Full stack, modern web application template. Using FastAPI, React, SQLModel, PostgreSQL, Docker, GitHub Actions, automatic HTTPS and more.

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

Build your own reconnaissance system with Osmedeus Next Generation

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

Ad hoc collection of Red Teaming & Active Directory tooling.

Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

This is a step-by-step guide to implementing a DevSecOps program for any size organization

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Saleor Core: the high performance, composable, headless commerce API.

A static code analysis for WordPress (and PHP)

Cortex: a Powerful Observable Analysis and Active Response Engine

Digging Deeper....

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)

An Active Defense and EDR software to empower Blue Teams

A lightweight solution to generating HTML-formatted strings, in Python.

The Open edX LMS & Studio, powering education sites around the world!

Livepeer media server

🎞 Shaka PHP is a library that uses Shaka Packager for DASH and HLS packaging and encryption, supporting Common Encryption for Widevine and other DRM Systems.

Awesome Python Resources

403/401 Bypass Methods + Bash Automation + Your Support ;)

Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods

Local file inclusion exploitation tool

📼 Package media content for online streaming(DASH and HLS) using FFmpeg

A Moodle tool to find bottlenecks in your code safely in production