Security Tools
Showing 36 of 294 projects
A curated collection of CVEs, research, tools, and resources for WebSocket security testing and vulnerability research.
A customizable single-binary agent for collecting forensic artifacts from Windows, macOS, and Linux systems.
Visualizes AWS IAM and Organizations as a graph using Neo4j to identify security anomalies and privilege escalation paths.
A PowerShell module for live incident response that enumerates Windows autorun artifacts to detect persistence mechanisms used by malware and legitimate programs.
A modular, recursive file scanning framework that extends Yara signatures to extract and analyze file objects for malware analysis and intelligence.
A curated list of tools and resources for understanding, detecting, and removing malware persistence techniques across operating systems.
Idiomatic Rust bindings for the IDA SDK, enabling development of standalone binary analysis tools.
A C++ Windows malware analysis tool that uses memory and code hooks to detect and extract hidden code from packers.
A pub-sub broker for threat intelligence data that connects open-source security tools like OpenCTI, MISP, Zeek, and VAST.
A Ruby script that fingerprints remote applications and third-party scripts to identify their versions for security assessment.
A curated list of resources, tools, and guidelines for understanding and implementing the General Data Protection Regulation (GDPR).
A Windows malware unpacker using Intel PIN for dynamic binary instrumentation and Scylla for import reconstruction.
A static and symbolic analysis tool for finding memory safety bugs in browser code and other software.
A curated list of awesome tools, libraries, dashboards, and resources for the Suricata intrusion detection/prevention system.
A Rust CLI tool that finds and clears sensitive data from shell history to enhance command-line security.
An open-source SIEM system built with Python Django for log management, risk assessment, and asset tracking.
A research project providing tools and detection rules for analyzing and simulating Quantum Insert network attacks.
An open-source memory forensics tool built on Volatility for differential analysis and data reduction in malware investigations.
A peer-to-peer SIP honeypot and fraud detection tool that collects and shares malicious IP addresses and phone numbers.
Roslyn analyzers for detecting security vulnerabilities in .NET applications during development.
A Go library for parsing and manipulating Snort and Suricata IDS/IPS rules with Suricata compatibility focus.
A Python script that uses Volatility to analyze malware memory footprints by comparing Windows memory images before and after infection.
A multi-threading tool to sniff TCP flow statistics and extract HTTP headers from live traffic or PCAP files.
A Python toolset for malware analysis using function-level fuzzy hashing to catalog and compare malicious binaries.
A Python tool for offline detection of Windows persistence mechanisms in forensic collections like KAPE dumps or mounted disk images.
A word generator using per-position Markov chains for password cracking and dictionary generation.
A Rust library for multi-protocol passive network fingerprinting, combining p0f-style TCP/HTTP analysis with JA4-style TLS client analysis.
A Python tool that queries Google's SSL transparency report to discover subdomains and identify expired certificates.
A Vim plugin that highlights visually similar Unicode characters to prevent trolls from corrupting your code.
A Python-based multithreaded threat intelligence gathering tool that collects, stores, and serves indicators of compromise from various sources.
A Python-based GUI tool for analyzing Android applications locally, including decompilation, logcat monitoring, and security testing.
A Windows utility for visualizing process memory maps, analyzing hooks, and disassembling code with advanced debugging features.
A web interface for sharing a hashcat password cracking box among multiple users with user-friendly attack automation.
A tool for securely backing up and versioning production secrets and shared passwords using GPG encryption.
An ESLint plugin that detects potential secrets and credentials in code and JSON files using entropy analysis and pattern matching.
A framework for analyzing and defending against supply chain attacks targeting Software Development Lifecycle infrastructure.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.