Skip to content
Change the repository type filter

All

    Repositories list

    • Cloud Security Posture Management (CSPM)
      JavaScript
      727000Updated Oct 16, 2023Oct 16, 2023
    • All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
      Go
      25000Updated Oct 9, 2023Oct 9, 2023
    • Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
      Go
      1.3k000Updated Aug 9, 2021Aug 9, 2021
    • Hunt for security weaknesses in Kubernetes clusters
      Python
      603000Updated Jul 30, 2021Jul 30, 2021
    • wstg

      Public
      The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
      Shell
      1.5k000Updated Sep 7, 2020Sep 7, 2020
    • Metasploit Framework
      Ruby
      15k000Updated Sep 3, 2020Sep 3, 2020
    • PwnAuth

      Public
      Python
      97000Updated Jun 5, 2020Jun 5, 2020
    • Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services
      Ruby
      88000Updated May 18, 2020May 18, 2020
    • The ultimate WinRM shell for hacking/pentesting
      Ruby
      655000Updated Mar 27, 2020Mar 27, 2020
    • syncthing

      Public
      Open Source Continuous File Synchronization
      Go
      4.8k000Updated Nov 21, 2019Nov 21, 2019
    • Multi-Cloud Security Auditing Tool
      Python
      1.2k000Updated Nov 13, 2019Nov 13, 2019
    • List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
      Shell
      1.6k000Updated Nov 8, 2019Nov 8, 2019
    • discover

      Public
      Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
      Shell
      866000Updated Nov 4, 2019Nov 4, 2019
    • WebMap

      Public
      WebMap-Nmap Web Dashboard and Reporting
      Python
      283000Updated Oct 31, 2019Oct 31, 2019
    • A list of useful payloads and bypass for Web Application Security and Pentest/CTF
      Python
      16k000Updated Oct 26, 2019Oct 26, 2019
    • Small tool to capture packets from wlan devices.
      C
      412000Updated Oct 1, 2019Oct 1, 2019
    • hcxtools

      Public
      Portable solution for capturing wlan traffic and conversion to hashcat formats (recommended by hashcat) and to John the Ripper formats. hcx: h = hash, c = capture, convert and calculate candidates, x = different hashtypes
      C
      420000Updated Oct 1, 2019Oct 1, 2019
    • recon-ng

      Public
      Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
      Python
      790000Updated Sep 13, 2019Sep 13, 2019
    • Small and highly portable detection tests based on MITRE's ATT&CK.
      PowerShell
      3k000Updated Aug 30, 2019Aug 30, 2019
    • osquery

      Public
      SQL powered operating system instrumentation, monitoring, and analytics.
      C++
      2.5k000Updated Aug 29, 2019Aug 29, 2019
    • sliver

      Public
      Implant framework
      Go
      1.4k000Updated Aug 28, 2019Aug 28, 2019
    • Unified repository for different Metasploit Framework payloads
      C
      710000Updated Aug 28, 2019Aug 28, 2019
    • cuckoo

      Public
      Cuckoo Sandbox is an automated dynamic malware analysis system
      JavaScript
      1.7k000Updated Aug 27, 2019Aug 27, 2019
    • Six Degrees of Domain Admin
      PowerShell
      1.8k000Updated Aug 26, 2019Aug 26, 2019
    • SecLists

      Public
      SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
      PHP
      25k000Updated Aug 25, 2019Aug 25, 2019
    • pacu

      Public
      The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
      Python
      762000Updated Aug 22, 2019Aug 22, 2019
    • Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
      C#
      308000Updated Aug 21, 2019Aug 21, 2019
    • beef

      Public
      The Browser Exploitation Framework Project
      JavaScript
      2.3k000Updated Aug 21, 2019Aug 21, 2019
    • ptf

      Public
      The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
      Python
      1.3k000Updated Aug 19, 2019Aug 19, 2019
    • Scripts to make password spraying attacks against Lync/S4B & OWA a lot quicker, less painful and more efficient
      Python
      272000Updated Aug 18, 2019Aug 18, 2019