Infosec

47 projects

Showing 36 of 47 projects

An open-source unified XDR and SIEM platform for threat prevention, detection, and response across endpoints and cloud workloads.

#container-security#siem#malware-detection

A comprehensive collection of hacking tools, resources, and references for learning and practicing ethical hacking and penetration testing.

#frameworks#vulnerability-assessment#pentest

Stars15.4k

Forks1.7k

Last commit2 years ago

RoutersploitPython

An open-source exploitation framework dedicated to embedded devices for penetration testing and vulnerability assessment.

#vulnerability-assessment#routersploit#router-exploitation-framework

A PowerShell framework for offensive security, penetration testing, and red teaming with scripts for all phases.

#lateral-movement#redteam#antivirus-bypass

Stars9.9k

Forks2.5k

Last commit2 years ago

Awesome Shodan Search Queries

A curated collection of interesting, funny, and concerning search queries for Shodan.io to find exposed devices and services.

#iot#vulnerability-discovery#search-queries

Stars7.5k

Forks1.0k

Last commit2 years ago

Awesome bug bounty resources by EdOverflow

A community-curated collection of payloads, tools, and techniques for bug bounty hunters and security researchers.

#web-security#vulnerability-testing#infosec

Stars6.5k

Forks1.6k

Last commit2 years ago

Awesome Security Hardening

A curated collection of security hardening guides, best practices, checklists, benchmarks, and tools for various systems and services.

#infrastructure-security#windows-hardening#infosec

Stars6.4k

Forks657

Last commit1 month ago

Infosec_ReferenceCSS

A comprehensive, free information security reference covering techniques, tools, tactics, and resources for learning and professional development.

#security-training#reference-guide#osint

Stars6.0k

Forks1.2k

Last commit7 months ago

Infosec

A curated list of awesome information security courses, training resources, and hands-on labs for cybersecurity professionals and students.

#security-training#pentest#web-security

Stars5.7k

Forks747

Last commit6 months ago

Cybersecurity Blue Team

A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

#open-source#honeypots#security-automation

Stars5.3k

Forks806

Last commit1 year ago

CameradarGo

A penetration testing tool that discovers and accesses RTSP video surveillance cameras through network scanning and dictionary attacks.

#video-surveillance#network-scanner#dictionary-attack

Stars5.1k

Forks620

Last commit5 days ago

LinkFinderPython

A Python script that discovers endpoints and their parameters in JavaScript files for penetration testing and bug hunting.

#endpoints#web-security#javascript-analysis

Stars4.4k

Forks655

Last commit2 years ago

Awesome Security Talks & Videos

A curated collection of security conference talks and videos from events like DEF CON, Black Hat, and BSides.

#security-talks#owasp#video-library

Stars4.2k

Forks492

Last commit3 months ago

Dumb Password RulesNunjucks

A crowdsourced collection of websites with frustrating and counterproductive password requirements.

#hacktoberfest#passwords#password-policies

Stars3.0k

Forks307

Last commit12 days ago

Roave Security Advisories

A Composer package that blocks installation of PHP dependencies with known security vulnerabilities.

#supply-chain-security#composer#devops

Stars2.9k

Forks109

Last commit3 days ago

brutesprayGo

A fast, multi-protocol credential brute-forcer that parses Nmap, Nessus, and Nexpose output to test credentials across 30+ services.

#nmap#infosec#penetration-testing

Stars2.4k

Forks427

Last commit18 hours ago

MalcolmPython

A powerful, easily deployable network traffic analysis tool suite for PCAP files, Zeek logs, and Suricata alerts.

#suricata#pcap#opensearch-dashboards

Stars2.4k

Forks421

Last commit6 days ago

cicd-goatPython

A deliberately vulnerable CI/CD environment with 11 challenges to learn and practice CI/CD security.

#security-training#jenkins#devops

Stars2.3k

Forks410

Last commit1 year ago

YETIPython

A forensics intelligence platform that bridges CTI and DFIR by storing threat intelligence and enabling bulk observable searches and threat-focused analysis.

#digital-forensics#enrichment#dfir-automation

Stars2.0k

Forks317

Last commit24 days ago

malice.ioGo

An open-source malware analysis framework that functions as a self-hosted alternative to VirusTotal.

#virustotal#infosec#malice

Stars1.9k

Forks284

Last commit3 years ago

APT Notes

A repository of publicly-available reports and blogs on APT (Advanced Persistent Threat) campaigns, activity, and software, organized by year.

#security-reports#data-repository#apt-research

Stars1.8k

Forks293

Last commit1 year ago

Android Reports and Resources

A curated collection of disclosed Android security reports from HackerOne and educational resources for vulnerability research.

#exploit-development#mobile-pentesting#android-resource

Stars1.7k

Forks331

Last commit9 months ago

Name That HashPython

A modern hash identification tool that names MD5, SHA256, and 300+ other hash types with popularity ratings and summaries.

#cyber#hacktoberfest#json-api

Stars1.7k

Forks110

Last commit5 months ago

Executable Packing

A curated list of awesome resources for executable packing, unpacking, and detection, covering packers, tools, and literature.

#malware-packers#portable-executable#unpacking-tools

Stars1.6k

Forks139

Last commit8 days ago

Awesome Security Newsletters

A curated collection of periodic cybersecurity newsletters covering news, research, tools, vulnerabilities, and threat analysis.

#digital-forensics#vulnerability-management#newsletter

Stars1.3k

Forks88

Last commit2 months ago

PlumHoundPython

A BloodHoundAD report engine that transforms Neo4J graph queries into actionable security reports for blue and purple teams.

#bloodhoundad#security-reporting#directory

Stars1.3k

Forks129

Last commit6 months ago

MalcomPython

A malware communication analyzer that visualizes network traffic and cross-references it with known malware sources.

#p2p-networks#dns-analysis#network-traffic

Stars1.2k

Forks217

Last commit8 years ago

MettaPython

An information security preparedness tool for adversarial simulation using Redis/Celery, Python, and Vagrant.

#yaml#redis#network

Stars1.1k

Forks155

Last commit7 years ago

DumpsterFirePython

A modular, menu-driven tool for building time-delayed, distributed security event chains for Red, Blue, and Purple Team exercises.

#security-training#pentest#pentest-tool

Stars1.0k

Forks152

Last commit6 years ago

Password Cracking

A curated collection of tools, research, and resources for password cracking and security auditing.

#wordlist-generator#research-papers#wordlist

Stars974

Forks84

Last commit2 months ago

Counteractive PlaybooksMakefile

A concise, directive, specific, flexible, and free template for creating an incident response plan organizations will actually use.

#security-planning#playbooks#disaster-recovery

A free and open-source Ruby toolkit for security research and development, featuring CLI commands and libraries for encoding, networking, exploits, and more.

#exploit-development#orm#database

Stars747

Forks59

Last commit4 months ago