Security Tools
Showing 36 of 294 projects
A portable utility that identifies linkers, compilers, and packers used to create executable files across Windows, Linux, and macOS.
Automatically generates and updates Docker images for tools lacking official images using GitHub Actions.
A static application security testing (SAST) CLI tool that scans source code for OWASP Top 10 vulnerabilities across multiple programming languages.
A TCP connection hijacking tool written in Rust, enabling packet injection into established connections.
A tool that creates a JavaScript shell payload for exploiting XSS vulnerabilities to execute code in a victim's browser.
A Java library for static malware analysis of Portable Executable files with robust handling of malformations.
A static code analyzer that detects and reports potential malicious behaviors in Android applications.
Collects Windows forensic artifacts to detect early system compromises through analysis of live data.
Automated tool for creating and preparing virtual machines for Cuckoo Sandbox malware analysis.
An open-source platform for collecting, processing, and analyzing forensic artifacts from macOS, Windows, and Linux systems.
A standalone password candidate generator implementing the PRINCE algorithm for advanced password cracking attacks.
A Windows Batch and Unix Bash script suite for comprehensive host forensic data collection during incident response.
A customizable live OS constructor tool written in Bash for remote forensics, malware hunting, and incident response.
A collection of hashcat and John the Ripper rules for password cracking, optimized for common password generation patterns.
An Arduino library for creating and sending .pcap files from ESP8266/ESP32 to Wireshark for WiFi packet capture and analysis.
A family of extremely stealthy, code-golfed PHP webshells designed for undetectable remote command execution.
A Visual Studio extension for real-time .NET secure code analysis that displays vulnerabilities as compiler warnings.
A command-line tool for managing webshells on compromised web servers via terminal.
A dynamic API calls tracer for Windows and Linux applications, built on DynamoRIO for transparent malware analysis.
A curated list of resources for detecting threats and defending Kubernetes systems.
Large hashcat rulesets generated from real-world compromised passwords to improve password cracking effectiveness.
A command-line Python tool for malware analysis with hex viewing, disassembly, file format support, and plugin architecture.
Go bindings for the YARA pattern matching library, providing a Go-native interface to YARA's C API.
A collaborative malware analysis framework for storing samples, automating analysis, and sharing insights via IDA Pro integration.
A web GUI for Hashcat that provides session management, notifications, and a multi-user interface for password cracking.
A binary diffing and patch analysis tool for reverse engineering and vulnerability research.
A packer for Windows x86 executable files that transforms and encrypts PE files to obstruct reverse engineering.
A GitHub scanning tool that identifies hardcoded credentials and filters false positives using machine learning models.
A static application security testing (SAST) tool for PHP that detects vulnerabilities like XSS through taint analysis.
Visualizes network topologies and communication flows from pcap files across device, IP, and TCP/UDP layers.
A high-performance passive DNS monitoring framework that captures, indexes, and analyzes DNS traffic for security and network insights.
A curated list of tools, add-ons, articles, and exploits built with the Scapy packet manipulation library.
A curated list of tools, add-ons, articles, and exploits that use the Scapy packet manipulation library.
Automatically sync OpenPGP public keys across an organization to simplify GPG key management.
A multi-platform distributed brute-force password cracking system for parallelizing dictionary and word generator attacks.
A web interface for Hashcat that enables distributed password cracking sessions across multiple servers with real-time results.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.