Security Research
Showing 36 of 140 projects
A comprehensive collection of security testing wordlists and payloads for penetration testers and security researchers.
An open-source penetration testing framework for developing and executing exploit code against remote targets.
A curated list of amazingly awesome open source intelligence (OSINT) tools and resources for cyber threat intelligence and investigations.
A libre, Unix-like reverse engineering framework and command-line toolset for analyzing, debugging, and modifying binaries.
A dynamic instrumentation toolkit for injecting JavaScript into native apps on Windows, macOS, GNU/Linux, iOS, Android, and QNX.
A lightweight Java/Android reverse engineering suite with decompilers, disassemblers, and advanced analysis tools.
A Python CTF framework and exploit development library designed for rapid prototyping and security research.
A curated collection of web security resources, tools, and research materials for learning penetration techniques.
A live malware repository providing encrypted samples and source code for educational malware analysis and research.
A curated list of free and open-source honeypot resources, tools, and related components for cybersecurity research.
A curated list of awesome honeypot resources, tools, and related components for cybersecurity research and defense.
A curated list of awesome open-source threat intelligence resources, including feeds, tools, platforms, and standards.
Standard libraries and queries for CodeQL, powering GitHub Advanced Security and static application security testing.
A comprehensive, curated collection of tools, research, and resources for Android application security analysis and penetration testing.
A collection of setup scripts to install and manage security research tools for CTFs and binary analysis.
A platform-agnostic binary analysis framework for disassembly, symbolic execution, and program analysis.
A retargetable machine-code decompiler based on LLVM, supporting multiple architectures and file formats.
A retargetable machine-code decompiler based on LLVM, supporting multiple architectures and file formats.
A multi-attack RSA tool for CTF challenges that decrypts data from weak public keys and recovers private keys.
A community-curated collection of payloads, tools, and techniques for bug bounty hunters and security researchers.
Exploits locked computers via USB to hijack internet traffic, steal browser cookies, and install persistent web backdoors using a Raspberry Pi Zero.
A curated list of bug bounty programs, write-ups, and resources for security researchers and ethical hackers.
A Claude Code plugin marketplace providing AI-assisted skills for security research, vulnerability detection, and audit workflows.
A cross-platform library to parse, modify, and abstract executable formats like ELF, PE, and Mach-O.
A curated collection of XSS resources including payloads, polyglots, bypass techniques, and tools for security researchers.
A curated list of resources for learning about vehicle security, car hacking, and automotive tinkering.
A curated collection of security conference talks and videos from events like DEF CON, Black Hat, and BSides.
A categorized collection of bug bounty write-ups organized by vulnerability type for security researchers.
A browsable archive of decrypted NSA exploit tools and implants leaked by the Shadow Brokers in 2017.
Advanced open-source x64/x86 user mode anti-anti-debug library that hides debugging from applications.
An open-source intelligence (OSINT) tool for crawling and analyzing websites on the dark web and beyond.
A QEMU-based interactive runtime analyzer for debugging and reverse engineering, serving as an alternative to strace and gdb.
A QEMU-based interactive runtime analyzer for dynamic binary analysis and reverse engineering.
A curated collection of resources for 2G/3G/4G/5G cellular security research, including tools, papers, and hardware guides.
A collection of potentially dangerous file names and paths for security testing and fuzzing.
A kernel remote code execution exploit for PlayStation 4 up to firmware 11.00 via PPPoE.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.