Stars434

Forks86

#security-investigation#browser-extension#ioc-analysis

SOC Multi-toolJavaScript

A browser extension that streamlines security investigations by providing quick lookups for IPs, domains, hashes, and other indicators.

Stars420

Forks54

Last commit

Cuckoo-modifiedPython

A modified fork of Cuckoo Sandbox with enhanced malware analysis capabilities, improved stability, and additional features.

#sandbox#behavioral-analysis#security-automation

A Python sandbox that automatically collects, analyzes, and reports runtime indicators of Linux malware through static, dynamic, and memory analysis.

#sandbox#python#malware-analysis

Stars403

Forks118

Last commit10 years ago

NetzGo

Discover internet-wide misconfigurations in services like Elasticsearch, databases, and web servers using high-speed scanning tools.

#internet-wide-scan#osint#zgrab2

Stars398

Forks43

Last commit5 years ago

CrackLordGo

A scalable, pluggable, and distributed queue and resource system for password cracking and other compute-intensive tasks.

#plugin-system#resource-management#password-cracking

Stars392

Forks68

Last commit3 years ago

Center for Threat Informed Defense Security Stack MappingsPython

A collection of native security controls for major cloud platforms mapped to MITRE ATT&CK techniques to enable threat-informed defense decisions.

A collaborative malware analysis framework for storing samples, automating analysis, and sharing insights via IDA Pro integration.

#flask#ida#python

Stars383

Forks60

#sandbox-analysis#classification#malware-analysis

MalheurC

A tool for automatic analysis of malware behavior using machine learning to identify, cluster, and classify malicious software.

Stars374

Forks102

#virustotal#multi-threading#security-automation

malsubPython

A Python RESTful API framework for querying multiple online malware analysis and threat intelligence services.

Stars367

Forks78