Awesome Stars

A curated list of my GitHub stars! Generated by starred

ActionScript
ApacheConf
Arduino
Assembly
Batchfile
Bro
C
C#
C++
CSS
Clojure
CoffeeScript
Eagle
Elixir
Erlang
[GCC Machine Description](#gcc machine description)
Go
Groff
Groovy
HCL
HTML
Hack
Haskell
Java
JavaScript
[Jupyter Notebook](#jupyter notebook)
Kotlin
Logos
Lua
Makefile
Matlab
NSIS
Nginx
OCaml
Objective-C
Others
PHP
PLSQL
Perl
Perl6
PowerShell
[Protocol Buffer](#protocol buffer)
Puppet
Python
QML
R
Roff
Ruby
Rust
Scala
Scheme
Shell
Smali
[Standard ML](#standard ml)
Swift
TeX
TypeScript
Vala
[Vim script](#vim script)
VimL
[Visual Basic](#visual basic)
XSLT

ActionScript

Flashbang - Project "Flashbang" - An open-source Flash-security helper

ApacheConf

dockerfiles -

Arduino

Brutal - Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )
piot-athome-arduino - PiOT at Home Workshop Materials for Arduino (Cactus Micro)
arduinosensorbox - Tutorial: Arduino Yun Streaming Sensor Box
getting-started-arduino - Random Nerd Tutorials http://randomnerdtutorials.com/
HomeAutomationServer - Visit HomeAutomationServer.com.

Assembly

Apollo-11 - Original Apollo 11 Guidance Computer (AGC) source code for the command and lunar modules.
unix-history-repo - Continuous Unix commit history from 1970 until today

Batchfile

ir-rescue - A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
python-guide - Python best practices guidebook, written for Humans.
Windows - Windows System Treasure
PCI-Audit-Script -
regtweaks - Windows Registry Tweaks (Win 7 - Win 10)

Bro

bro-scripts - A collection of Bro scripts I've written
bro - Bro is a powerful network analysis framework that is much different from the typical IDS you may know. Official mirror of git.bro.org/bro.git .

C

Noise - A temporary rebranding of Signal, formerly a fork adding support for running without Play Services
kernel-exploits - A bunch of proof-of-concept exploits for the Linux kernel
peervpn - The open source peer-to-peer VPN
knock-out - A RAT (Remote Administration Tool) using port-knocking techniques for *NIX systems. libpcap-based server and libnet-based client. No TCP/UDP port listening.
bubblewrap - Unprivileged sandboxing tool
bspwm - A tiling window manager based on binary space partitioning
nsjail - A light-weight process isolation tool, making use of Linux namespaces and seccomp-bpf syscall filters (with help of the kafel bpf language)
f-stack - F-Stack is an user space network development kit with high performance based on DPDK, FreeBSD TCP/IP stack and coroutine API.
frr - FRR - The FRRouting Protocol Suite, forked from Quagga
sigmavpn - Light-weight, secure and modular VPN solution
RIOT - RIOT - The friendly OS for IoT
joy - A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
Threat-research -
openlase - Open source realtime laser graphics framework
0x00sec_code -
jevois - JeVois smart machine vision framework
MLVPN - Multi-link VPN (ADSL/SDSL/xDSL/Network aggregation / bonding)
dunst - lightweight and customizable notification daemon
icmptunnel - Transparently tunnel your IP traffic through ICMP echo and reply packets.
tac_plus - A Tacacs+ Daemon tested on Linux (CentOS) to run AAA via TACACS+ Protocol via IPv4 and IPv6.
kekeo - A little toolbox to play with Microsoft Kerberos in C
go-sqlite3 - sqlite3 driver for go that using database/sql
antire_book - Example code from "Programming Linux Anti-Reversing Techniques"
honggfuzz - Security oriented fuzzer with powerful analysis options. Supports evolutionary, feedback-driven fuzzing based on code coverage (software- and hardware-based)
wrk - Modern HTTP benchmarking tool
mtr - Official repository for mtr, a network diagnostic tool
sway - i3-compatible Wayland compositor
onion-sites-that-dont-suck - Onion Sites That Don't Suck
oreillysec2016-docker -
trezor-mcu - 🔒 Sources for TREZOR firmware
inotify-tools - inotify-tools is a C library and a set of command-line programs for Linux providing a simple interface to inotify.
tmux - tmux source code
mdp - A command-line based markdown presentation tool.
Windows-driver-samples - This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.
cmus - Small, fast and powerful console music player for Unix-like operating systems.
flatpak - Linux application sandboxing and distribution framework (formerly xdg-app)
systemd - systemd System and Service Manager
openpilot - open source driving agent
linux-exploit-development-tutorial - a series tutorial for linux exploit development to newbie.
pyproj - python interface to PROJ4 library for cartographic transformations
p0f - p0f unofficial git repo
SwarmUI -
blacknurse - BlackNurse attack PoC
os - Minoca operating system
PassiveFuzzFrameworkOSX - This framework is for fuzzing OSX kernel vulnerability based on passive inline hook mechanism in kernel mode.
goquic - QUIC support for Go
android_vuln_poc-exp - This project contains pocs and exploits for android vulneribilities
USaBUSe - Universal Serial aBUSe is a project to demonstrate the risks of hardware bypasses of software security by Rogan Dawes at SensePost.
shell-workshop - Materials from my Strange Loop 2014 workshop, Let's Build a Shell!
shellcodeexec - Script to execute in memory a sequence of opcodes
ModSecurity - ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
exploits - Exploits that are mostly ready to use. They either require no modification or have been modified and verified as functional.
no-more-secrets - A recreation of the famous data decryption effect as seen in the 1992 movie Sneakers.
scripts - Utils
busybotnet - Security For Embedeed Systems - One Bin to Rule Them All.
goaccess - GoAccess is a real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems or through your browser.
cava - Console-based Audio Visualizer for Alsa (MPD and Pulseaudio)
i3blocks - A flexible scheduler for your i3bar blocks
AndroidKernelExploitationPlayground -
TheFatRat - Thefatrat a massive exploiting tool revealed >> An easy tool to generate backdoor and easy tool to post exploitation attack like browser attack,dll . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection .
quarkspwdump - Dump various types of Windows credentials without injecting in any process.
openresty - Turning Nginx into a Full-Fledged Scriptable Web Platform
public-pentesting-reports - Curated list of public penetration test reports released by several consulting firms and academic security groups
ANDnXOR_DC24_Badge - AND!XOR DEFCON 24 Badge HW and SW
haka - Haka runtime
curl - A command line tool and library for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, GOPHER, TFTP, SCP, SFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3, RTSP and RTMP. libcurl offers a myriad of powerful features
lxc - LXC - Linux Containers
defcon2015-livectf - Challenges from the DEF CON 2015 Finals Live CTF
redis - Redis is an in-memory database that persists on disk. The data model is key-value, but many different kind of values are supported: Strings, Lists, Sets, Sorted Sets, Hashes, HyperLogLogs, Bitmaps.
tini - A tiny but valid init for containers
zmap - ZMap Internet Scanner
osv - OSv, a new operating system for the cloud.
linux - Linux kernel source tree
passivedns - A network sniffer that logs all DNS server replies for use in a passive DNS setup
naxsi - NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
netdata - Get control of your servers. Simple. Effective. Awesome. https://my-netdata.io/
xdotool - fake keyboard/mouse input, window management, and more
ropnroll - An OSX exploitation helper library.
pixiewps - An offline WPS brute-force utility
notes - My woefully incomplete notes about stuff.
Network-Firewall - CSULB CECS 478 (Computer Security Project) A network firewall to block malicious traffic on a local network
how2heap - A repository for learning various heap exploitation techniques.
firecat - Firecat is a penetration testing tool that allows you to punch reverse TCP tunnels out of a compromised network.
Android-Vulnerabilities-Overview - An small overview of known Android vulnerabilities
How-to-Make-a-Computer-Operating-System - How to Make a Computer Operating System in C++
jq - Command-line JSON processor
hideroot - The kernel module for avoid rooting detection on android.
proxydroid - Global Proxy for Android
wifiarsenal -
hiawatha - Hiawatha is an open source webserver with security, easy to use and lightweight as the three key features. Hiawatha supports among others (Fast)CGI, IPv6, URL rewriting and reverse proxy. It has security features no other webserver has, like blocking SQL injections, XSS and CSRF attacks and exploit attempts. The built-in monitoring tool makes it perfect for large scale deployments.
duo_unix - Duo two-factor authentication for Unix systems
juniper-cve-2015-7755 - Notes, binaries, and related information from analysis of the CVE-2015-7755 & CVE-2015-7756 issues within Juniper ScreenOS
vim - The official Vim repository
Presentations - Presentations in different conferences
ossec-hids - OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
chw00t - chw00t - Unices chroot breaking tool
mimikatz - A little tool to play with Windows security
netcat - NetCat for Windows
hashcat-legacy - Advanced CPU-based password recovery utility
sagan - Sagan uses a 'Snort like' engine and rules to analyze logs (syslog/event log/snmptrap/netflow/etc)
collectd - The system statistics collection daemon. Please send Pull Requests here!
littleblackbox - Database of private SSL/SSH keys for embedded devices
advisories - Security advisories
exploit-database - The official Exploit Database repository
post-exploitation - Post Exploitation Collection
CANBus-Triple - CANBus Triple – The car hacking platform
agrep - AGREP - approximate GREP for fast fuzzy string searching. Files are searched for a string or regular expression, with approximate matching capabilities and user-definable records. Developed 1989-1991 by Udi Manber, Sun Wu et al. at the University of Arizona. ISC open source license since Sept. 2014.
teensy_loader_cli - Command line Teensy Loader
scanmem - memory scanner for Linux
freqwatch - Keep track of the airwaves with RTL-SDR; snoop and capture everything into a DB
netsniff-ng - A Swiss army knife for your daily Linux network plumbing.
laserturret -
sslscan - sslscan tests SSL/TLS enabled services to discover supported cipher suites
miller - Miller is like awk, sed, cut, join, and sort for name-indexed data such as CSV, TSV, and tabular JSON
Workshop2015 -
radare2 - unix-like reverse engineering framework and commandline tools
robotjs - Node.js Desktop Automation.
MBE - Course materials for Modern Binary Exploitation by RPISEC
HackSysExtremeVulnerableDriver - HackSys Extreme Vulnerable Windows Driver
masscan - TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
ctf - CTF Field Guide

C#

Windows-Hacks - Creative and unusual things that can be done with the Windows API.
AtomOS - A Multitasking monolithic Kernel based x86 targeting Operating System written in C# from scratch aiming for high level implementation of drivers in managed environment and security.
GraphEngine - Microsoft Graph Engine
ScpToolkit - Windows Driver and XInput Wrapper for Sony DualShock 3/4 Controllers
nClam - nClam allows you to scan files, directories, or streams for viruses with a ClamAV server using a simple API!
duplicati - Store securely encrypted backups on cloud storage services!
Sonarr - Smart PVR for newsgroup and bittorrent users.
ShareX - ShareX is a free and open source program that lets you capture or record any area of your screen and share it with a single press of a key. It also allows uploading images, text or other types of files to over 80 supported destinations you can choose from.
RottenPotato - RottenPotato local privilege escalation from service account to SYSTEM
PowerOPS - PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell "easier"
PowerShell - PowerShell for every system!
kudu - Kudu is the engine behind git/hg deployments, WebJobs, and various other features in Azure Web Sites. It can also run outside of Azure.
HandsOnDocker - Get hands-on with Docker through a dozen self-paced and progressive labs.
MicrosoftAzureTrainingKit - This is the archive of the Microsoft Azure Training Kit
azure - Labs de Azure
LogViewer - LogViewer for viewing and searching large text files...
ransomware-simulator - NCC Group Ransomware Simulator
azurestorageexplorer - View your Blobs, Tables and Queues from this web site
Fido -
PSAttackBuildTool - A tool for building PS>Attack, an offensive PowerShell console that makes it easy for pentesters to use PowerShell.
PSAttack - A portable console aimed at making pentesting with PowerShell a little easier.
Opserver - Stack Exchange's Monitoring System

C++

gloo - Collective communications library with various primitives for multi-machine training.
sentinel - Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect your programs against 0-day attacks or publicly known bugs.
pushpin - Reverse proxy for realtime web services
proxysql - High-performance MySQL proxy with a GPL license.
gargoyle - A memory scanning evasion technique
CLRS - 📓Solutions to Introduction to Algorithms
termite - A keyboard-centric VTE-based terminal, aimed at use within a window manager with tiling and/or tabbing support.
Nidium - nidium is an ongoing effort for a mobile hw-accelerated rendering engine to create apps and games. Embedding Mozilla JavaScript VM, Google Skia, Facebook Yoga. https://twitter.com/nidiumproject for updates
keepassxc - KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
zeal - Offline documentation browser inspired by Dash
Mutate - A simple launcher inspired by Alfred for ubuntu and Fedora.
fu - Cross-platform(win/mac/linux) app that allows user to upload images/files in Clipboard to a remote server in exchange for corresponding url with one simple click
protobuf - Protocol Buffers - Google's data interchange format
libfuzzer-workshop - Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.
omaha - Google Update for Windows
falco - Behavioral Activity Monitoring With Container Support
arrow - Apache Arrow is a columnar in-memory analytics layer designed to accelerate big data. It houses a set of canonical in-memory representations of flat and hierarchical data along with multiple language-bindings for structure manipulation. It also provides IPC and common algorithm implementations.
icinga2 - Monitoring core with features and REST API
mumble - Mumble VoIP Client/Server
al-khaser - Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
keepassx - KeePassX is a cross platform port of the windows application “Keepass Password Safe”.
TANK - A very high performance distributed log service
CVE-2016-5195 - A CVE-2016-5195 exploit example.
amazon-dsstne - Deep Scalable Sparse Tensor Network Engine (DSSTNE) is an Amazon developed library for building Deep Learning (DL) machine learning (ML) models
mxnet - Lightweight, Portable, Flexible Distributed/Mobile Deep Learning with Dynamic, Mutation-aware Dataflow Dep Scheduler; for Python, R, Julia, Scala, Go, Javascript and more
mosh - Mobile Shell
APIthet - An Application to security test RESTful web APIs.
rethinkdb - The open-source database for the realtime web.
rgat - An instruction trace visualisation tool for dynamic program analysis
caffe - Caffe: a fast open framework for deep learning.
fastText - Library for fast text representation and classification.
electron - Build cross platform desktop apps with JavaScript, HTML, and CSS
mesos - Mirror of Apache Mesos
ninja - a small build system with a focus on speed
tensorflow - Computation using data flow graphs for scalable machine learning
certificate-transparency - Auditing for TLS certificates.
shadowd - The Shadow Daemon web application firewall server
subvim - Vim customized to be like SublimeText
drama - This repository contains examples of DRAMA reverse-engineering and side-channel attacks
CNTK - Microsoft Cognitive Toolkit (CNTK), an open source deep-learning toolkit
hyperscan - High-performance regular expression matching library
BackgroundMusic - Background Music, a macOS audio utility: automatically pause your music, set individual apps' volumes and record system audio.
feather - Feather: fast, interoperable binary data frame storage for Python, R, and more powered by Apache Arrow
sems - Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools
Host-Scanner - Active/passive network scanner and autonomous vulnerability assessment application.
Linux-Keylogger - A Linux Keylogger using the X11 Lib
sysdig - Linux system exploration and troubleshooting tool with first class support for containers
deepdetect - Deep Learning API and Server in C++11 with Python bindings and support for Caffe, Tensorflow and XGBoost
Logstalgia - replay or stream website access logs as a retro arcade game
Gource - software version control visualization
regexProgram - A simple regular app for solving problem
fboss - Facebook Open Switching SystemSoftware for controlling network switches.
oatdump_plus - Extended oatdump from Android ART repo, to support class & method level dumps
edge - Run .NET and Node.js code in-process on Windows, MacOS, and Linux
iisnode - Hosting node.js applications in IIS on Windows
osquery - SQL powered operating system instrumentation, monitoring, and analytics.
pharos - Automated static analysis tools for binary programs
dex-ui - A science fiction desktop running on Linux. Awesome.
HashPump - A tool to exploit the hash length extension attack in various hashing algorithms
Smashing_The_Browser - Smashing The Browser: From Vulnerability Discovery To Exploit

CSS

minimal-mistakes - 📐 A flexible two-column Jekyll theme. Perfect for personal sites, blogs, and portfolios hosted on GitHub or your own server.
zuki-themes - Themes for GTK, gnome-shell and more.
Skeleton - Skeleton: A Dead Simple, Responsive Boilerplate for Mobile-Friendly Development
Public - A collection of all my publicly released material.
owasp-summit-2017 - Content for OWASP Summit 2017 site
grassy - Build layout through ASCII art in Sass (and more). No pre-built CSS. No additional markup.
NoGithubDarkMode - A Chrome Extension to Remove the dark menu bar from GitHub.
markdown-tree - A Sinatra script to serve a hierarchy / tree directory of markdown files. Use intended for small sites built in markdown.
arc-theme - A flat theme with transparent elements
gopheracademy-web - Public Website for blog.GopherAcademy.com
jupyter-themes - Custom Jupyter Notebook Themes
chromebackdoor - Chromebackdoor is a pentest tool, this tool use a MITB technique for generate a windows executable ".exe" after launch run a malicious extension or script on most popular browsers, and send all DOM datas on command and control.
gdash - A dashboard for Graphite
KudosPlease - A simple Kudos widget with no dependencies. And it's free.
vulsrepo - VulsRepo is visualized based on the json report output in vuls.
kibana-time-plugin - Kibana visualization that provides controls for setting and animating time ranges.
leonids - A simple and clean two columns Jekyll theme.
workflow - The open source PaaS for Kubernetes.
rails-on-docker - Different approaches to create Docker containers for Ruby on Rails.
Shaarli-Material - A theme base on Google's Material Design for Shaarli, the superfast delicious clone.
DefenseAgainstTheDarkArts -
lanyon - A content-first, sliding sidebar theme for Jekyll.
notmyidea - my weblog
maggner-pelican - A responsive (and simple) theme for Pelican
Flex - The minimalist Pelican theme.
arc-firefox-theme - Arc Firefox Theme
uno-zen - Minimalist and Elegant theme for Ghost. Demo @ https://kikobeats.com
pelican-themes - Themes for pelican
Flatabulous - This is a Flat theme for Ubuntu and other Gnome based Linux Systems.
hexo-theme-noise - A hexo theme
mowr - More Obvious Webmalware Repository
presentations - Slide decks from presentations given around the world.
jessconf - The JessConf website.
goat.js - Tutorial for Node.js security
elasticsearch-api.info -
tutorials - A repository for the tutorial articles I am writing
commonplace - A server for your markdown files. Give it a directory, and Commonplace gives you a url, pretty pages, and quick editing.
Orbit-Theme - FREE Responsive Resume/CV Template for Developers -
very-simple - A very simple theme for hexo
Threatelligence - Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect intelligence from custom or public sources. Automatically updates feeds and tries to further enhance data for dashboards.
say-yes-to-https - A practical guide to encryption for web developers
hackercouch - Hospitality for Hackers
Decode-for-Ghost - A version of Decode made for Ghost.
golden-bootstrap - A tiny add-on for Bootstrap giving you the divine power of using golden ratio sized columns.
hexo-theme-tranquilpeak - A gorgeous responsive theme for Hexo blog framework
Old-Apphera-Dashboard - Open Source Social Media Monitoring And Engagement System Core/API
-folio - A simple Jekyll theme for showcasing your work, emphasis on whitespace, transparency, and helvetica.
SinglePaged - SinglePaged - Simple Jekyll template
secure-mobile-development - A Collection of Secure Mobile Development Best Practices
gethead - HTTP Header Analysis Vulnerability Tool
progit2 - Pro Git 2nd Edition
rtail - rtail(1) - Terminal output to the browser in seconds, using UNIX pipes.
write-ups-2015 - Wiki-like CTF write-ups repository, maintained by the community. 2015

Clojure

drake - Data workflow tool, like a "Make for data"
riemann - A network event stream processing system, in Clojure.
codox - Clojure documentation tool

CoffeeScript

atom-vim-mode-plus - vim-mode improved
cyclotron - A web platform for constructing dashboards.
shaky - Converted dart shaky boxes demo to coffeescript
hubot - A customizable life embetterment robot.
atom - The hackable text editor
apm - Atom Package Manager
vimium - The hacker's browser.
marp - Markdown presentation writer, powered by Electron.
butterfly - A web terminal based on websocket and tornado
client - Trailbot tracks files and logs in your servers and triggers Smart Policies upon unwanted modification.
Dumpster - A lightweight, self-hosted and API-based file upload server supporting YubiKey OTP authentication.
pimatic - A home automation server and framework for the raspberry pi running on node.js
wintersmith - A flexible static site generator
git-time-machine - Atom package that allows you to travel back in commit history
Log.io - Real-time log monitoring in your browser

Eagle

OSCC - Open Source Car Control 💻🚗🙌
magspoof - MagSpoof is a portable device that can spoof/emulate any magnetic stripe, credit card or hotel card "wirelessly", even on standard magstripe readers. It can also disable Chip&PIN and predict future AMEX card numbers.
tekrice - Hatake (畑) is the Japanese name for "rice field". This repository contains the code for a system designed to monitor the water level in a rice field and upload the data to the Internet.

Elixir

cog - Bringing the power of the command line to chat
osq_simulator -
terraform - A simple plug for incrementally transforming an API into Phoenix. Check out the blog post:
nerves - Craft and deploy bulletproof embedded software in Elixir
guardian - Elixir Authentication

Erlang

logplex - Heroku log router
otp - Erlang/OTP

GCC Machine Description

raindance - Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
x-bootcamp - An extreme bootcamp to enable teams to build DevSecOps into their environment.
create-your-own-adventure -

Go

elasticsearch-operator - manages elasticsearch clusters
kubernetes-secret-manager - Manage secrets with Vault inside a Kubernetes cluster
jobs - Engineering jobs at Signal Sciences
container-linux-update-operator - A Kubernetes operator to manage updates of Container Linux by CoreOS
container-linux-config-transpiler -
ecs-secrets - Runtime secrets management solution for ECS using Task IAM Roles
usercorn - dynamic binary analysis via platform emulation
autospotting - Easy to use tool that automatically replaces some or even all on-demand AutoScaling group members with similar or larger identically configured spot instances in order to generate significant cost savings on AWS EC2.
vulnedock - Proof of concept for vulnerability management of Docker containers
mkonion - A simple way to create a Tor onion service for existing Docker containers.
cli53 - Command line tool for Amazon Route 53
goby - Goby (Rooby) is a new object oriented language written in Go aim at developing microservice efficiently.
binctr - Fully static, unprivileged, self-contained, containers as executable binaries.
bane - Custom & better AppArmor profile generator for Docker containers.
trireme - Simple, scalable and secure application segmentation
reg - Docker registry v2 command line client.
klar - Integration of Clair and Docker Registry
dockyard - Container & Artifact Repository
wmi_exporter - Prometheus exporter for Windows machines using WMI
cilium - Linux Native, HTTP Aware Networking and Security for Containers
kube-applier - kube-applier enables automated deployment and declarative configuration for your Kubernetes cluster.
alertmanager2es - Receives HTTP webhook notifications from AlertManager and inserts them into an Elasticsearch index for searching and analysis
ecfg - Upcoming replacement for github.com/Shopify/ejson
pocketcleaner - keep your pocket clean
mgmt - Next generation config management!
containerpilot - A service for autodiscovery and configuration of applications running in containers
functions - IronFunctions - the serverless microservices platform.
drone-burp - Parses a burp XML file into a lair project
infrakit.gcp - Infrakit plugins for Google Cloud Platform.
goad - Goad is an AWS Lambda powered, highly distributed, load testing tool
usql - usql is a universal command-line interface for SQL databases
ipify-api - A public IP API service.
terraform-provisioner-ansible - A provisioner for bootstrapping terraform resources with ansible
kubernetes-operators - Operators that automate common tasks for managing Openstack on Kubernetes.
smith - Smith is a Kubernetes workflow engine / resource manager prototype
teleport - Modern SSH server for clusters and teams.
blox - Open source tools for building custom schedulers on Amazon ECS
open-ocr - Run your own OCR-as-a-Service using Tesseract and Docker
malice - VirusTotal Wanna Be - Now with 100% more Hipster
vault-controller - Automate the creation of unique Vault tokens for Kubernetes Pods using init containers.
goss - Quick and Easy server testing/validation
faas - Functions as a Service - a serverless framework for Docker
shush - It's a secret.
terragrunt - Terragrunt is a thin wrapper for Terraform that provides extra tools for working with multiple Terraform modules, remote state, and locking.
kube-cert-manager - Manage Lets Encrypt certificates for a Kubernetes cluster.
lambhack - A very hackable serverless application in AWS Lambda
awless - A Mighty CLI for AWS
amazon-ecr-credential-helper - Automatically gets credentials for Amazon ECR on docker push/docker pull
honeytrap - High interaction honeypot framework
stacktrace - Stack traces for Go errors
docker-flow-proxy - Docker Flow Proxy
bootkube - bootkube - Launch a self-hosted Kubernetes cluster
dex - OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors
kala - Modern Job Scheduler
memo - 📓 Memo Life For You
k8s - A simple Kubernetes Go client
borg - Search and save shell snippets without leaving your terminal
ssh-expose - A simple library for exposing a REPL over SSH or locally
pam-ussh - uber's ssh certificate pam module
ssh-cert-authority - An implementation of an SSH certificate authority.
sops - Secrets management stinks, use some sops!
mint - A Minimal TLS 1.3 Implementation in Go
decap - A CI Build Server with a Kubernetes Backend
starx - Lightweight, scalable ,distributed game server framework for Golang
terraform-markdown-extractor - Extract json resource description from terraform repository
minishift - Run OpenShift locally
consul-template - Template rendering, notifier, and supervisor for @HashiCorp Consul and Vault data
wuzz - Interactive cli tool for HTTP inspection
fabio - A fast, modern, zero-conf load balancing HTTP(S) router for deploying microservices managed by consul.
kubewatch - Watch k8s events and trigger Handlers
opencompose - OpenCompose - A higher level abstraction for Kubernetes Resource
dynamic-ports-tutorial - A prototype of using dynamic ports with Kubernetes.
gogit - Pure Go read access of a Git repository
envconfig - Golang library for managing configuration data from environment variables
test-infra - Test infrastructure for the Kubernetes project.
compose2kube - Convert docker-compose service files to Kubernetes objects.
mate - Mate manages AWS Route53 and Google CloudDNS records for your Kubernetes services and ingresses.
errors - Simple error handling primitives
ngrok - Introspected tunnels to localhost
cobra - A Commander for modern Go CLI interactions
kate - Because Clair needs a friend
teleconsole - Command line tool to share your UNIX terminal and forward local TCP ports to people you trust.
oklog - A distributed and coördination-free log management system
dep - Go dependency tool
consul-replicate - Consul cross-DC KV replication daemon
gops - A tool to list and diagnose Go processes currently running on your system
kube-state-metrics - Add-on agent to generate and expose cluster-level metrics.
go-tools - A collection of tools and libraries for working with Go code, including linters and static analysis
template-compiler - Compile text/template / html/template to regular go code
usblockout - USBLockout monitors your user session and triggers Grsecurity Deny New USB feature.
macouflage - macouflage is a MAC address anonymization tool, written in Golang, for Linux-based operating systems.
csvtk - A cross-platform, efficient, practical and pretty CSV/TSV toolkit in Golang
autovpn - Easily connect to a VPN in a country of your choice.
dhcplb - dhcplb is Facebook's implementation of a load balancer for DHCP.
kube-template - Watches Kubernetes for updates, writing output of a series of templates to files
kubebot - Kubernetes chatbot for Slack
raft - Golang implementation of the Raft consensus protocol
serf - Service orchestration and management tool.
service-catalog - Consume services in Kubernetes using the Open Service Broker API
docker-ovs-plugin - An Open vSwitch Plugin for Docker's Libnetwork
addlicense - A program which ensures source code files have copyright license headers by scanning directory patterns recursively
kubeless - Kubernetes Native Serverless Framework
cfssl - CFSSL: Cloudflare's PKI and TLS toolkit
Tasks - A simplistic todo list manager written in Go
cni - Container Network Interface - networking for Linux containers
kube-deploy - A place for cluster deployment automation
helm - The Kubernetes Package Manager
kube-lego - Kube-Lego automatically requests certificates for Kubernetes Ingress resources from Let's Encrypt
kops - Kubernetes Operations (kops) - Production Grade K8s Installation, Upgrades, and Management
lxd - Daemon based on liblxc offering a REST API to manage containers
HERCULES - HERCULES is a special payload generator that can bypass antivirus softwares.
kubevirt - KubeVirt is a virtual machine management add-on for Kubernetes.
lint - This is a linter for Go source code.
kompose - Tool to move from docker-compose to Kubernetes
prometheus-operator - Prometheus Operator creates/configures/manages Prometheus clusters atop Kubernetes
opentracing-go - OpenTracing API for Go
dvm - Docker Version Manager
hodor - A Scaleable and Asynchronous Framework for Testing Tools built on Kubernetes
keytransparency - A transparent and secure way to look up public keys.
module-security-public - The public documentation for the gruntwork-io/module-security repo, which contains packages for setting up best practices for managing secrets, credentials, and servers
flannel - flannel is a network fabric for containers, designed for Kubernetes
go-github - Go library for accessing the GitHub API
grok_exporter - Export Prometheus metrics from arbitrary unstructured log data.
kargo -
cinf - A command line tool to view namespaces and cgroups, useful for low-level container prodding.
vault-proxy - Pantheon's vault-proxy for wrapping and extending the Vault API
kube-aws - Kubernetes on AWS
todo - A task manager written in Go using TDD techniques, each commit should represent a step in the application development.
lf - A terminal file manager
go-web-workshop - Build Web Applications with Go on App Engine
packer-azure - Packer for Azure
logspout - Log routing for Docker container logs
build - another build tool for container images
grumpy - Grumpy is a Python to Go source code transcompiler and runtime.
The-Eye - Simple security surveillance script for linux distributions.
swarmkit - A toolkit for orchestrating distributed systems at any scale. It includes primitives for node discovery, raft-based consensus, task scheduling and more.
pumba - Chaos testing and network emulation tool for Docker.
go-flashpaper - Flashpaper is a simple go-based service for creating one time use links to text data or individual files.
metricproxy - A proxy to buffer and forward time series data
burry.sh - Cloud Native Infrastructure BackUp & RecoveRY
dry - dry - A Docker container manager for the terminal @
logrus - Structured, pluggable logging for Go.
gobot - Golang framework for robotics, drones, and the Internet of Things (IoT)
gin - Gin is a HTTP web framework written in Go (Golang). It features a Martini-like API with much better performance -- up to 40 times faster. If you need smashing performance, get yourself some Gin.
cayley - An open-source graph database
gitql - A git query language
weave - Simple, resilient multi-host Docker networking and more.
evebox - Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
scope - Monitoring, visualisation & management for Docker & Kubernetes
traefik - Træfik, a modern reverse proxy
drone - Drone is a Continuous Delivery platform built on Docker, written in Go
gogs - Gogs is a painless self-hosted Git service.
fleet - fleet ties together systemd and etcd into a distributed init system
ledisdb - a high performance NoSQL powered by Go
fission - Fast Serverless Functions for Kubernetes
nomad - A Distributed, Highly Available, Datacenter-Aware Scheduler
hcl - HCL is the HashiCorp configuration language.
go - The Go programming language
jid - json incremental digger
fzf - 🌸 A command-line fuzzy finder written in Go
confd - Manage local application configuration files using templates and data from etcd or consul
terraform-provider-softlayer - a Terraform (http://terraform.io) provider for interacting with SoftLayer (https://www.softlayer.com)
do-agent - Collects system metrics from DigitalOcean Droplets
rita - Real Intelligence Threat Analytics
gdrive - Google Drive CLI Client
chaosmonkey - Chaos Monkey is a resiliency tool that helps applications tolerate random instance failures.
gopm - Go Package Manager (gopm) is a package manager and build tool for Go.
glide - Package Management for Golang
go-audit - go-audit is an alternative to the auditd daemon that ships with many distros
hologram - Easy, painless AWS credentials on developer laptops.
apex - Build, deploy, and manage AWS Lambda functions with ease (with Go support!).
node_exporter - Exporter for machine metrics
audit-go - Linux Audit Plugin for heka written using netlink Protocol in golang and Lua
hyperd - HyperContainer Daemon
aws-lambda-go-net - Network I/O interface for AWS Lambda Go runtime.
autograph - Digital signature micro-services
dockbeat - Dockbeat - the elastic Beat for docker daemon monitoring
git-lfs - Git extension for versioning large files
caddy - Fast, cross-platform HTTP/2 web server with automatic HTTPS
infrakit - A toolkit for creating and managing declarative, self-healing infrastructure.
consul - Service Discovery and Configuration Made Easy
vault - A tool for managing secrets.
terraform - Terraform is a tool for building, changing, and combining infrastructure safely and efficiently.
go-metrics - Go port of Coda Hale's Metrics library
complainer - Complainer's job is to send notifications to different services when tasks fail on Mesos cluster.
redoctober - Go server for two-man rule style file encryption and decryption.
golibs - Various small golang libraries
upmail - Email notification hook for https://github.com/sourcegraph/checkup.
checkup - Distributed, lock-free, self-hosted health checks and status pages
audit - For auditing what collaborators, hooks, and deploy keys you have added on all your GitHub repositories.
micro - A modern and intuitive terminal-based text editor
concert - Concert is a console based certificate generation tool for https://letsencrypt.org.
httpstat - It's like curl -v, with colours.
cri-o - Open Container Initiative-based implementation of Kubernetes Container Runtime Interface
minio - Minio is an open source object storage server compatible with Amazon S3 APIs
gron - Make JSON greppable!
goviz - a visualization tool for golang project dependency
go-cve-dictionary - Build a local copy of CVE (NVD and Japanese JVN). Server mode for easy querying.
shadowd - Secure login distribution service
AuthTables - AuthTables is a microservice that helps detect "Account Take Over" caused by simple credential theft. If bad actors are stealing your users passwords, AuthTables may be useful.
steamer - For importing, searching, and managing public password breach data
helm-classic - (OBSOLETE) Helm Classic v1
slex - SSH multiplex
learninggo - Learning Go Book in mmark
dray - An engine for managing the execution of container-based workflows.
markdownfmt - Like gofmt, but for Markdown.
tag - Instantly jump to your ag matches.
ssh-chat - Chat over SSH.
docker_auth - Authentication server for Docker Registry 2
mylg - Network Diagnostic Tool
packer - Packer is a tool for creating identical machine images for multiple platforms from a single source configuration.
syzkaller - syzkaller is an unsupervised, coverage-guided Linux system call fuzzer
termshare - Quick and easy terminal sharing.
flynn - A next generation open source platform as a service (PaaS)
telegraf - The plugin-driven server agent for collecting & reporting metrics.
os - Tiny Linux distro that runs the entire OS as Docker containers
batten - Hardening and Auditing Tool For Docker Hosts & Containers
libnetwork - Docker Networking
containerd - An open and reliable container runtime
habitus - A Build Flow Tool for Docker
ghb0t - A GitHub Bot to automatically delete your fork's branches after a pull request has been merged.
go-starter-kit - Golang isomorphic react/hot reloadable/redux/css-modules starter kit
minikube - Run Kubernetes locally
continuous-deployment-on-kubernetes -
prometheus - The Prometheus monitoring system and time series database.
elk - A little demo app to show off native integration of the ELK stack with Docker.
cadvisor - Analyzes resource usage and performance characteristics of running containers.
machine - Machine management for a container-centric world
runc - CLI tool for spawning and running containers according to the OCI specification
reflex - Run a command when files change
silk - Markdown based document-driven RESTful API testing.
swarm - Swarm: a Docker-native clustering system
hub - hub helps you win at git.
carina - Command line client for Carina™
cli - A simple, fast, and fun package for building command line apps in Go
elastico - Commandline tool for Elasticsearch
gister - Manage your gists from the command-line.
transfer.sh - Easy and fast file sharing from the command-line.
oauth2_proxy - A reverse proxy that provides authentication with Google, Github or other provider
skydock - Service discovery via DNS for docker
notary - Notary is a Docker project that allows anyone to have trust over arbitrary collections of data
nsq - A realtime distributed messaging platform
hugo - A Fast and Flexible Static Site Generator built with love in GoLang
twitterbeat - ElasticBeat to download and index tweets of specified screen names
dockviz - Visualizing Docker data
monstache - a go daemon which syncs mongodb to elasticsearch in neal realtime
etcd - Distributed reliable key-value store for the most critical data of a distributed system
rkt - rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.
zgrab - Application layer scanner that operates with ZMap
semaphore - Open Source alternative to Ansible Tower
origin - Enterprise Kubernetes for Developers
passgo - Simple golang password manager.
bosun - Time Series Alerting Framework
readline - Readline is a pure go(golang) implementation for GNU-Readline kind library
onionscan - OnionScan is a free and open source tool for investigating the Dark Web.
termui - Golang terminal dashboard
vuls - Vulnerability scanner for Linux/FreeBSD, agentless, written in Go
distribution - The Docker toolset to pack, ship, store, and deliver content
http2fuzz - HTTP/2 fuzzer written in Golang
switcher - Run SSH and HTTP(S) on the same port
vulndb-go - Go SDK to access the vulnerability database
freegeoip - IP geolocation web server
intro-to-docker-workshop -
heka - DEPRECATED: Data collection and processing made easy.
seesaw - Seesaw v2 is a Linux Virtual Server (LVS) based load balancing platform.
grafana - The tool for beautiful monitoring and metric analytics & dashboards for Graphite, InfluxDB & Prometheus & More
gotraining - Go Training Class Material :
clair - Vulnerability Static Analysis for Containers
tls-observatory - An observatory for TLS configurations, X509 certificates, and more.
kubernetes - Production-Grade Container Scheduling and Management
cve-api - An API server providing easy access to CVE details.
elastichoney - A Simple Elasticsearch Honeypot
git-appraise - Distributed code review system for Git repos
websocket - A WebSocket implementation for Go.
mig - Distributed & real time digital forensics at the speed of the cloud
awesome-go - A curated list of awesome Go frameworks, libraries and software
gryffin - Gryffin is a large scale web security scanning platform
gotel - GoTel - Scheduled job monitoring
libbeat - Moved to: https://github.com/elastic/beats
inspeqtor - Monitor your application infrastructure!
restic - restic backup program
beats - 🐠 Beats - Lightweight shippers for Elasticsearch & Logstash
crashwalk - Bucket and triage on-disk crashes. OSX and Linux.
gotty - Share your terminal as a web application
ssllabs-scan - A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.
gobuster - Directory/file & DNS busting tool written in Go
moby - Moby Project - a collaborative project for the container ecosystem to assemble container-based systems

Groff

osquery - OSQuery build to demonstrate Dockerfile best practice
bohatei - Bohatei is a first of its kind platform that enables flexible and elastic DDoS defense using SDN and NFV.
network-examples - Linux networking examples and tutorials
retire.js - retire.js has a new home

Groovy

sample-jenkins-microservice-pipeline - Sample deployment pipeline for microservices based on boot-microservice
rundeck - Job scheduler and runbook automation. Enable self-service access to existing scripts and tools.
docker-ci-tool-stack - Docker Infrastructure via docker-compose (Jenkins, SonarQube, Nexus, GitLab, Selenium Grid)
zerotocloud - Scripts and instructions for Zero To Cloud With NetflixOSS

HCL

terraform-aws-docker - A basic setup to run up docker swarm cluster in AWS using the Terraform
terraform-kubernetes - Terraform module for provisioning AWS resources to run a Kubernetes cluster
terraform-up-and-running-code - Code samples for the book "Terraform: Up & Running" by Yevgeniy Brikman
best-practices -

HTML

kamon-prometheus - A Kamon backend to support Prometheus
routerpwn.com - Compilation of ready to run exploits, advisories, tools and online key generators for embedded devices.
OSINT_Team_Links - Links for the OSINT Slack Team
Commodity-Injection-Signatures - Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE
solid - Solid - Re-decentralizing the web (project directory)
dockers - Uber tiny Docker images for all the things.
docker-reveal - Docker image for creating and serving reveal.js presentation ... special effects included
securedorg.github.io -
vue-intro - intro to vuejs
threat_note - DPS' Lightweight Investigation Notebook
lkml.wtf - Source code for lkml.wtf.
WebFundamentals - Best practices for modern web development
pypub - Python library to programatically create epub files
warberry - WarBerryPi - Tactical Exploitation
sonic.js - ➿ Create loopy loading animations
hummingbird - 📺 Probably the coolest anime discovery platform around.
blockchain-demo - A web-based demonstration of blockchain concepts.
catapult - Catapult
awesome-webpack - A curated list of awesome Webpack resources, libraries and tools
calendar-2017 - http://ansarimofid.in/calendar-2017/
ecs_tutorial - ECS Tutorial
axle - a UNIX-like kernel + userspace
Secure-Host-Baseline - Configuration guidance and files in support of the DoD Windows 10 Secure Host Baseline. iadgov
noise_spec - Noise Specification
magento-malware-scanner - A collection of rules and samples to detect Magento malware
open-source-templates - Issue and Pull Request Template Generator featuring Chtulhu and Lewis Carroll
k8s.info - Kubernetes community resources
secrepo - Sweet, sweet, secrepo.com html.
stix-viz - STIX Visualization Tool
post-exploitation-wiki - Post Exploitation Wiki
portainer - Simple management UI for Docker
docker-swarm-gui - 📦 Docker Swarm GUI. A tiny tool to help you to visualize the state of your Docker swarm.
html5-periodic-table - Origionally created by Josh Duck, he removed it, so I recreated it.
domxssscanner - DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities
Python-Pedia - One Stop for Python Programming Resources. It's all about Python.
neet - Neet - Network Enumeration and Exploitation Tool
zappa-slack-inviter - A server-less Slack inviter
visualize_logs - A Python library and command line tools to provide interactive log visualization.
Hacking-Tools-Repository - A list of security/hacking tools that have been collected from the internet. Suggestions are welcomed.
intro.js - A better way for new feature introduction and step-by-step users guide for your website and project.
engine - Droidefense: Advance Android Malware Analysis Framework
sectalks - CTFs, solutions and presentations
metasploitable3 - Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
hackazon - A modern vulnerable web app
iproute2-cheatsheet - iproute2 command reference
learnyounode - Learn You The Node.js For Much Win! An intro to Node.js via a set of self-guided workshops.
Bugs - Collection of software bugs found by SkyLined
lightbulb - The Ansible Lightbulb project is an effort to provide a content toolkit and educational reference for effectively communicating and teaching Ansible topics.
pelican-svbhack - pelican-svbhack is a responsive theme for Pelican and it is my hack of a svbtle-like theme
yapeme - Yapeme (Yet Another PElican theME) is a responsive theme for Pelican.
hugo-bootswatch - Hugo bootswatch theme
netjson - NetJSON is a data interchange format for encoding the basic building blocks of networks.
lunchbox - Demonstrate the use of Ansible best practices in a workshop
vulnreport - Open-source pentesting management and automation platform by Salesforce Product Security
grip - Preview GitHub Markdown files like Readme locally before committing them.
small - Smallest possible syntactically valid files of different types
grokdebug -
sec-tools -
twofactorauth - List of sites with two factor auth support which includes SMS, email, phone calls, hardware, and software.
DVRF - The Damn Vulnerable Router Firmware Project
ec2instances.info - Amazon EC2 instance comparison site
phantomjs - Scriptable Headless WebKit
Azure-MachineLearning-DataScience -
min - A smarter, faster web browser
data-science-at-the-command-line - Data Science at the Command Line
epoch - A general purpose, real-time visualization library.
fwtr - Open Database of Firmware Test Results
pup - Parsing HTML at the command line
Offensive_Computer_Security - Files for the course Offensive Computer Security 2014 (FSU)
cybercamp-2015 - Código de ejemplo del taller "Python, hacking y sec-tools desde las trincheras" en Cybercamp 2015 impartido por Daniel Garcia (cr0hn)
qark - Tool to look for several security related Android application vulnerabilities
edx-dl - A simple tool to download video lectures from edx.org.
Java-WebSocket - A barebones WebSocket client and server implementation written in 100% Java.
octostrap3 - Twitter Bootstrap 3 theme for Octopress
concrete - Simple continuous integration server written with NodeJS and CoffeeScript
machinelearninginaction - Source Code for the book: Machine Learning in Action published by Manning
pcapy - Pcapy is a Python extension module that interfaces with the libpcap packet capture library.
devopsbookmarks.com - Website of devopsbookmarks.com
presentations - An archive of presentations by Trail of Bits
gophish - Open-Source Phishing Toolkit
context-parser - HTML5 Context Parser
skf-flask - Security Knowledge Framework (SKF) Python Flask project
R-Network-Visualization-Workshop - Static and dynamic network visualization with R - code and tutorial from Polnet 2016 workshop.
elasticsearch-definitive-guide - The Definitive Guide to Elasticsearch
badssl.com - 🔒 Memorable site for testing clients against bad SSL configs.
dashboards - Responsive dashboard templates for Bootstrap
webappsec - Web Application Security Working Group repo
remarkdown - Styling HTML as if it were raw Markdown text.
droidsec.github.io - The droidsec web site!
pwnwiki.github.io - PwnWiki - The notes section of the pentesters mind.
mobile-security-wiki -

Hack

fbctf - Platform to host Capture the Flag competitions

Haskell

pandoc - Universal markup converter
haskell-kubernetes - Haskell bindings to the v1 Kubernetes api, generated via swagger-codegen
eta - The Eta Programming Language, a dialect of Haskell on the JVM
hakyll - A static website compiler library in Haskell
shellcheck - ShellCheck, a static analysis tool for shell scripts

Java

Twitter-Follow-Exploit - Automated Twitter mass account creation and follow using Selenium and Tor VPN
heroic - The Heroic Time Series Database
burp-suite-error-message-checks - Burp Suite extension to passively scan for applications revealing server error messages
spring-cloud-config-aws-kms - Spring Cloud Config add-on that provides encryption via AWS KMS
burp-extension - A BurpSuite extension for lair
presto - Distributed SQL query engine for big data
graylog-plugin-threatintel - Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
flip-tables - Because pretty-printing text tables in Java should be easy.
underdark-android - Bluetooth peer-to-peer mesh networking for Android
eucalyptus - Eucalyptus Cloud-computing Platform
burp-Dirbuster - Dirbuster plugin for Burp Suite
burpdeveltraining - Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
automation-api-quickstart - Control-M Automation API quickstart
KeyBox - KeyBox is a web-based SSH console that centrally manages administrative access to systems. Web-based administration is combined with management and distribution of user's public SSH keys.
Alerter - An Android Alerting Library
Burp-Extensions - Central Repo for Burp extensions
k8s-playground - Playground repository to learn and tech kubernetes
jmxbf - A brute force program to test weak accounts configured to access a JMX Registry
chuck - An in-app HTTP inspector for Android OkHttp clients
jsql-injection - jSQL Injection is a Java application for automatic SQL database injection.
swurg - Parses Swagger files into the BurpSuite for automating RESTful API testing – approved by Burp for inclusion in their official BApp Store.
awesome-android-things - A curated list of awesome android things tutorials, libraries and much more at one place
SecurityShepherd - Web and mobile application security training platform
Android-InsecureBankv2 - Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities
volley -
OpenGrok - Main {OpenGrok git repository
bdd-security - BDD Automated Security Tests for Web Applications
elasticsearch-cloud-kubernetes -
burp-rest-api - REST/JSON API to the Burp Suite security tool.
timely - Accumulo backed time series database
http-server-benchmarks - Some simple benchmarks of different HTTP servers in different languages
wifi-bruteforcer-fsecurify - Android application to brute force WiFi passwords without requiring a rooted device.
elasticsearch-shield-kerberos-realm - Kerberos/SPNEGO custom realm for Elasticsearch Shield 2.0
Reflected-File-Download-Checker-BurpSuite-Plugin -
drools - Drools Expert is the rule engine and Drools Fusion does complex event processing (CEP).
yauaa - Yet Another UserAgent Analyzer
liferay-portal -
jenkins - Jenkins automation server
kafka - Mirror of Apache Kafka
zookeeper - Mirror of Apache Hadoop ZooKeeper
wycheproof - Project Wycheproof tests crypto libraries against known attacks.
keywhiz - A system for distributing and managing secrets
spectator - Client library for collecting metrics.
stagemonitor - an open source solution to application performance monitoring for java server applications
SimianArmy - Tools for keeping your cloud operating in top form. Chaos Monkey is a resiliency tool that helps applications tolerate random instance failures.
gitpitch - Markdown Presentations For Everyone on GitHub, GitLab and Bitbucket.
zap-plugin - The Official OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
druid - Column oriented distributed data store ideal for powering interactive applications
elasticsearch-readonlyrest-plugin - Free Elasticsearch and Kibana security plugin: super-easy Kibana multi-tenancy, Encryption, Authentication, Authorization, Auditing
Java-Deserialization-Exploit -
armor -
wavsep - The Web Application Vulnerability Scanner Evaluation Project
cerealbox - Arduino-based network monitor
BurpNotesExtension - Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created during penetration testing.
StylishMusicPlayer - A stylish music player for android device 16+
MidiVisualization - Midi sourced music visualization 3D OpenGL & processing.org
metron - Mirror of Apache Metron
zeppelin - Mirror of Apache Zeppelin
cattle - Infrastructure orchestration engine
DependencyCheck - OWASP dependency-check is a utility that detects publicly disclosed vulnerabilities in application dependencies.
OMTG-Hacking-Playground -
Conjecture - Scalable Machine Learning in Scalding
JavaSecurity - Java web and command line application projects for different security topics
HackerTracker - DEF CON Hacker Tracker, updated for DC24
bigbash - A converter that generates a bash one-liner from an SQL Select query (no DB necessary)
threadfix - ThreadFix is a software vulnerability aggregation and management system that helps organizations aggregate vulnerability data, generate virtual patches, and interact with software defect tracking systems.
xssValidator - This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
fabric8 - fabric8 is an open source microservices platform based on Docker, Kubernetes and Jenkins
helios - Docker container orchestration platform
JAADAS - Joint Advanced Defect assEsment for android applications
dropwizard - A damn simple library for building production-ready RESTful web services.
rundeck-ansible-plugin - Ansible Integration for Rundeck
elasticsearch-auth - Authentication filter for Elasticsearch
elasticsearch-jetty -
PiggyMetrics - Microservice Architecture with Spring Boot, Spring Cloud and Docker
IIS-ShortName-Scanner - latest version of scanners for IIS short filename (8.3) disclosure vulnerability
Hystrix - Hystrix is a latency and fault tolerance library designed to isolate points of access to remote systems, services and 3rd party libraries, stop cascading failure and enable resilience in complex distributed systems where failure is inevitable.
elasticsearch-river-twitter - Twitter River Plugin for elasticsearch (STOPPED)
afwall - AFWall+ (Android Firewall +) - iptables based firewall for Android
burp-co2 - A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
search-guard-ssl - Elasticsearch SSL for free. Supports native Open SSL.
search-guard - Search Guard(®) is an Open Source Elasticsearch plugin that offers encryption, authentication, and authorisation.
graylog2-server - Free and open source log management
Halcyon - First IDE for Nmap Script (NSE) Development.
GDS-PMD-Security-Rules - Custom security ruleset for the popular Java static analysis tool PMD.
AndroMalware - POC Android Malware Ransomware/Recon ~ Educational purposes only
Java-Deserialization-Scanner - All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
gocd - Main repository for GoCD - Continuous Delivery server
networklog - Android Network Log Monitor
xray - X-Ray allows you to scan your Android device for security vulnerabilities that put your device at risk.
elasticsearch-hadoop - 🐘 Elasticsearch real-time search and analytics natively integrated with Hadoop
diva-android - DIVA Android - Damn Insecure and vulnerable App for Android
ChromeForensics - A tool to perform automated forensic analysis of Chrome Browser.
network-connection-class - Listen to current network traffic in the app and categorize the quality of the network.
burp-paramalyzer - Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
androrat - androrat
opensoc-streaming - Extensible set of Storm topologies and topology attributes for streaming, enriching, indexing, and storing telemetry in Hadoop.
find-sec-bugs - The FindBugs plugin for security audits of Java web applications and Android applications. (Also work with Scala projects)
elasticsearch - Open Source, Distributed, RESTful Search Engine
elasticsearch-knapsack - Knapsack plugin is an import/export tool for Elasticsearch
ysoserial - A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
zaproxy - The OWASP ZAP core project
android-vts - Android Vulnerability Test Suite - In the spirit of open data collection, and with the help of the community, let's take a pulse on the state of Android security. NowSecure presents an on-device app to test for recent device vulnerabilities.
java-html-sanitizer - Takes third-party HTML and produces HTML that is safe to embed in your web application. Fast and easy to configure.
zuul - Zuul is a gateway service that provides dynamic routing, monitoring, resiliency, security, and more.
Benchmark - OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
findbugs-plugin - Jenkins findbugs plugin
seyren - An alerting dashboard for Graphite
ice - AWS Usage Tool
OWASP-GoatDroid-Project - OWASP GoatDroid is a fully functional and self-contained training environment for educating developers and testers on Android security. GoatDroid requires minimal dependencies and is ideal for both Android beginners as well as more advanced users. The project currently includes two applications: FourGoats, a location-based social network, and Herd Financial, a mobile banking application. There are also several feature that greatly simplify usage within a training environment or for absolute beginners who want a good introduction to working with the Android platform. Download the built version here: https://github.com/jackMannino/OWASP-GoatDroid-Project/downloads
burp-hash -
bifuz - Broadcast Intent FUZzing Framework for Android

JavaScript

pwgen-for-bios - Password generator for BIOS
serverless-authentication-boilerplate - Generic authentication boilerplate for Serverless framework
insomnia - The most intuitive cross-platform REST API Client 😴
malwasm - Offline debugger for malware's reverse engineering
cloud-functions-emulator - A local emulator for Google Cloud Functions that allows you to deploy, run, and debug your Cloud Functions on your local machine before deploying them to the production Google Cloud Functions service.
community - Google Cloud Platform Community
hyper - A terminal built on web technologies
raneto-docker - Docker container for Markdown based Raneto Knowledgebase
kibiter - Kibana
tiny-care-terminal - 💖💻 A little dashboard that tries to take care of you when you're using your terminal.
data - An index of all open-source data
metabase - The simplest, fastest way to get business intelligence and analytics to everyone in your company 😋
docker-intro - Presentation: Intro to Docker
editor - An extensible, modern WYSI editor for the web written in React.
KaTeX - Fast math typesetting for the web.
MathJax-node - MathJax for Node
angular2-flask - Simple angular2 app with python-flask backend ( Learning Angular2 )
volkswagen - 🙈 Volkswagen detects when your tests are being run in a CI server, and makes them pass.
kibana-own-home - Multi-tenancy for Kibana
kibi - Kibi is a friendly - kept in sync - Kibana fork which add support for joins across indexes and external sources, tabbed navigation interface and more
AWS-AMI-Automated-Creation-Deletion - Automated AMI creation & deletion using serverless AWS Lambda
mermaid - Generation of diagram and flowchart from text in a similar manner as markdown
kibana-auth-plugin - Authentication & Login generic plugin for Kibana
hiring-without-whiteboards - ⭐️ Companies that don't have a broken hiring process
planck.js - 2D JavaScript Physics Engine
beaker - An experimental browser with peer-to-peer Web protocols.
aws-health-tools - The samples provided in AWS Health Tools can help users to build automation and customized alerting in response to AWS Health events.
gagarin - Another testing framework for your meteor apps.
keystone - node.js cms and web app framework
intro-to-docker - An introduction to Docker
vscode-snyk - Visual Studio Code extension for Snyk.io
flat-file-db - Fast in-process flat file database that caches all data in memory
slack-invite-automation - A tiny web application to invite a user into your slack team.
serverless-external-s3-event - Overcomes the CloudFormation limitation on attaching an event to an uncontrolled bucket, for Serverless.com 1.0+.
pocuito - A tiny chrome extension to record and replay your web application proof-of-concepts.
dashboard - Utilities and monitors for machine learning experiments, web client included.
uber-cli - Uber, at your fingertips
Seccubus - Easy automated vulnerability scanning, reporting and analysis
pdf-extract - Node PDF Extract
timeline.js - A compact JavaScript animation library with a GUI timeline for fast editing.
site - Serverless.com – Our 100% serverless website built with React & Phenomic, Serverless Framework, and AWS Lambda!
resume-cli - Cli tool to easily setup a new resume 📑
c3 - A D3-based reusable chart library
d3pie - A configurable pie chart lib and generator built on d3.js
s3-lambda - Lambda functions over S3 objects with concurrency control (each, map, reduce, filter)
pydash - Small web-based monitoring dashboard for linux in Python and Django
webui-aria2 - The aim for this project is to create the worlds best and hottest interface to interact with aria2. Very simple to use, just download and open index.html in any web browser.
http2pic - Simple API for creating screenshots of websites
freeboard - A damn-sexy, open source real-time dashboard builder for IOT and other web mashups. A free open-source alternative to Geckoboard.
streama - It's like Netflix, but self-hosted! http://dularion.github.io/streama/
Fuse - Lightweight fuzzy-search, in JavaScript
ayu - 🎨🖌 Modern Sublime Text 3 and 2 theme
Winds - Winds is an open source & beautiful RSS reader built using React/Redux/Sails/Node and Stream (https://getstream.io). It showcases personalized feeds powered by the https://getstream.io API. This tutorial explains how the personalization API works (http://bit.ly/personalization-winds). Try the online demo:
lambda-refarch-imagerecognition - The Image Recognition and Processing Backend reference architecture demonstrates how to use AWS Step Functions to orchestrate a serverless processing workflow using AWS Lambda, Amazon S3, Amazon DynamoDB and Amazon Rekognition.
TheHive - TheHive: a Scalable, Open Source and Free Security Incident Response Platform
e2email - E2EMail is a simple Chrome application - a Gmail client that exchanges OpenPGP mail.
WSSAT - WEB SERVICE SECURITY ASSESSMENT TOOL
docute - 📜 Effortlessly documentation done right.
elliptic - Fast Elliptic Curve Cryptography in plain javascript
micro-github - A tiny microservice that makes adding authentication with GitHub to your application easy.
npmhub - 🔎 A browser extension for exploring npm dependencies on GitHub repos
dependency-land - Find the npm modules that depend on a specific module and semver range.
handlebars.js -
hyperapp - 1kb JavaScript library for building frontend applications.
learnxinyminutes-docs - Code documentation written as code! How novel and totally my idea!
serverless-openwhisk - Adds OpenWhisk support to the Serverless Framework!
nozes - Pentest cmd manager- ALpha
home-automation - Raspberry Pi 3 based home automation with NodeJS and React Native.
smashing - The exceptionally handsome dashboard framework in Ruby and Coffeescript.
gcp-live-k8s-visualizer - Source code for the Kubernetes visualizer used in the GCP Live Container Engine Demo
emmet-sublime - Emmet for Sublime Text
Markup.js - Powerful JavaScript templates
node-dirty - A tiny & fast key value store with append-only disk log. Ideal for apps with < 1 million records.
accelerating-your-security-learning-in-2017-null-Bangalore-Jan2017 - A talk+workshop on Accelerating Your Security Learning in 2017 given at null Bangalore 2017
WebSlides - Create HTML presentations in seconds —
AndroidAssetStudio - A set of web-based tools for generating graphics and other assets that would eventually be in an Android application's res/ directory.
sketchy - A task based API for taking screenshots and scraping text from websites.
hubot_slack_example - Writing a bot using hubot in javascript that runs server side that integrates with your AWS infrastructure.
MongoDB-HoneyProxy - A honeypot proxy for mongodb. When run, this will proxy and log all traffic to a dummy mongodb server.
add-to-systemd - Small command line tool to simply add a service to systemd
next.js - Framework for server-rendered React apps
resume.github.com - Resumes generated using the GitHub informations
immutable-js - Immutable persistent data collections for Javascript which increase efficiency and simplicity.
screwdriver - Continuous Delivery Services
JudasDNS - Nameserver DNS poisoning attacks made easy
uBlock - uBlock Origin - An efficient blocker for Chromium and Firefox. Fast and lean.
angular.js - AngularJS - HTML enhanced for web apps!
vue - A progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Introduction_To_CoreOS - Example files for my Introduction to CoreOS O'Reilly Video Tutorial Series
sheetsee.js - 👀 📈 Visualize Data from a Google Spreadsheet
github-awesome-autocomplete - Add instant search capabilities to GitHub's search bar
browser-autofill-phishing - A simple demo of phishing by abusing the browser autofill feature
viz.js - A hack to put Graphviz on the web.
chatapp - Flask and Angular.js Chat Application using Socket.io
app-template - The NPR visuals team's opinionated project template for client-side apps.
howihacked - Source code of http://howihacked.info
node-todo - A simple Node/MongoDB/Angular todo app
kibana_ext_metrics_vis - This is a plugin for Kibana 5.0.0+. It is based on the core Metric-Plugin but gives you the ability to output custom aggregates on metric-results by using custom formula and/or JavaScript.
kibana_health_metric_vis - Plugin for kibana Version 4.x and 5.x to change color of metric depending to the planned state of health
kbn_c3js_vis - C3JS Visualizations Plugin for Kibana 5
kbn_network - Network Plugin for Kibana 5
enhanced_tilemap - Kibana mapping visualization
area3d_vis - 3D Graph Visualization for Kibana 5
kibana-plugin-traffic-sg - Plugin for Kibana Version 4.x and 5.x
kibana-plugin-gauge-sg - Plugin for Kibana Version 4.x and 5.x
kibana-plugin-line-sg - Plugin for Kibana Version4.x and 5.x
mathlion - Mathlion is an advanced math plugin for Kibana's Timelion
logtrail - Kibana plugin to view, search & live tail log events
elasticsearch-kopf - web admin interface for elasticsearch
elastic.js - A JavaScript implementation of the elasticsearch Query DSL
dangle - A set of AngularJS directives that provide common D3 visualizations for elasticsearch
appsensor - Build self-defending applications through real-time event detection and response
ui-for-docker - A web interface for Docker, formerly known as DockerUI. This repo is deprecated, see:
cookiecutter-flask - A flask template with Bootstrap 3, asset bundling+minification, starter templates, and registration/authentication. For use with cookiecutter.
three.js - JavaScript 3D library.
enzyme - JavaScript Testing utilities for React
nylas-mail - 💌 An extensible desktop mail app built on the modern web.
moment - Parse, validate, manipulate, and display dates in javascript.
bouncy - bounce HTTP requests around for load balancing or as an HTTP host router
screenshot-as-a-service - Website screenshot service powered by node.js and phantomjs
uptime - A remote monitoring application using Node.js, MongoDB, and Twitter Bootstrap.
microjs.com - Fantastic Micro-Frameworks and Micro-Libraries for Fun and Profit!
prism - Lightweight, robust, elegant syntax highlighting.
markdown-here - Google Chrome, Firefox, and Thunderbird extension that lets you write email in Markdown and render it before sending.
sigma.js - A JavaScript library dedicated to graph drawing
docker-compose-ui - web interface for Docker Compose
lorry-ui - Docker Compose YAML Editor
Amazon-Echo-and-Twilio - Send Twilio Voice or Text messages using Amazon Echo
Rocket.Chat - Have your own Slack like online chat, built with Meteor.
ptable - Interactive Periodic Table generator, jQuery + XML.
kolide-archive - osquery command and control
developing-alexa-skills-solutions -
alexa - Alexa "hello, world" template
aws-api-gateway-developer-portal - This application provides a reference implementation that presents APIs on API Gateway as a catalog for 3rd party access
slackbox - 🎵 Spotify playlist collaboration through Slack.
vizceral - WebGL visualization for displaying animated traffic graphs
OSINT-Framework - OSINT Framework
dext - 🔍 A smart launcher. Powered by JavaScript.
browser-laptop - Brave browser for Desktop and Laptop computers running Windows, OSX, and Linux
node-red - A visual tool for wiring the Internet of Things
CyberChef - The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
standard-readme - Standard Readme Style
lambdoku - Heroku-like experience when using AWS Lambda
RegexHub - A collection of useful regex patterns
notebook - Jupyter Interactive Notebook
serverless-iot-analytics - Serverless processing of sensor data using AWS IoT, Amazon Kinesis and AWS Lambda to display the result graphically on a static web page.
mxnet.js - MXNetJS: Javascript Package for Deep Learning in Browser (without server)
brackets - An open source code editor for the web, written in JavaScript, HTML and CSS.
lambdaws - Deploy, run and get results from Amazon AWS Lambda in a breeze
lambci - A continuous integration system built on AWS Lambda
deck.gl - WebGL based visualization layers
sample-hapi-rest-api - A sample structure for building a REST API on top of hapi.js framework
node-csvtojson - All you need nodejs csv to json converter. Support big json data, CLI, server. can be easily used in other nodejs app and extended.
claudia - Deploy Node.js projects to AWS Lambda and API Gateway easily
learn-aws-lambda - ✨ Learn how to use AWS Lambda to easily create infinitely scalable web services
eme - ✏️ Elegant Markdown Editor.
vagrant-manager - Vagrant Manager is an electron, status bar menu app that lets you manage all of your vagrant machines from one central location.
LambdAuth - A sample authentication service implemented with a server-less architecture, using AWS Lambda to host and execute the code and Amazon DynamoDB as persistent storage. This provides a cost-efficient solution that is scalable and highly available and can be used with Amazon Cognito for Developer Authenticated Identities.
AWS_Lambda_in_Action - This source code distribution is a companion to the AWS Lambda in Action book available from Manning Publications.
js-stack-from-scratch - 🛠️⚡ Step-by-step tutorial to build a modern JavaScript stack.
ServiceWorkersDemos - Demo apps utilizing Service Workers.
telemetry-dashboard - Web-frontend for aggregated telemetry data
draw.io - Source to www.draw.io
modern-node - Minimalistic boilerplate for modern node modules
nunjucks - A powerful templating engine with inheritance, asynchronous control, and more (jinja2 inspired)
tab-switcher - Chrome Extension - Switch between the opened tabs in the blink of an eye
lair - Lair is a reactive attack collaboration framework and web application built with meteor.
utp - utp (micro transport protocol) implementation in node
serverless-stories-lambda - Serverless app built with AWS Lambda
yarn - 📦🐈 Fast, reliable, and secure dependency management.
react-native - A framework for building native apps with React.
ws - Simple to use, blazing fast and thoroughly tested WebSocket client and server for Node.js
mention-bot - Automatically mention potential reviewers on pull requests.
mean - MEAN (Mongo, Express, Angular, Node) - A Simple, Scalable and Easy starting point for full stack javascript web development - utilizing many of the best practices we've found on the way
tesseract.js - Pure Javascript OCR for 62 Languages 📖🎉🖥
Brosec - Brosec - An interactive reference tool to help security professionals utilize useful payloads and commands.
toggl-button - Toggl Button extension for Chrome and Firefox
kbn_sankey_vis - Sankey diagram for Kibana visualize.
kibana-swimlane-vis - Kibana swimlane visualization
sentinl - Kibi + Kibana Alert & Report App for Elasticsearch (ex KAAE)
vr-web-examples - Example VR enabled web pages.
cf-ui - 💎 Cloudflare UI Framework
electrode-server - Electrode's configurable web server using Hapi.js atop Node.js
gollum - A simple, Git-powered wiki with a sweet API and local frontend.
minio - S3 compatible object storage server in Docker containers
ansible-dashr - Ansible Dashboard relying on existing Ansible code and logs
propsd - Dynamic property management at scale
docker-logentries - Forward all your Docker logs to logentries, like a breeze
conqueso - Centrally and dynamically change configuration values of your services!
awsaml - Awsaml is an application for providing automatically rotated temporary AWS credentials.
opsweekly - On call alert classification and reporting
dashboard -
eslint - A fully pluggable tool for identifying and reporting on patterns in JavaScript.
chalk - Terminal string styling done right
markline - Ⓜ️ Timeline via Markdown.
TimelineJS - TimelineJS: A Storytelling Timeline built in JavaScript.
potential-happiness - A dashboard for the terminal
passport-azure-ad - Azure Active Directory Authentication Strategies using Node and Passportjs
passport-ldapauth - LDAP authentication strategy for Passport
gray-matter - Smarter yaml front matter parser, used by assemble, metalsmith and many others. Simple to use, and battle tested. Parses YAML by default but can also parse JSON Front Matter, Coffee Front Matter, TOML Front Matter, and has support for custom parsers.
teamchatviz - #teamchatviz
magellan - Large Scale Automated Testing for Mocha, Nighwatch, and Nodejs
nightwatch - Automated testing and continous integration framework based on node.js and selenium webdriver
streamstash - Log aggregating, filtering, redirecting service
You-Dont-Know-JS - A book series on JavaScript. @YDKJS on twitter.
generator-angular-fullstack - Yeoman generator for AngularJS with an Express server
zabirepo - Dashboard using the API of Zabbix
Moeditor - Your all-purpose markdown editor.
jest - 🃏 Delightful JavaScript Testing.
zetta - An API-first, open source software platform for the Internet of Things.
falcon - Chrome extension for full text history search!
52-technologies-in-2016 - Let's learn a new technology every week. A new technology blog every Sunday in 2016.
doctoc - Generates table of contents for markdown files inside local git repository. Links are compatible with anchors generated by github or other sites.
write-good - Naive linter for English prose
gitgraph.js - A JavaScript library to draw pretty git graphs in the browser
docker-swarm-visualizer - A visualizer for Docker Swarm Mode using the Docker Remote API, Node.JS, and D3
dcos-iot-demo - This project demonstrates how to configure a full stack geo-enabled Internet of Things (IoT) solution using Mesosphere's open sourced Data Center Operating System (DC/OS) using Docker containerization and frameworks for Mesos including Marathon, Kafka, Spark, and Elasticsearch. (WIP)
MoonMail - Shoot billions of emails using AWS - SES - Lambda. Serverless Framework powered project
dashboard - Serverless Dashboard – A desktop application providing a UI for the Serverless Framework
serverless - Serverless Framework – Build web, mobile and IoT applications with serverless architectures using AWS Lambda, Azure Functions, Google CloudFunctions & more! –
WebGoat - WebGoat 8.0
awesome-selfhosted - This is a list of Free Software network services and web applications which can be hosted locally. Selfhosting is the process of locally hosting and managing applications instead of renting from SaaS providers.
panamax-ui - The Web GUI for Panamax
pelican-clean-blog - Theme based in Clean Blog layout to pelican blogs
dstats - Docker stats dashboard for your terminal. (WIP that was never finished)
asciinema2gif - Generate animated GIFs from asciinema terminal recordings
docker-swarm-visualizer - A visualizer for Docker Swarm using the Docker Remote API, Node.JS, and D3
dashboard - General-purpose web UI for Kubernetes clusters
mocha - ☕️ simple, flexible, fun javascript test framework for node.js & the browser
VisualAlchemist - Open source web-based database diagramming and automation tool
code2flow - Turn your Python and Javascript code into DOT flowcharts
deck.js - Modern HTML Presentations
remark - A simple, in-browser, markdown-driven slideshow tool.
openmct - A web based mission control framework.
example-voting-app - Example Docker Compose app
scans - AWS security scanning checks
vulnerabilitydb - Snyk's public vulnerability database
trace-nodejs - Trace is a visualised distributed tracing platform designed for microservices.
hyperchart - charts for hyperterm
simplemde-markdown-editor - A simple, beautiful, and embeddable JavaScript Markdown editor. Delightful editing for beginners and experts alike. Features built-in autosaving and spell checking.
mapster - Live events map as a Kibana plugin
johnny-five - JavaScript Robotics and IoT programming framework, developed at Bocoup.
eslint-plugin-security - ESLint rules for Node Security
node - Node.js JavaScript runtime ✨🐢🚀✨
manet - Website screenshot service powered by Node.js, SlimerJS and PhantomJS
metalsmith - An extremely simple, pluggable static site generator.
gatsby - ⚛️📄🚀 Blazing fast React.js static site generator
datacenter-sensor - Sensors for the datacenter to protect against intruders and high temperatures
aws-api.info - aws-api.info
Elasticsearch-Exporter - A small script to export data from one Elasticsearch cluster into another.
release-it - Interactive release tool for Git repos. Bump version, commit, tag, push, build, publish to npm.
DevLab - 🐳 Containerize your development workflow.
atomic-batcher - A simple batching function that allows you to atomically batch a series of operations.
WhoAmI - A mind-reading website.
railsgoat - A vulnerable version of Rails that follows the OWASP Top 10
acme-no-login - Demonstrates a login bypass attack against a sample MongoDB/NodeJS application
jsprime - a javascript static security analysis tool
node-webterm - simple demo application for child_pty and terminal.js.
terminal.js - Javascript terminal emulator library that aims to be xterm complaint and is supposed to work in browsers and node.js.
contained.af - A stupid game for learning about containers, capabilities, and syscalls.
everyauth - node.js auth package (password, facebook, & more) for Connect and Express apps
blueocean-plugin - Blue Ocean is a reboot of the Jenkins CI/CD User Experience
nsp - node security platform command-line tool
shipyard - Composable Docker Management
tips - Most commonly used git tips and tricks.
xsshunter - The XSS Hunter service - a portable version of XSSHunter.com
hummingbird - Real time web analytics using node.js and web sockets
kitematic - Visual Docker Container Management on Mac & Windows
cubism - Cubism.js: A JavaScript library for time series visualization.
js-sequence-diagrams - Draws simple SVG sequence diagrams from textual representation of the diagram
flowchart.js - Draws simple SVG flow chart diagrams from textual representation of the diagram
pug - Pug – robust, elegant, feature rich template engine for Node.js
Raneto-Core - Core module for Raneto
AlgorithmVisualizer - Algorithm Visualizer
passport-google-oauth - Google (OAuth) authentication strategies for Passport and Node.js.
passport - Simple, unobtrusive authentication for Node.js.
cli-md - Markdown for your Terminal
vagrant-lists.github.io - Listing eco-system around Vagrant
AzureDevopsLabs - A collection of labs demonstrating DevOps tools that can be used with Azure
mongodb-mva - You've Got Documents! A MongoDB Jump Start
azure-xplat-cli - Microsoft Azure Cross Platform Command Line
opensource-portal - Microsoft's self-service GitHub management and onboarding portal. It is implemented in Node.js.
gitbook - 📝 Modern documentation format and toolchain using Git and Markdown
vsaq - VSAQ is an interactive questionnaire application to assess the security programs of third parties.
wekan - The open-source Trello-like kanban (built with Meteor)
octotree - Code tree for GitHub
Raneto - Markdown powered Knowledgebase for Nodejs
node-xml2json-command - Convert an XML input to a JSON output, using xml-mapping
underscore-cli - Command-line utility-belt for hacking JSON and Javascript.
appmon - Documentation:
evolve - Web interface for the Volatility Memory Forensics Framework
metrics-graphics - A library optimized for concise and principled data graphics and layouts.
react - A declarative, efficient, and flexible JavaScript library for building user interfaces.
bootstrap - The most popular HTML, CSS, and JavaScript framework for developing responsive, mobile first projects on the web.
graphite-web - A highly scalable real-time graphing system
statsd - Daemon for easy but powerful stats aggregation
Chart.js - Simple HTML5 Charts using the <canvas> tag
assetnote - Push notifications for passive DNS data
bigdesk - Live charts and statistics for Elasticsearch cluster.
jsfuck - Write any JavaScript with 6 Characters: !+
Docbase - Turn .md docs into beautiful sites
hexo-generator-sitemap - Sitemap generator for Hexo.
hexo-generator-feed - Feed generator for Hexo.
hexo - A fast, simple & powerful blog framework, powered by Node.js.
mailtrain - Self hosted newsletter app
reveal-md - reveal.js on steroids! Get beautiful reveal.js presentations from your Markdown files
decktape - PDF exporter for HTML presentation frameworks
bugbountydash - Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd
HackVault - A container repository for my defensive/offensive hacks!
elasticsearch-head - A web front end for an elastic search cluster
bigdesk - Live charts and statistics for Elasticsearch cluster.
elasticsearch-paramedic - A simple tool to inspect the state and statistics about ElasticSearch clusters
cabot - Self-hosted, easily-deployable monitoring and alerts service - like a lightweight PagerDuty
makelogs - Simple script that generates sample logs for testing kibana
sense - A JSON aware developer's interface to Elasticsearch. Comes with handy machinery such as syntax highlighting, autocomplete, formatting and code folding.
es-csv-exporter - Missing CSV export feature for Elasticsearch on Kibana Dashboard. Install this chrome plugin, go to the Kibana Discover tab and start exporting search results as CSV files.
dashing - The exceptionally handsome dashboard framework in Ruby and Coffeescript.
dashkiosk - Managing dashboards on various displays (especially those running on Android)
hashcatJS - An implementation of the hashcat rules engine in javascript
phishJS - Abusing trust boundaries to deliver effective phishing payloads
river5 - A river-of-news RSS aggregator in JS running in Node.
xss_ctf - Capture The Flag (CTF) for JavaScript and HTML escaping challenge
presentations - Material from presentations, workshops, etc.
deepstream.io - deepstream.io server
casperXSS - Reflective/DOM XSS scanner built on casperJS
flat-admin-bootstrap-templates - Free Bootstrap 3 Administrator Site Templates
netjsongraph.js - NetJSON NetworkGraph visualizer based on d3.js
bash-handbook - 📖 For those who wanna learn Bash
visualsearch - A Rich Search Box for Real Data
fullPage.js - fullPage plugin by Alvaro Trigo. Create full screen pages fast and simple
default-shell - Get the user's default shell
angular-dashboard-framework - Dashboard framework with Angular.js and Twitter Bootstrap
HackMyResume - Generate polished résumés and CVs in HTML, Markdown, LaTeX, MS Word, PDF, plain text, JSON, XML, YAML, smoke signal, and carrier pigeon.
nuclide - An open IDE for web and native mobile development, built on top of Atom
APT_CyberCriminal_Campaign -
impress.js - It's a presentation framework based on the power of CSS3 transforms and transitions in modern browsers and inspired by the idea behind prezi.com.
120_presentations - Reveal JS transcriptions for CNIT 120
peerflix - Streaming torrent client for node.js
pm2 - Production process manager for Node.js apps with a built-in load balancer.
burp-retire-js - Burp/ZAP extension that integrate Retire.js repository to find vulnerable Javascript libraries.
boilerplate-templates - Provides boilerplate vulnerability explanations and templates which can easily be used in real-world reports
scanjs - [DEPRECATED] Static analysis tool for javascript code.
prez - Generate Reveal.js slideshows from a set of markdowns
rudra-pcaponly - Network Forensics Framework
timelion - You probably don't want this. Timelion has been merged into Kibana 5. Time series composer for Elasticsearch and beyond.
Ghost - A simple, powerful publishing platform
opensoc-ui - User interface for OpenSOC
cuckoo - Cuckoo Sandbox is an automated dynamic malware analysis system
librenms - Community-based GPL-licensed network monitoring system
Geo-Inference-Attacks -
router-ips - List of common default router IP addresses
BurpKit - Next-gen BurpSuite penetration testing tool
tmpnb - Creates temporary Jupyter Notebook servers using Docker containers.
configurable-http-proxy - node-http-proxy plus a REST API
anti-csrf-plugin - Chrome extension for blocking x-origin cookies
elasticsearch-tools - A collection of elasticsearch command line tools for doing things like bulk importing/exporting and exporting/importing mappings.
elasticsearch-dump - Import and export tools for elasticsearch
web-playground - An enjoyable playground for HTML, JavaScript and CSS
hacker-scripts - Based on a true story
wadi - Wadi Fuzzing Harness
ineed - Web scraping and HTML-reprocessing. The easy way.
NSHeyy-Viz -
examples - Home for Elasticsearch examples available to everyone. It's a great way to get started.
Qbana - Qbana (Ω) is a Kibana3 Fork with additional features and specialized for ntop's nProbe
kibana - 📊 Kibana analytics and search dashboard for Elasticsearch
netgrafio - netgrafio - Visualize your network
scirius - Scirius is a web application for Suricata ruleset management.
dashboard - Your life's personal dashboard.
faraday - Collaborative Penetration Test and Vulnerability Management Platform
react-router - Declarative routing for React
OSXAuditor - OS X Auditor is a free Mac OS X computer forensics tool
moloch - Moloch is an open source, large scale, full packet capturing, indexing, and database system.
MozDef - MozDef: The Mozilla Defense Platform
retire-site-scanner - Site-scanner using phantomjs and retire.js
PALallax - PALallax is a Paloalto Next Generation Firewall Log Collector
elasticsearch-js - Official Elasticsearch client library for Node.js and the browser
kibana-authentication-proxy - Hosts the latest kibana3 and elasticsearch behind Google OAuth2, Basic Authentication or CAS Authentication
sleepy-puppy - Sleepy Puppy XSS Payload Management Framework
vector - Vector is an on-host performance monitoring framework which exposes hand picked high resolution metrics to every engineer’s browser.
linux-dash - A beautiful web dashboard for Linux
pewpew - ⭐ ⭐ ⭐ Build your own IP Attack Maps with SOUND!
write-json-file - Stringify and write JSON to a file atomically
markdown-it - Markdown parser, done right. 100% CommonMark support, extensions, syntax plugins & high speed
user.js - user.js -- Firefox configuration hardening
is-port-reachable - Check if a local or remote port is reachable
RPi-KittyCam - Raspberry Pi app using a camera and PIR motion sensor, written in Node.js with Johnny-Five and Kittydar for cat facial detection
kittydar - [UNMAINTAINED] Face detection for cats in JavaScript - demo for a TXJS talk
plato - JavaScript source code visualization, static analysis, and complexity tool
plato-as-service - Web-Service for plato - JavaScript source code visualization, static analysis, and complexity tool
raptor - Web-based Source Code Vulnerability Scanner
ShadowBuster -
kibana-dashboards - A collection of Kibana 3.X dashboards from the community
scot - Sandia Cyber Omni Tracker (SCOT)
damnvulnerable.me - A deliberately vulnerable modern day app with lots of DOM related bugs
untrusted - A meta-JavaScript adventure game by Alex Nisnevich and Greg Shuflin.
d3 - Bring data to life with SVG, Canvas and HTML. 📊📈🎉
blessed-contrib - Build terminal dashboards using ascii/ansi art and javascript
two.js - A renderer agnostic two-dimensional drawing api for the web.
ChromeFuzzer - fuzz
funfuzz - JavaScript engine & DOM fuzzers
manual_verification - Most of the times during pentest / vulnerability assessment you need to verify a finding before marking it as confirmed or false positive. This repository will try to put in sample code snippets / command's that can be used to perform that.
crossdomain - Exploit insecure crossdomain.xml files.
PastePurify - This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks
lets-chat - Self-hosted chat app for small teams
revelator - Write reveal.js index.html files in YAML.
reveal.js - The HTML Presentation Framework
ansible-commander - A REST interface and GUI for Ansible (in very early development -- developer audiences only)
iot-lab - FIT Iot-LAB repository
Node.Js-Security-Course - Contents for Node.Js Security Course
webpagetest-api - WebPageTest API wrapper for NodeJS
regexper - Regular Expression Visualization Site
H5SC - HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
panxapi.js - A node.js API client for Palo Alto Networks firewalls
university - Community learning experiment
crits - CRITs - Collaborative Research Into Threats

Jupyter Notebook

100days - 100 days of algorithms
data-science-on-gcp - Source code accompanying book: Data Science on the Google Cloud Platform, Valliappa Lakshmanan, O'Reilly 2017
caffe2 - Caffe2 is a lightweight, modular, and scalable deep learning framework.
python-cheat-sheet - Python for Data Science - NumPy, Matplotlib, Pandas, SciKit Learn ...
AdaptiveAttention - Implementation of "Knowing When to Look: Adaptive Attention via A Visual Sentinel for Image Captioning"
DeepLearningForNLPInPytorch - An IPython Notebook tutorial on deep learning for natural language processing, including structure prediction.
PaintsChainer - line drawing colorization using chainer
malware-detection - Malware Detection and Classification Using Machine Learning
TensorFlow-Tutorials - Simple tutorials using Google's TensorFlow Framework
self-driving-car - The Udacity open source self-driving car project
docker-stacks - Opinionated stacks of ready-to-run Jupyter applications in Docker.
altair - Declarative statistical visualization library for Python
mpld3 - D3 Renderings of Matplotlib Graphics
Complete-Python-Bootcamp - Lectures for Udemy - Complete Python Bootcamp Course
PythonDataScienceHandbook - Jupyter Notebooks for the Python Data Science Handbook
data-visualization - Misc data visualization projects, examples, and demos: mostly Python (pandas + matplotlib) and JavaScript (leaflet).
deep-learning-workshop - Deep Learning Workshop : Including a VirtualBox VM with pre-configured Jupyter, Theano, Tensorflow, models and data
aima-python - Python implementation of algorithms from Russell And Norvig's "Artificial Intelligence - A Modern Approach"
CaffeOnSpark -
tensorflow_tutorials - From the basics to slightly more interesting applications of Tensorflow
rep - Machine Learning toolbox for Humans
pattern_classification - A collection of tutorials and examples for solving and understanding machine learning and pattern classification tasks
Data-Analysis-and-Machine-Learning-Projects - Repository of teaching materials, code, and data for my data analysis and machine learning projects.

Kotlin

kubepad - A cluster remote control using a Novation launchpad MIDI controller

Logos

linuxkit - A toolkit for building secure, portable and lean operating systems for containers
iSpy - A reverse engineering framework for iOS

Lua

vulscan - Advanced vulnerability scanning with Nmap NSE
waifu2x - Image Super-Resolution for Anime-Style Art
pytorch-containers - Torch Containers simplified in PyTorch
kong - 🐒 The API Gateway & Microservice APIs Management Layer, built on NGINX
nginx-auth - A demo of how to leverage OpenResty, JSON Web Tokens and OAuth2 to authenticate nginx routes.
dockercraft - Docker + Minecraft = Dockercraft
ntopng - ntopng source code repository
linux-native-backdoors - Repository holding all alternatives of *nix backdoors.
Nmap-Tools - SpiderLabs shared Nmap Tools
quick-scripts - A collection of my quick and dirty scripts
NSE - Some of my work on Nmap Scripts (NSE)
kali-nethunter - The Kali NetHunter Project

Makefile

halcyon-kubernetes - Ansible playbooks for a kubadm-based kubernetes deployment, on supporting any cloud and any kubeadm-enabled OS.
ngrok-k8s - Using ngrok to expose k8s services
hellogopher - Hellogopher: "just clone and make" your conventional Go project
kubernetes-101-for-devs - Up and running with Kubernetes
dcos-docker - Run DC/OS in Docker containers
container-workbook - Container Workbook
elk-stack-docker - Dockerized ELK-stack
community - Kubernetes community content
grr-doc - Documentation for the GRR Rapid Reponse framework
frida - Clone this repo to build Frida
ansibleplaybook-rancher - Ansible playbook to keep a Rancher container running on a docker host

Matlab

machineLearning - supervised and unsupervised algorithms from Andrew Ng's machine learning class
ml-class - Machine learning programming exercises

NSIS

ipscan - Angry IP Scanner - fast and friendly network scanner

Nginx

docker-nginx - Official NGINX Dockerfiles

OCaml

infer - A static analyzer for Java, C, C++, and Objective-C

Objective-C

santa - A binary whitelisting/blacklisting system for Mac OS X
iOS-App-Security-Class - Simple class to check if app has been cracked, being debugged or enriched with custom dylib
Dash-iOS - Dash gives your iPad and iPhone instant offline access to 150+ API documentation sets
proximity - Bluetooth device proximity detection.
RuntimeBrowser - Objective-C Runtime Browser, for Mac OS X and iOS
Antipersona - Don't be yourself, be everyone else
SystemMonitor - iOS application providing you all information about your device - hardware, operating system, processor, memory, GPU, network interface, storage and battery, including OpenGL powered visual representation in real time.
optool - Command Line Tool for interacting with MachO binaries on OSX/iOS
BugHunt-iOS -
terminal-notifier - Send User Notifications on Mac OS X 10.8 from the command-line.
SMSNinja - SMSNinja is a lightweight but highly efficient firewall for blocking and hiding SMS, MMS, iMessages, phone calls and FaceTime on stock Phone and Message Apps.
nv - MultiMarkdown version (with HTML source tab) of Notational Velocity: modeless, mouseless Mac OS X note-taking application
csshx - Automatically exported from code.google.com/p/csshx
IOKitBrowser - Hardware Browser for iOS
AnyBar - OS X menubar status indicator
ssl-pinning-ios-example - Demonstration code for SSL pinning in iOS.
Picture-Map - Shows thumbnails of local pictures on the world map
ShiftIt - Managing windows size and position in OSX

Others

oscon-metrics-tutorial - OSCON Metrics Tutorial
so-you-want-to-onboard-a-devops-engineer - Guidance on how to make your environment easier to onboard for Web Ops Engineers, SRE's and DevOps Practioners
awesome-indie - Resources for independent developers to make money
guide - Kubernetes clusters for the hobbyist.
routersploit-db -
web-security-basics - Web security concepts
DeepLearningBook - MIT Deep Learning Book in PDF format
awesome-cybersecurity - Curated list of awesome cybersecurity companies and solutions.
awesome-sentiment-analysis - 😀😄😂😭 A curated list of Sentiment Analysis methods, implementations and misc. 😥😟😱😤
RootKits-List-Download - This is the list of all rootkits found so far on github and othersites.
knowledge-map - 🌍 Interactive Mind Map for learning anything
awesome-sdn - A awesome list about Software Defined Network (SDN) ,
thank-you-github - An open letter of gratitude to GitHub
Probable-Wordlists - Wordlists sorted by probability originally created for password generation and testing
BreachNotes - Various public documents, whitepapers, articles, data, and analysis about breaches
cluster - CNCF Community Cluster
awesome-wasm - 😎 Curated list of awesome things regarding WebAssembly (wasm) ecosystem.
ML-is-not-magic - Assets used in Machine Learning is Not Magic Tutorial
docker-nexus - Docker image for Sonatype Nexus
linux-container-security-docs - A gitbook for doing a null Bangalore session on linux container security to discuss and teach namespaces, cgroups etc.
awesome-rest - A collaborative list of great resources about RESTful API architecture, development, test, and performance
ansible-prometheus - Ansible role for installing Prometheus monitoring server and node_exporter binary
heroes - Everyone is a hero in their own way. This repo provides a means of capturing the stories for DevSecOps heroes.
awesome-splunk - A curated list of awesome Splunk links
Linux-Kernel-Workshop -
ThreatHunter-Playbook - A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
bash-guide - A guide to learn bash
logstash-various - Various logstash import configs
ApplicationWhitelistBypassTechniques - A Catalog of Application Whitelisting Bypass Techniques
awesome-tensorflow - TensorFlow - A curated list of dedicated resources http://tensorflow.org
ansible-workshop - Ansible workshop - hopefully generic enough that others can use it
developer-roadmap - Roadmap to becoming a web developer in 2017
balanced-employee-ip-agreement - GitHub's employee IP agreement, open sourced and reusable
security-onion - Linux distro for IDS, NSM, and Log Management
PlacesToPostYourStartup - Compiled list of links from "Ask HN: Where can I post my startup to get beta users?"
awesome-markdown - 📝 Delightful Markdown stuff.
employee-handbook -
malware-sample-banker-FEFAD618EB6177F07826D68A895769A8 - Brazilian banker malware identified by Notificacao_Infracao_De_Transito_99827462345231.js
security-101-for-saas-startups - security tips for startups
learn-to-program - Education resources to learn to program
code.mil - An experiment in open source
awesome-devenv - A curated list of awesome tools, resources and workflow tips making an awesome development environment.
Red-Team-Infrastructure-Wiki - Wiki to collect Red Team infrastructure hardening resources
awesome-creative-coding - 🎨 Creative Coding: Generative Art, Data visualization, Interaction Design, Resources.
awesome-command-line-apps - 🐚 Use your terminal shell to do awesome things.
design-patterns-for-humans - Design Patterns for Humans™ - An ultra-simplified explanation
sysmon-config - Sysmon configuration file template with default high-quality event tracing
wardley-maps - A repository for wardley maps related to security topics.
appsec-resources - Resources for developers and security engineers to learn the ropes of application security
awesome-dashboard - A curated list of amazingly awesome dashboards/visualization resources.
awesome-sheet-music - A curated list of awesome sheet music software, libraries and resources.
aws-regions - List of AWS Regions and Availability Zones
frontend-dev-bookmarks - Manually curated collection of resources for frontend web developers.
papers-we-love - Papers from the computer science community to read and discuss.
ideas - 🚀 Ideas for everyone under a CC licence. Feel free to use.
practicalcrypto -
hadoop-attack-library - A collection of pentest tools and resources targeting Hadoop environments
keybase-gpg-github - Step-by-step guide on how to create a GPG key on keybase.io, adding it to a local GPG setup and use it with Git and GitHub.
Awesome-UNAM - A curated list of awesome engineering ecosystem, including UNAM Projects
Java-Deserialization-Cheat-Sheet - The cheat sheet about Java Deserialization vulnerabilities
lectures - Oxford Deep NLP 2017 course
make-the-internet-suck-less -
challenge-bypass-specification -
awesome-go-storage - A curated list of awesome Go storage projects and libraries
vsts-building-windows-server-containers -
AppSecEurope2017 -
Leaked_Malware_SourceCode - Collections of Malware source code
backend-best-practices - An evolving description of general best practices for backend development.
research -
container-devops - How Containers are Disrupting Devops
windows_kernel_resources - Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
k8s-playbooks - Some ansible playbooks for managing my k8s cluster(s)
awesome-linux-containers - A curated list of awesome Linux Containers frameworks, libraries and software
sass-textmate-bundle - Sass support for TextMate & Sublime Text (2 & 3)
site-reliability-engineer-handbook -
Projects-Solutions - 📟 Links to others' solutions to Projects (https://github.com/karan/Projects/)
ml-videos - A collection of video resources for machine learning
system-design-interview - System design interview for IT companies
hackercon - List of Free Software and IT Security related conferences
ansible-playbooks-in-practice - Repository contains all type of ansible playbooks
Go-Learn - Get going with Go
awesome-gif - 😎 A curated list of awesome GIF resources
ThreatPinchLookup - Documentation and Sharing Repository for ThreatPinch Lookup Chrome Extension
NodeSS - NodeSS: Node.js Security Scanner : This container will scan your Nodejs code for dependency vulnerabilities, print the result and exits
awesome-iot-hacks - A Collection of Hacks in IoT Space so that we can address them (hopefully).
WoW-Stuff -
awesome-javascript-learning - A tiny list limited to the best JavaScript Learning Resources
awesome-api - A curated list of awesome resources for design and implement RESTful API's.
workshops -
docs - RackHD documentation
hardening_elasticsearch - Building a elasticsearch cluster and hardening it for production use.
Penetration-Testing - List of awesome penetration testing resources, tools and other shiny things
awesome-db - A curated list of amazingly awesome database libraries, resources and shiny things by https://www.numetriclabz.com/
Machine-Learning-for-Cyber-Security - Curated list of tools and resources related to the use of machine learning for cyber security
awesome-robotics - A list of awesome Robotics resources
List-of-web-application-security - List of web application security
Exploit-Exercises-Nebula - Exploit-Exercises Nebula全攻略——Linux平台下的漏洞分析入门
kubeadm - Aggregator for issues filed against kubeadm
Public-APIs - 📚 A public list of APIs from round the web.
101-AWS-IAM-Hacks -
awesome-for-beginners - A list of awesome beginners-friendly projects.
awesome-pipeline - A curated list of awesome pipeline toolkits inspired by Awesome Sysadmin
DevOpsLinks-Is-Awesome - Curated & Must Read Content For DevOps, SysAdmins & Fullstack Developers.
Incident-Response-Plan - Boilerplate Incident Response Plan from "Starting Up Security"
lowlevelprogramming-university - How to be low-level programmer
tools - 🔧 Tools of the trade
reading-material - 📚 Stuff to read up
guides - Article back-end for hack.guides() website
awesome-serverless - ☁️ A curated list of awesome services, solutions and resources for serverless / nobackend applications.
free-for-dev - A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev
stack-on-a-budget - A collection of services with great free tiers for developers on a budget
encryption-works - Encryption Works: How to Protect Your Privacy in the Age of NSA Surveillance
awesome-cyber-skills - A curated list of hacking environments where you can train your cyber skills legally and safely
search-guard-docs - Official documentation for Search Guard
intro-to-kubernetes-workshop - Intro to Kubernetes Workshop
awesome-ddd - A curated list of Domain-Driven Design (DDD), Command Query Responsibility Segregation (CQRS), Event Sourcing, and Event Storming resources
mac-dev-playbook - Mac setup and configuration via Ansible.
sublime-tomorrow-theme - Tomorrow Color Schemes for SublimeText 2
the-onion-diaries - Blog-type notes about building Onion sites
lambda-advisory-db - A database of vulnerabilities associated with functional languages
eslogd - Linux daemon that replicates events to a central ElasticSearch server in real-time
kubernetes-elasticsearch-cluster - Elasticsearch cluster on top of Kubernetes made easy.
docker-elasticsearch-kubernetes - Ready to use Elasticsearch + Kubernetes discovery plug-in Docker image.
Mackenzie - AWS Lambda Infection Toolkit // Persistent Lambda Malware PoC
awesome-p2p - List of great p2p resources
docker-elk - The ELK stack powered by Docker and Compose.
machine-learning-for-software-engineers - A complete daily plan for studying to become a machine learning engineer.
awesome-bits - 💻 A curated list of awesome bitwise operations and tricks
free-tech-ebooks-from-packtpub - A collection of free ebooks from Packt Publishing [Regularly Updated]
awesome-javascript - 🐢 A collection of awesome browser-side JavaScript libraries, resources and shiny things.
wire - 〰️ Overview of the open source code for Wire
awesome-ml-for-cybersecurity - Machine Learning for Cyber Security
ThreatHunting - An informational repo about hunting for adversaries in your IT environment.
js-vuln-db - A collection of JavaScript engine CVEs with PoCs
icinga2-ansible - Ansible Playbook for Icinga 2
px-dev - PX-Developer is scale-out storage for containers. Run Cassandra, Jenkins, or any application in Docker, with enterprise storage functionality on commodity servers
MobileApp-Pentest-Cheatsheet - The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
wit - Natural Language Interface for apps and devices
CVE-HOWTO - CVE assignment documentation
awesome-no-login-web-apps - 🌟 Awesome (free) web apps that work without login
linux-kernel-exploitation - A bunch of links related to Linux kernel fuzzing and exploitation
awesome-hyper - 🖥 Delightful Hyper plugins, themes, and resources
awesome-serverless - Curated list of resources related to the Serverless project
awesome-osint - 😱 A curated list of amazingly awesome OSINT
reverseengineering-reading-list - A list of Reverse Engineering articles, books, and papers
onboarding - A list of resources we at flyeralarm use to get new developers up and running
alpine-rails - A lightweight Rails image based on Alpine Linux
channels - A collection of useful YouTube channels for javascript developers and web designers
devops-glossary - The Complete DevOps Glossary - We ran #100Days100DevOpsTools campaign in past. Join the slack channel to discuss more.
easy-application - 400 software engineering companies that are easy to apply to
cs-video-courses - List of Computer Science courses with video lectures.
awesome-test-automation - A curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com
quick-look-plugins - List of useful Quick Look plugins for developers
serverless-docker - Build serverless apps with Docker
my-presentations -
DockerDo - Docker How To Do's
awesome-spark - Curated list of Laravel Spark ressources
graphics-resources - 📝 a list of graphic programming resources
awesome-pcaptools - A collection of tools developed by other researchers in the Computer Science area to process network traces. All the right reserved for the original authors.
servo - The Servo Browser Engine
awesome-linux-dev - A collection of awesome Linux applications and tools for developers.
go-lang-cheat-sheet - An overview of Go syntax and features.
awesome-nodejs-projects - Curated list of awesome open-source applications made with Node.js
maintainers-guide-to-staying-positive - Don't let the trolls get you down! Use this reference to avoid open-source burnout and keep doing what you love: writing code! Contributions and any kind of improvements are very welcome!
awesome-static-analysis - A curated list of static analysis tools, linters and code quality checkers for various programming languages
dockprom - Docker hosts and containers monitoring with Prometheus, Grafana, cAdvisor, NodeExporter and AlertManager
ipfs - IPFS - The Permanent Web
awesome-hacking - A curated list of awesome Hacking tutorials, tools and resources
Awesome-Hacking - A collection of various awesome lists for hackers, pentesters and security researchers
awesome-ideation-tools - Problem solving and idea generation tools
offensiveinterview - Interview questions to screen offensive (red team/pentest) candidates
personal-security-checklist - Personal security checklist for securing your devices and accounts.
open-source-ideas - 👐 Ever had a cool idea to an Open Source project but didn't have the time to implement yourself? Let someone else give it a try!
awesome-mesos - Everything about Apache Mesos
remote-in-japan - Tech companies in Japan that hire remote workers
Projects - 📃 A list of practical projects that anyone can solve in any programming language.
awesome-ruby - 💎 A collection of awesome Ruby libraries, tools, frameworks and software
coding-interview-university - A complete computer science study plan to become a software engineer.
Security-Data-Analysis - A series of labs that will help users apply various data science techniques to security related data.
RobotsDisallowed - A harvest of the Disallowed directories from the robots.txt files of the world's top websites.
awesome-security - A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
art-of-readme - 💌 Learn the art of writing quality READMEs.
awesome-artificial-intelligence - A curated list of Artificial Intelligence (AI) courses, books, video lectures and papers
awesome-minio - A curated list of Minio community projects.
MIDAS - Mac Intrusion Detection Analysis System
bug-bounty-reference - Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
awesome-devops - A curated list of resources for Devops
awesome-devops - This is the awesome list with all open source and free applications that you can use in your management
awesome-remote-job - A curated list of awesome remote jobs and resources. Inspired by https://github.com/vinta/awesome-python
awesome-RemoteWork - Resources for remote workers: approaches, hiring page, remote life and more.
remote-working - 收集整理远程工作相关的资料
handbook - My personal coding style guide and development environment handbook.
smq - A collection of SQL queries to social media datasets.
Internet-Of-Things-Pentesting-Framework -
pcaps - Public Repository of all Publicly Available Packet Captures that I've used or come across
awesome-threat-intelligence - A curated list of Awesome Threat Intelligence resources
best-practices - Tidbits of developer best practices from around the web
awesome-sre - A curated list of awesome Site Reliability and Production Engineering resources.
ansible-docker-presentation - Ansible playbooks for AnsibleFest presentation on the Docker modules
non-tech-books-for-developers - A list of non-tech books crowdsourced by the Hacker News community.
linux-re-101 - A collection of resources for linux reverse engineering
Awesome-Fuzzing - A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
penetration-testing-tools - Penetration Testing tools - one repo to clone them all... containing latest pen testing tools
ipsum - Daily feed of bad IPs (with blacklist hit scores)
PragmaticNetSecCloud - Pragmatic Network Security for Cloud and Hybrid Networks
awesome-devsecops - An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
COPS - Collaborative Open Playbook Standard
how-to-security - Advice on how to do computer things securely for non-experts
ctifeeds - Cyber Threat Intelligence Feeds
presentations - A centralized location for all presentations I've given at various conferences
docker-kubernetes-tls-guide - Step by step guide on how to secure Docker and Kubernetes using TLS with CloudFlare’s CFSSL
hardening - Repository of Hardening Guides
command-line-one-liners - Command line one-liners.
One-Click-to-Be-Pro - A list of the best resources to help you become a pro
Security_list - Great security list for fun and profit
awesome-python-books - 📚 Directory of Python books
devops-learning-resources - Where can a junior engineer go to learn about ops, devops, and infrastructure?
awesome-scifi - Sci-Fi worth consuming
awesome-flask - A curated list of awesome Flask resources and plugins
Application-Security - A place for all type of application security assessment checklist and cheatsheets.
awesome-hacker-news - Awesome Hacker News: a collection of awesome Hacker News apps, libraries, resources and shiny things.
awesome-reversing - A curated list of awesome reversing resources
awesome-bug-bounty - A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
awesome-microservices - A curated list of Microservice Architecture related principles and technologies.
Cheatsheets - Helped during my OSCP lab days.
security-guide-for-developers - Security Guide for Developers (实用性开发人员安全须知)
awesome-bots - Awesome Links about bots.
awesome-dev-blogs - awesome-dev-blogs
graylog-guide-ossec - How to write OSSEC alerts into Graylog
pentest_study - 从零开始内网渗透学习
ics-default-passwords - List of default passwords for Industrial Control Systems
presentations - Conference Talks and Proposals
Linux-Reference-Guide - Personal Reference Guides I've created for myself
awesome-programming-for-kids - A curated list of resources for teaching kids programming.
ansible-elk-stack - ♻️ elk stack with ansible
ops-books - Book Recommendations for the Infrastructure Engineer ;)
wordpress_plugin_security_testing_cheat_sheet - WordPress Plugin Security Testing Cheat Sheet
github-cheat-sheet - A list of cool features of Git and GitHub.
infosec-engineering - A reading list for infosec engineers
awesome-vue - A curated list of awesome things related to Vue.js
Project-Ideas - A place to discuss potential projects for students of the ISIS Lab.
TopDeepLearning - A list of popular github projects related to deep learning
mentoring - The source of a distributed mentoring movement.
datasharing - The Leek group guide to data sharing
defcon24-infra-monitoring-workshop - Defcon24 Workshop Contents : Ninja Level Infrastructure Monitoring
MachineLearningCourse - 机器学习精简入门教程
ansible-lockdown - Ansible playbook roles for security
vagrant-azure-example - I found the documentation of how to get the vagrant-azure plugin working lacking, so here are some more complete instructions
docker-monitoring - Docker-Monitoring based on Cadvisor, InfluxDB, and Grafana
prometheus - A docker-compose stack for Prometheus monitoring
ansible-windows-playbooks - ansible playbooks for windows
elasticsearch_examples - Just some examples for a YouTube video on basic elasticsearch techniques such as indexing, mapping, querying, editing.
kubernetes-the-hard-way - Bootstrap Kubernetes the hard way on Google Cloud Platform. No scripts.
awesome-public-datasets - An awesome list of high-quality open datasets in public domains (on-going). By everyone, for everyone!
DWF-Documentation - DWF Documentation, Policy and Guides
docker-birthday-3 -
ansible-elasticsearch - Ansible role for Elasticsearch
ansible-role-mkdocs - MkDocs for Ubuntu 14.04
fantastic-ios-animation - ☔ A collection of iOS animation repos
ansible-rundeck - Ansible Rundeck role
2016-OSCON-containers-at-scale-with-Kubernetes -
structured-text-tools - A list of command line tools for manipulating structured text data
Security-Research - Misc resources and documents on my security research
CheatSheets - Cheat sheets for various projects.
BashOnWindows - Issues found within and using Bash on Ubuntu on Windows
docker-and-containers-ebooks - A series of ebooks on Docker and the container ecosystem.
openstack - Repository containing OpenStack repositories
awesome-docker - 🐳 A curated list of Docker resources and projects
awesome-kubernetes - A curated list for awesome kubernetes sources 🚢🎉
keys - Tools and ideas to help with PGP keys and fingerprint verification
Docker-Secure-Deployment-Guidelines - Deployment checklist for securely deploying Docker
lessobviouschecklist - The Less Obvious Conference Checklist
AndroidSlides -
Data-Science-and-ML-Essentials -
docker-cheat-sheet - Docker Cheat Sheet
GettingStartedWithELK - Getting Started with ELK
awesome-static-website-services - A curated list of awesome static websites services
awesome-dotfiles - A curated list of dotfiles resources.
elasticsearch-cloud-aws - AWS Cloud Plugin for Elasticsearch
elasticsearch-cloud-azure - Microsoft Azure discovery and snapshot/restore plugin for Elasticsearch
elasticsearch-migration - This plugin will help you to check whether you can upgrade directly to the next major version of Elasticsearch, or whether you need to make changes to your data and cluster before doing so.
afterglow-theme - A minimal dark Theme for Sublime Text 2 and 3
mousejack - MouseJack device discovery and research tools
awesome-sec-talks - A collected list of awesome security talks
owasp-asvs-markdown - OWASP ASVS 3.0 in Markdown
Forensics-CheatSheets - Terminal Forensics CheatSheets
ios-good-practices - Good ideas for iOS development, by Futurice developers.
awesome-windows-exploitation - A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom
community_bash_style_guide - (community-driven) guide to writing useful and modern bash scripts. seriously.
awesome-relay - Awesome resources for Relay
patterns - A catalogue of Rust design patterns
Yara-Rules - A collection of Yara rules I have created so far
Snort-Rules - Collection of my test rules and Submissions to Emerging-Sigs
cocktails_for_programmers - Сocktails for programmers. Коктейли для программистов.
null_puliya_Linux_basics -
awesome-browser-extensions-for-github - A collection of awesome browser extensions for GitHub.
DevopsWiki - A wiki of Devops Tools, Tutorials and Scripts
awesome-computer-history - An Awesome List of computer history videos, documentaries and related folklore
docker-elk - Creating an ELK stack could not be easier.
deep-residual-networks - Deep Residual Learning for Image Recognition
HackStory - See you on https://medium.com/@tfairane
osx-terminal-themes - Color schemes for default Mac OS X Terminal.app
Google-dorks - Common google dorks and others you prolly donn know :P
botnet-research-papers - Botnet research papers
RWMC - RWMC is no longer supported. Please use PowerMemory.
notes - Old repo - moved to scattered-thoughts.net
MobileApp-Pentest-Cheatsheet - The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
awesome-learning - A curated list for DevOps learning resources. Join the slack channel to discuss more.
Research-Papers - Collection of various research papers I find interesting
XSS.png - A XSS mind map ;)
awesome-app-ideas - List of awesome app ideas
awesome-hacking-spots - 💻 ☕ List of Awesome Hacking places, organised by Country and City, listing if it features power and wifi
Malware - Course materials for Malware Analysis by RPISEC
awesome-npm - Awesome npm resources and tips
awesome-incident-response - A curated list of tools for incident response
dns-fuzzing - Repository to store unique seeds for DNS server fuzzing
awesome-infosec - A curated list of awesome infosec courses and training resources.
SCADAPASS - SCADA StrangeLove Default/Hardcoded Passwords List
bigipsecurity - This document describes common misconfigurations of F5 Networks BigIP systems.
sec-paper - awesome security paper
research-tool - some useful tools for research work
remote-jobs - A list of semi to fully remote-friendly companies in tech
awesome-iot - A curated list of awesome Internet of Things projects and resources.
awesome-datascience - 📝 An awesome Data Science repository to learn and apply for real world problems.
dive-into-machine-learning - Dive into Machine Learning with Python Jupyter notebook and scikit-learn
Machine-Learning-Tutorials - machine learning and deep learning tutorials, articles and other resources
awesome-interview-questions - A curated awesome list of lists of interview questions. Feel free to contribute! 🎓
linux-sysadmin-interview-questions - Collection of Linux Sysadmin/DevOps interview questions
APTnotes - Various public documents, whitepapers and articles about APT campaigns
docker-webscan - Dockerized versions of various web security scanning tools and utilities
awesome-web-hacking - A list of web application security
OpenVAS-Plugins-hardening - Plugins de scanning de Hardening para OpenVAS
dockerized-net-tools - Collection of Dockerized Open Source Network Monitoring, Performance and Management Related Tools
sagan-rules - Rule sets for Sagan
malfeed - Feed for verious malicious IPs such as malware and botnets
awesome-cli-apps - A curated list of command line apps
awesome-macos-screensavers - A curated list of screensavers for Mac OS X
android-security-awesome - A collection of android security related resources
Cheatsheets - Penetration Testing/Security Cheatsheets
pentest-bookmarks - a collection of handy bookmarks
tbhm - The Bug Hunters Methodology
computer-science - 🎓 Path to a free self-taught education in Computer Science!
awesome-osx-command-line - Use your OS X terminal shell to do awesome things.
ansible-switchconfig - An example Ansible role for a blog post I wrote
ansible-autozone - A collection of ansible playbooks and related files to assist in the zoning configuration on a Cisco Nexus switch
SparkFun-Eagle-Libraries - SparkFun's Public Eagle PCB Footprints using Eagle 6.0+
API - Documentation and Samples for the Official HN API
free-programming-books - 📚 Freely available programming books
linux-insides - A little bit about a linux kernel
better-java - Resources for writing modern Java
3030 - %%30%30 Game: Don't touch the trees! (Thanks, Chrome dev team!)
OWASP-Testing-Guide - OWASP Testing Guide
DevGuide - The OWASP Guide
awesome-macOS -  A curated list of awesome applications, softwares, tools and shiny things for macOS.
python-pentest-tools - Python tools for penetration testers
security-process-docs -
tool-repos - Tracking various tools that fit in the monitoring and metrics space
itpol - Useful IT policies
training - Training materials crafted and publicly provided by Red Naga members
xssshell-xsstunnell - XSS Tunnel is a standard HTTP proxy which sits on an attacker’s system. XSS Shell is a powerful XSS backdoor, in XSS Shell one can interactively send requests and get responses from victim and it allows you to keep the control of session.
sublime-ansible - Syntax highlighting for Ansible
threat_data - A centralized location for threat data from the Animus sensor network
canari - Local and Remote Maltego Rapid Transform Development Framework
paloalto-logstash - Logstash patterns and config for PaloAlto Networks firewall logs
awesome-shell - A curated list of awesome command-line frameworks, toolkits, guides and gizmos. Inspired by awesome-php.
the-art-of-command-line - Master the command line, in one page
awesome-d3 - A list of D3 libraries, plugins and utilities
slides - Some slides from some presentations I have given
awesome-nodejs - ⚡ Delightful Node.js packages and resources
awesome - 😎 Curated list of awesome lists
awesome-vcs - 📝 A curated list of awesome libraries that help you version control everything  
research -
GoBooks - List of Golang books
awesome-malware-analysis - A curated list of awesome malware analysis tools and resources
awesome-sysadmin - A curated list of amazingly awesome open source sysadmin resources inspired by Awesome PHP.
awesome-pentest - A collection of awesome penetration testing resources, tools and other shiny things
webappdefaultsdb - A DB of known Web Application Admin URLS, Username/Password Combos and Exploits
XSSChallengeWiki - Welcome to the XSS Challenge Wiki!
awesome-sysadmin - A curated list of amazingly awesome open source sysadmin resources.
wiki.secmobi.com - SecMobi Wiki is a collection of mobile security resources.

PHP

herokuish - Utility for emulating Heroku build and runtime tasks in containers
security-research-pocs - Proof-of-concept codes created as part of security research done by Google Security Team.
InvoicePlane - A free and open source invoicing application. Find out more at https://invoiceplane.com
dockerised-php - Docker setup for PHP applications using PHP7-FPM and Nginx
piwik - Liberating Web Analytics. Star us on Github? +1. Piwik is the leading open alternative to Google Analytics that gives you full control over your data. Piwik lets you easily collect data from websites, apps & the IoT and visualise this data and extract insights. Privacy is built-in. We love Pull Requests!
Local-file-disclosure-SQL-Injection-Lab - This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. If you have any doubt, ping me at https://twitter.com/IndiShell1046 :)
BookStack - A platform to create documentation/wiki content built with PHP & Laravel
readityourself - Readt It Yourself
wallabag - wallabag is a self hostable application for saving web pages.
rss-bridge - The RSS feed for websites missing it
ifttt-webhook - ♻️ A webhook middleware for the ifttt.com service
concierge - Web Management & Secure Access Control of AWS Security Groups. Allows you to create IP leases for incoming connections to AWS instances. Also, allows creating invites to allow guest access by URL/Email Invites.Uses two factor authentication for additional security.
morgue - post mortem tracker
Security - Repository of my Computer and Information Security work.
OpenVPN-Admin - Install and administrate OpenVPN with a web interface (logs visualisations, users managing...)
DVWS - OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.
AdminLTE - Pi-hole Dashboard for stats and more
web-malware-collection - Clone of svn repository of http://insecurety.net/projects/web-malware/ project
supervisord-monitor - Supervisord Monitoring Tool
Scanners-Box - [Project-Kob-6]The toolbox of open source scanners - 安全行业从业人员自研开源扫描器合集👻
kimai - Kimai open source time tracking
phpvulhunter - A tool that can scan php vulnerabilities automatically using static analysis methods
twitteroauth - The most popular PHP library for use with the Twitter OAuth REST API.
so-sql-injections - SQL injection vulnerabilities in Stack Overflow PHP questions
xss_payloads - Exploitation for XSS
Shaarli - The personal, minimalist, super-fast, database free, bookmarking service - community repo
alienvault-ossim - Alienvault ossim
regexp-security-cheatsheet -
dvws - Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities.
wivet - Web Input Vector Extractor Teaser
MCIR - The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of configurable vulnerability testbeds.
Wikitten - Wikitten is a small, fast, PHP wiki, and the perfect place to store your notes, code snippets, ideas, and so on.
daux.io - Daux.io is an documentation generator that uses a simple folder structure and Markdown files to create custom documentation on the fly. It helps you create great looking documentation in a developer friendly way.
gruik - Gruik ! An open-source markdown note-taking web app. [ABANDONED PROJECT]
VulApps - 快速搭建各种漏洞环境(Various vulnerability environment)
dropplets - A minimalist markdown blogging platform.
awesome-startups - ❤️ A curated list of awesome startups
offline-sync - Simple Offline Data Synchronization for Mobile Web and PhoneGap Applications
411 - An Alert Management Web Application
php-malware-finder - Detect potentially malicious PHP files
labs - This is a collection of tutorials for learning how to use Docker with various tools. Contributions welcome.
SQLMAP-Web-GUI - PHP Frontend to work with the SQLMAP JSON API Server (sqlmapapi.py) to allow for a Web GUI to drive near full functionality of SQLMAP!
Search-Replace-DB - A PHP search replace tool for quickly modifying a string throughout a database. Useful for changing the base URL when migrating a WordPress site from development to production.
envoy -
phansible - Phansible - generate Vagrant + Ansible dev environments for PHP
bitcoin_public_data - Bitcoin's public activity data.
breakout - A context-aware output escaping library
ifsc - 🏦 IFSC Codes Repository
hctf2015-all-problems - hctf2015 all problems and writeups from authors
firetable - Firetable is a tool to maintain an IPtables firewall. Each interface can be configured seperatly via its own configuration file, which holds an easy and human readable syntax.
Sn1per - Automated Pentest Recon Scanner
CSRF-Protector-PHP - CSRF Protector library: standalone library for CSRF mitigation
Sn1per - Automated Pentest Recon Scanner
parsoalto - Palo Alto Networks Rule Parser
masscan-web-ui - MASSCAN Web UI
xvwa - XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
MISP - MISP - Malware Information Sharing Platform & Threat Sharing
FreeGeoDB - Free database of geographic place names and corresponding geospatial data
fuzzdb - Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
DVWA - Damn Vulnerable Web Application (DVWA)
wp-security - Wordpress security functions for paranoid folks. (themes functions.php and .htaccess). Take what you want, leave what you think should be added to it.
pan-configurator - Framework and utilities to easily manage and edit Palo Alto Network PANOS devices
Alfred-Workflows - Make your Alfred more powerful. (include Workflows, Extensions and Themes)
rips - RIPS - A static source code analyser for vulnerabilities in PHP scripts
awesome-appsec - A curated list of resources for learning about application security
SecLists - SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
Pico - Pico is a stupidly simple, blazing fast, flat file CMS.

PLSQL

writeups - Write-ups for stuff like CTFs.

Perl

freeaudit - Packaging audit toolkit using vulners.com vulnerability database
Opsview-elasticsearch - Opsview checks for elasticsearch
Rex - A framework for server orchestration and to simplify system administration
elsa - Enterprise Log Search and Archive
gitolite - Hosting git repositories -- Gitolite allows you to setup git hosting on a central server, with very fine-grained access control and many (many!) more powerful features.
sysadmin-util - Tools for Linux/Unix sysadmins.
pastemon - pastebin.com Content Monitoring Tool
shelling - SHELLING - an offensive approach to the anatomy of improperly written OS command injection sanitisers
ackack - A program to monitor network traffic and detect unauthorized sessions.
sec - Simple Event Correlator releases
threatbutt - Threatbutt Suite
feedgnuplot - Tool to plot realtime and stored data from the commandline, using gnuplot. This is the repo for 'feedgnuplot' on CPAN
defcon-vm - Files from my DEFCON CTF VM.
dotfiles - ©️ home! sweet home
owasp-modsecurity-crs - OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
browsersploit - BrowserExploit is an advanced browser exploit pack for doing internal and external pentesting, helping gaining access to internal computers.
dvcs-ripper - Rip web accessible (distributed) version control systems: SVN/GIT/HG...
packetfence - PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) solution. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, powerful BYOD management options, 802.1X support, layer-2 isolation of problematic devices; PacketFence can be used to effectively secure networks small to very large heterogeneous networks.
forensicscanner - Forensic Scanner
massive-octo-spice - the fastest way to consume threat intelligence
vbscan - OWASP VBScan is a Black Box vBulletin Vulnerability Scanner
cisco-global-exploiter - cisco-global-exploiter : This tool detects 14 different vulnerabilities on Cisco routers and switches
sec-tools - Docker images for infosec tools
nikto - Nikto web server scanner
scripts - Various scripts for penetration testing
zonemaster - The Zonemaster Project
parsers - parsers for different types of logs
afterglow - graph visualization tool
Linux_Exploit_Suggester - Linux Exploit Suggester; based on operating system release number
sysadvent - Systems Administrator Advent Calendar
O-Saft - O-Saft - OWASP SSL advanced forensic tool
PAN-OS-API - Some perl scripts to get informations from a PaloAlto Network appliance.
dfis - Digital Forensic Investigative Scripts

Perl6

metasploit-vulnerability-emulator - Created by Jin Qian via the GitHub Connector

PowerShell

IR-Tools - IR-Tools - PowerShell tools for IR
RedTeamPowershellScripts - Powershell script that search through the Windows event logs for specific user
docker-windows-box - Various Vagrant envs with Windows 2016/10 and Docker, Swarm mode, et al.
WMI_Monitor - Log newly created WMI consumers and processes
PowerMeta - PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of those files from the target domain. After retrieving the files, the metadata associated with them can be analyzed by PowerMeta. Some interesting things commonly found in metadata are usernames, domains, software titles, and computer names.
MimikatzHoneyToken - This is a logon script used to detect the theft of credentials by tools such as Mimikatz
Tater - Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec
CrackMapExecWin - The great CrackMapExec tool compiled for Windows
SeeCLRly - Fileless SQL Server CLR-based Custom Stored Procedure Command Execution
PESecurity - PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
AdEnumerator - Active Directory enumeration from non-domain system.
MailSniper - MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Posh-SecMod - PowerShell Module with Security cmdlets for security work
Kansa - A Powershell incident response framework
Event-Forwarding-Guidance - Configuration guidance for Windows Event Forwarding and Windows Event Log monitoring. iadgov
PowerShellArsenal - A PowerShell Module Dedicated to Reverse Engineering
packer-templates - Templates for creating vagrant boxes
azure-docs -
redsnarf - RedSnarf is a pen-testing / red-teaming tool for Windows environments
Azurite - Enumeration and reconnaissance activities in the Microsoft Azure Cloud.
PSHunt - Powershell Threat Hunting Module
nishang - Nishang - PowerShell for penetration testing and offensive security.
windows-pentest - Windows Pentest Scripts
Misc-PowerShell-Stuff - random powershell goodness
Generate-Macro - This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.
DefCon24 - DefCon24
DevTestProd -
misc-scripts - A collection of my miscellaneous scripts
Empire - Empire is a PowerShell and Python post-exploitation agent.
PoshPAIG - PowerShell UI used for auditing and installing updates from WSUS to local and remote systems
TestScripts -
Javascript-Backdoor - Learn from Casey Smith @subTee
Pass-the-Hash-Guidance - Configuration guidance for implementing Pass-the-Hash mitigations. iadgov
PresidioLab - Random stuff for the Presidio Engineering Lab
NetRipper - NetRipper - Smart traffic sniffing for penetration testers
Inveigh - Inveigh is a Windows PowerShell LLMNR/mDNS/NBNS spoofer/man-in-the-middle tool
PowerSploit - PowerSploit - A PowerShell Post-Exploitation Framework

Protocol Buffer

googleplay-api - Google Play Unofficial Python API

Puppet

ubuntu-boxen - My notebook setup using Puppet and basic idea from GitHub Boxen
vagrant-dev-box - My general purpose vagrant dev box

Python

testinfra - Testinfra test your infrastructures
wiwo - wiwo is a distributed 802.11 monitoring and injecting system that was designed to be simple and scalable, in which all workers (nodes) can be managed by a Python framework.
WindowsExploits - Windows exploits, mostly precompiled.
droidbox - Dynamic analysis of Android apps
zappa-tensorflow-poc - Getting TensorFlow running on AWS Lambda
jackhammer - Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
ParlAI - A framework for training and evaluating AI models on a variety of openly available dialog datasets.
RouterExploitScan - RouterExploit
OWASP-VWAD - The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
expdev -
python-docs-samples - Code samples used on cloud.google.com
forseti-security - Security tools for visibility, detection, and policy enforcement on Google Cloud Platform
aws-credential-replacer - Replace placeholders in files with credstash
git-101-tutorial - Guided git intro in a real shell, using Docker
GrimoireELK -
vault-tendril - A tool to manipulate secrets using Hashicorp's vault
kargo - Setup a kubernetes cluster
subuser - Run programs on linux with selectively restricted permissions.
shadowbroker - The Shadow Brokers "Lost In Translation" leak
molecule - Automated testing for Ansible roles
pentest-wiki - PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
credstash - A little utility for managing credentials in the cloud
Cyber-Defence - Information released publicly by NCC Group's Cyber Defence team
tv - Quickly view (satellite) imagery directly in your terminal using Unicode 9.0 characters and true color.
dtf - Android Device Testing Framework ("dtf")
mimipenguin - A tool to dump the login password from the current linux user
HaboMalHunter - HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
Delorean - NTP Main-in-the-Middle tool
IIS_exploit - Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the wild in July or August 2016.
AuthMatrix - AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
Aker - SSH bastion/jump host
dynamodb-continuous-backup - Continuous backup automation for Amazon DynamoDB
RNN-Tutorial - Recurrent Neural Networks - A Short TensorFlow Tutorial
DeDRM_tools - DeDRM tools for ebooks
localstack - A fully functional local AWS cloud stack. Develop and test your cloud apps offline!
cupp - Common User Passwords Profiler (CUPP)
system-design-primer - Learn how to design large-scale systems. Prep for the system design interview. Includes Anki flashcards.
sovereign - A set of Ansible playbooks to build and maintain your own private cloud: email, calendar, contacts, file sync, IRC bouncer, VPN, and more.
Logstash-Configs - Contains log parsers for Logstash for many systems and applications. Also contains many methods of augmenting logs.
PyPDF2 - A utility to read and write PDFs with Python
collectd-cloudwatch - A collectd plugin for sending data to Amazon CloudWatch
Workshops -
inquisitor - Opinionated tool for easily and accurately profiling the internet exposure of target organisations using OSINT sources
python-ftfy - Given Unicode text, make its representation consistent and possibly less broken.
pdf-table-extract - Extract tables from PDF pages.
seq2seq - A general-purpose encoder-decoder framework for Tensorflow
ansible-lint - Best practices checker for Ansible
slack-auditor - Provides an easy way to collect and send Slack access & integration logs.
zentral - Zentral is a framework to gather, process, and monitor system events and link them to an inventory.
pystemon - Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
ggrc-core - GGRC Core
travis-pls - A utility for disturbing standard output to keep Travis jobs alive.
nsot - Network Source of Truth is an open source IPAM and network inventory database
sulley - A pure-python fully automated and unattended fuzzing framework.
dockerscan - Docker security analysis & hacking tools
subdomain3 -
ML-From-Scratch - Bare bones Python implementations of some of the fundamental Machine Learning models and algorithms.
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
securitybot - Distributed alerting for the masses!
awesome-slides - Awesome Slides for Presentation
keep - A Meta CLI toolkit : Personal shell command keeper
droopescan - A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
mipt-ctf - A small course on CTF (wargames) for beginners [in Russian]
splunk-add-on-jira-alerts - Splunk custom alert action for Atlassian JIRA
s3env - Manipulate a simple key/value JSON object file in an S3 bucket
gdrive-lambda - gdrive integration with lambda
pytorch-generative-adversarial-networks - A very simple generative adversarial network (GAN) in PyTorch
mercure - Mercure is a tool for security managers who want to train their colleague to phishing.
docker-py - A Python library for the Docker Engine API
flask-bootstrap - Ready-to-use Twitter-bootstrap for use in Flask.
sipvicious - SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems.
mantl - Mantl is a modern platform for rapidly deploying globally distributed services
flansible - super-duper-simple rest api for ansible tasks
Tunna - Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.
OWASP-ZSC - OWASP ZSC - Shellcode/Obfuscate Code Generator
pandocfilters - A python module for writing pandoc filters, with a collection of examples
pyandoc - Python wrapper for Pandoc—the universal document converter.
signature-base - Signature base for my scanner tools
hubcommander - A Slack bot for GitHub organization management
Fwaf-Machine-Learning-driven-Web-Application-Firewall - Machine learning driven web application firewall to detect malicious queries with high accuracy.
mongoaudit - 🔥 A powerful MongoDB auditing and pentesting tool 🔥
cpython - The Python programming language
material-theme - Material Theme, the most epic theme for Sublime Text 3 by Mattia Astorino
a-file-icon - Sublime file-specific icons for improved visual grepping
psdash - A linux system information web dashboard using psutils and flask
wger - Self hosted FLOSS fitness/workout and weight tracker written with Django
youtube-dl - Command-line program to download videos from YouTube.com and other video sites
escrotum - Linux screen capture using pygtk, inspired by scrot
xkcd-dl - ⏬ Download ALL xkcd's which have been uploaded till date. Ever!
webkin - 💻 CLI tool to send webpages to kindle. 📔
Stitch - Python Remote Administration Tool (RAT)
AWS-recipes - A number of Recipes for AWS
asa_cleanup - Cisco ASA Firewall Cleanup Script.
kube-aws-autoscaler - Simple cluster autoscaler for AWS Auto Scaling Groups
Git-Auto-Deploy - Deploy your GitHub, GitLab or Bitbucket projects automatically on Git push events or webhooks using this small HTTP server written in Python. Continuous deployment in it's most simple form.
1337-Noms-The-Hacker-Cookbook - food food food
parquet-python - python implementation of the parquet columnar file format.
GrepBugs - A regex based source code scanner.
FindMyiPhone - Locates all devices associated with an iCloud account. No user notification, pure python, fast, accurate, clean output. 🗺
Sublist3r - Fast subdomains enumeration tool for penetration testers
python-practice-book - A book to learn Python programming language through lot of examples and practice problems
Veil-Evasion - Veil Evasion is no longer supported, use Veil 3.0!
the-backdoor-factory - Patch PE, ELF, Mach-O binaries with shellcode
king-phisher - Phishing Campaign Toolkit
exploitpack - Exploit Pack - Open Source GPLv3 Project
ssh-audit - SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
CANToolz - CANToolz - framework for black-box CAN network analysis
PyExfil - A Python Package for Data Exfiltration
wfuzz - Web application fuzzer
truffleHog - Searches through git repositories for high entropy strings, digging deep into commit history
dockerize-me - This tool lets you Dockerize your applications using best practices to define your Dockerfile and Docker entry point files.
ansible-aws-elasticsearch-curator-module - Ansible module that executes ElasticSearch curator to remove old indices.
i3-wm-config - My custom configuration for i3 (window manager)
credmap - The Credential Mapper
nanobox-flask - Quickstart for Flask with Nanobox
picoCTF-Platform-2 - A genericized version of picoCTF 2014 that can be easily adapted to host CTF or programming competitions.
Reverse_DNS_Shell - A python reverse shell that uses DNS as the c2 channel
maya - Timestamps for Humans™
basicRAT - python remote access trojan
pafy - Python library to download YouTube content and retrieve metadata
nupic - Numenta Platform for Intelligent Computing is an implementation of Hierarchical Temporal Memory (HTM), a theory of intelligence based strictly on the neuroscience of the neocortex.
tweets_analyzer - Tweets metadata scraper & activity analyzer
ArcSight-Rest - Python library for the ArcSight logger REST API
mxnet-lambda - Reference Lambda function that predicts image labels for a image using an MXNet-built deep learning model. The repo also has pre-built MXNet, OpenCV libraries for use with AWS Lambda.
BDA - The security vulns detector for Hadoop and Spark（大数据安全检测工具）
tensorflow-speech-recognition - 🎙Speech recognition using the tensorflow deep learning framework, sequence-to-sequence neural networks
rapping-neural-network - rap-song writing recurrent neural network
pynsq - The official Python client library for NSQ
newspaper - News, full-text, and article metadata extraction in Python 3
iptodomain - This tool extract domains from IP address based in the information saved in virustotal.
Cypher - Pythonic ransomware proof of concept.
PRET - Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
usb2fac - Enabling 2fac confirmation for newly connected USB devices
streamalert - StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.
google-cloud-python - Google Cloud Client Library for Python
nogotofail - An on-path blackbox network traffic security testing tool
interactive-coding-challenges - Huge update! Interactive Python coding interview challenges (algorithms and data structures). Includes Anki flashcards.
celery - Distributed Task Queue (development branch)
aleph - Sift through large sets of structured and unstructured data, and find the people and companies you look for.
container-transform - Transforms docker-compose, ECS, and Marathon configurations
click-completion - Add or enhance bash, fish, zsh and powershell completion in Click
argcomplete - Python and tab completion, better together.
MalwareClassifier - Malware Classifier From Network Captures
pyzdb - A lightweight database with Python syntax queries, using ZeroMQ
smod - MODBUS Penetration Testing Framework
QuickThemes - Quick theme switcher package for Sublime Text 2
BurpSmartBuster - A Burp Suite content discovery plugin that add the smart into the Buster!
flask-base - A simple Flask boilerplate app with SQLAlchemy, Redis, User Authentication, and more.
glazier - A tool for automating the installation of the Microsoft Windows operating system on various device platforms.
Shodan-mattermost - Mattermost - Shodan Slash command
shellnoob - A shellcode writing toolkit
data-import -
data_hacks - Command line utilities for data analysis
tplink-smartplug - TP-Link WiFi SmartPlug Client and Wireshark Dissector
duckduckcrawl - Distributed crawling prototype for DuckDuckGO
VBad - VBA Obfuscation Tools combined with an MS office document generator
memory_profiler - Monitor Memory usage of Python code
pykube - Python client library for Kubernetes
client-python - Official Python client library for kubernetes
awstools - Collection of handy scripts for working with Amazon's Web Services
aws-sts-helpers - Helper scripts for working with temporary and MFA credentials from the AWS STS service
munki - Managed software installation for OS X —
simian - Simian is an enterprise-class Mac OS X software deployment solution. Google App Engine hosted server, with a client powered by the Munki open-source project.
doorman - an osquery fleet manager
itermplot - An awesome iTerm2 backend for Matplotlib, so you can plot directly in your terminal.
LearnPython - 以撸代码的形式学习Python
dockercloud-haproxy - HAproxy image that autoreconfigures itself when used in Docker Cloud
MyToolKit - sqlmap对所有目标及其所有旁站批量自动化sqli
waveconverter - An Open Source tool for RF reverse engineering.
bypass_waf - waf自动爆破(绕过)工具
systemdlogger - Exports systemd logs to an external service, eg cloudwatch, elasticsearch
slash-server-for-mattermost - Sample slash command server for Mattermost (Python)
api-client-python - A Python API Client for Gophish
sqlite-to-mysql - Script to convert and add sqlite3 database into a mysql/mariadb database
headless-scanner-driver - A Burp Suite extension that starts scanning on requests it sees, and dumps results on standard output
Kubernetes-multi-container-pod -
BossSensor - Hide screen when boss is approaching.
hug - Embrace the APIs of the future. Hug aims to make developing APIs as simple as possible, but no simpler.
bokeh - Interactive Web Plotting for Python
pandas - Flexible and powerful data analysis / manipulation library for Python, providing labeled data structures similar to R data.frame objects, statistical functions, and much more
cerberus - Lightweight, extensible data validation library for Python
falcon - Falcon is a bare-metal Python web framework for building high-performance HTTP APIs, app backends, and higher-level frameworks.
universe - Universe: a software platform for measuring and training an AI's general intelligence across the world's supply of games, websites and other applications.
101-AWS-EC2-Hacks -
101-AWS-S3-Hacks - AWS S3 Hacks
docker_securitymonkey - Security Monkey with Docker
chrome-history -
kubernetes-101 - Tutorial to build and deploy a simple Python app in Kubernetes
flask-assistant - Framework for Building Virtual Assistants with API.AI to be integrated with platforms such as Google Home
aws-config-rules - [Node, Python, Java] Repository of sample Custom Rules for AWS Config.
batchconfig - Create custom Windows batch files from a configuration file
sky - 🌅 next generation web crawling using machine intelligence
hackertray - ℹ️ HackerTray is a minimalist Hacker News app for Linux
blissflixx - Turn your Raspberry Pi into a ROKU like Media Streamer.
simplejson - simplejson is a simple, fast, extensible JSON encoder/decoder for Python
libsaas - Python library to take the pain out of using SaaS APIs. It's like an ORM for SaaS!
githubpy - A simple GitHub v3 API SDK for Python
github3.py - Python library for interfacing with the GitHub APIv3
PyGithub - Typed interactions with the GitHub API v3
papers - File sharing service built using Flask, VueJS and RethinkDB
vuejs-python - Examples showing how to use vuejs with python web frameworks (rest, websocket, etc)
coala - coala provides a unified command-line interface for linting and fixing all your code, regardless of the programming languages you use.
dlpython_course - Примеры для курса "Программирование глубоких нейронных сетей на Python"
all_banks_ips -
Inspector - The Inspector tool is a privilege escalation helper (PoC), easy to deployed on web server, this tool can list process running with root, check kernel version, check history file, get possible exploit ...
sanic - Async Python 3.5+ web server that's written to go fast
simulated-unsupervised-tensorflow - TensorFlow implementation of "Learning from Simulated and Unsupervised Images through Adversarial Training"
awesome-hacking - Awesome hacking is an awesome collection of hacking tools.
exitmap - A fast and modular scanner for Tor exit relays.
opentracing-python - OpenTracing API for Python
scikit-learn - scikit-learn: machine learning in Python
flask-rethink - a todo list with flask and rethinkdb
flask-todolist - exemplary flask application - small to-do list WebApp example
Pylinter - A pylint plugin for Sublime Text 2 and 3
SublimeREPL - SublimeREPL - run an interpreter inside ST2 (Clojure, CoffeeScript, F#, Groovy, Haskell, Lua, MozRepl, NodeJS, Python, R, Ruby, Scala, shell or configure one yourself)
SublimeCodeIntel -
SublimeJEDI - awesome Python autocompletion with SublimeText
tahoe-lafs - The Tahoe-LAFS decentralized secure filesystem.
clusterd - application server attack toolkit
httpbin - HTTP Request & Response Service, written in Python + Flask.
ud330 -
have-fun-with-machine-learning - An absolute beginner's guide to Machine Learning and Image Classification with Neural Networks
Full-Stack-Foundations - Solution Code to Full Stack Foundations (ud088)
puppy-populator - Udacity BEND Exercise Solution
flask-principal - Identity management for Flask applications
lemur - Repository for the Lemur Certificate Manager
goodreads - 🐍 Python wrapper for Goodreads API 📚
cleverhans - A library for benchmarking vulnerability to adversarial examples
kploy - An opinionated Kubernetes deployment system for appops
python-sdk - 🐍 Client library to use the IBM Watson services in Python and available in pip as watson-developer-cloud
nagios-plugin-elasticsearch - An ElasticSearch availability and performance monitoring plugin for Nagios
bouncer - Simple DoS mitigation framework
ava - AVA - Human Vulnerability Scanner (Core)
gunnery - Remote task execution tool
awesome-sqlalchemy - A curated list of awesome tools for SQLAlchemy
dcept - A tool for deploying and detecting use of Active Directory honeytokens
cookiecutter - A command-line utility that creates projects from cookiecutters (project templates). E.g. Python package projects, jQuery plugin projects.
brut3k1t - brut3k1t is a framework for bruteforcing various services and protocols
awesomo - An extensive list of interesting open source projects written in С, C++, Clojure, Lisp (Common/Emacs), Elixir, Erlang, Elm, Golang, Haskell, JavaScript, Lua, OCaml, Python, R, Ruby, Rust, Scala etc.
uberlogs - make logging fun again
masscan-cluster - Efficient clustering of MASSCAN results
scrapy - Scrapy, a fast high-level web crawling & scraping framework for Python.
kolla - Kolla provides production-ready containers and deployment tools for operating OpenStack clouds
autopkg - Automating packaging and software distribution on OS X.
aminator - A tool for creating EBS AMIs. This tool currently works for CentOS/RedHat Linux images and is intended to run on an EC2 instance.
ipython-autotime - Time everything in IPython
ctfscoreboard - Scoreboard for Capture The Flag competitions, used by the Google CTF event
CAPE - Config And Payload Extraction
bluewall - Bluewall is a firewall framework designed for offensive and defensive cyber professionals.
superset - Superset is a modern, enterprise-ready business intelligence web application
networkx - Official NetworkX source code repository.
OTX-Suricata - The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX account.
Amsterdam - Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS
utt - Ultimate Time Tracker - A simple command-line time tracking application written in Python
alexa-slack - Alexa skill kit to post to Slack
taiga-back - Project management web application with scrum in mind! Built on top of Django and AngularJS (Backend Code)
terraform.py - Ansible dynamic inventory script for parsing Terraform state files
k8sclass - Class Materials for Kubernetes Training.
asciinema - Terminal session recorder
shutit - Automation framework for programmers
beeswarm - Honeypot deployment made easy
PyJFuzz - PyJFuzz - Python JSON Fuzzer
book2-exercises - Book 2 -- Exercises for the book
flask-live-starter - Fabric tasks to provision infrastructure and deploy Flask web applications
flask-sqlalchemy - Adds SQLAlchemy support to Flask
AlexaChipDEPRECATED - DEPRECATED - Use https://github.com/alexa-pi/AlexaPi instead ... Code to turn a CHIP into an Alexa Client
AlexaPi - Alexa client for all your devices!
AlexaPiDEPRECATED - DEPRECATED - Use https://github.com/alexa-pi/AlexaPi instead ...Turn a Raspberry Pi into an Alexa Client
pywit - Python library for Wit.ai
ApiV2 - Version 2 of the ThreatCrowd API
interactive-tutorials - Interactive Tutorials
flask-ask - Alexa Skills Kit for Python
alexacast - Chromecast support for Amazon Alexa
yapdns - YAPDNS
sploitego - Maltego Penetration Testing Transforms
pyfilesystem2 - Python's Filesystem abstraction layer
SSLBlackList - (Unofficial) Python API for https://sslbl.abuse.ch/
flare-fakenet-ng - FakeNet-NG - Next Generation Dynamic Network Analysis Tool
DPAT - Domain Password Audit Tool for Pentesters
httpony - 🐴 An HTTP request listener and pretty printer
supervisor-remote-logging - Use supervisord to relay your application's stdout/stderr to syslog.
linux-tracing-workshop - Examples and hands-on labs for Linux tracing tools workshops
powerline - Powerline is a statusline plugin for vim, and provides statuslines and prompts for several other applications, including zsh, bash, tmux, IPython, Awesome and Qtile.
curriculum - Ops School Curriculum
learning-to-learn - Learning to Learn in TensorFlow
pychromecast - Library for Python 2 and 3 to communicate with the Google Chromecast.
bakthat - Bakthat is a MIT licensed backup framework written in Python, it's both a command line tool and a Python module that helps you manage backups on Amazon S3/Glacier and OpenStack Swift. It automatically compress, encrypt (symmetric encryption) and upload your files.
SharpMeter -
nginx-proxy - Automated nginx proxy for Docker containers using docker-gen
linux_is_badass - An interactive, text-based game based on Bryan Lunduke's "Linux Is Badass", written in Python.
cert-pinning-flaw-poc - Simple script for testing CVE-2016-2402 and similar flaws
foss-heartbeat - FOSS Heartbeat analyses the health of a community of contributors. 💓
peach - Peach is a fuzzing framework which uses a DSL for building fuzzers and an observer based architecture to execute and monitor them.
dummyscada -
malware_analysis - Various snippets created during malware analysis
SickRage - The new home of the SickRage community
home-assistant - 🏡 Open-source home automation platform running on Python 3
headphones - Automatic music downloader for SABnzbd
tornado - Tornado is a Python web framework and asynchronous networking library, originally developed at FriendFeed.
python-digitalocean - 🐍🐳 Python module to manage Digital Ocean droplets
speech-to-text-wavenet - Speech-to-Text-WaveNet : End-to-end sentence level English speech recognition based on DeepMind's WaveNet and tensorflow
zget - Filename based peer to peer file transfer
ansible-for-devops - Ansible examples from Ansible for DevOps.
mitmAP - 📡 A python program to create a fake AP and sniff data.
elasticsearch-gmail - Index your Gmail Inbox with Elasticsearch
make-deb - Tool for building debian packages from your python projects
securedrop - GitHub repository for the SecureDrop whistleblower platform. Do not submit tips here!
ansible-role-grsecurity - The documentation and build system for the grsecurity kernel maintained by the Freedom of the Press Foundation for SecureDrop
s3cmd - Official s3cmd repo -- Command line tool for managing Amazon S3 and CloudFront services
whois - Collects WHOIS details for every IPv4 netblock. Reports supported via Elasticsearch.
ipaddr-py - Google's Python IP address manipulation library
pwdlogy - A victims'-profile-based wordlist generating tool for social engineers and security researchers!
VolatilityBot - VolatilityBot – An automated memory analyzer for malware samples and memory dumps
MTPot - Open Source Telnet Honeypot
GreHack16_scapy-handson - Scapy hands-on at #GreHack16
pip - The PyPA recommended tool for installing Python packages
package_control - The Sublime Text package manager
gordon - λ Gordon is a tool to create, wire and deploy AWS Lambdas using CloudFormation
pytomation - Pytomation is an extensible device communication and automation system written in Python. It's uses include home automation and lighting control but is certainly not limited to that. It is supported on any platform that supports Python ( Windows, Mac OS-X, Linux, etc )
wePWNise - WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application control and exploit mitigation software.
gmvault - gmail backup software
WAFNinja - WAFNinja is a tool which contains two functions to attack Web Application Firewalls.
aws_pwn - A collection of AWS penetration testing junk
dagda - a tool to perform static analysis of known vulnerabilities in docker images/containers and to monitor running docker containers for detecting anomalous activities
python_api - Python abstract API for PassiveTotal services in the form of libraries and command line utilities.
setools - SELinux Policy Analysis Tools v4
apiai-python-client - Python library for API.AI
slackbot - A chat bot for Slack (https://slack.com).
python-slackclient - Slack Developer Kit for Python
ssh-ldap-pubkey - Utility to manage SSH public keys stored in LDAP.
NoSQLAttack - NoSQLAttack is an open source Python tool to automate exploit MongoDB server IP on Internet and disclose the database data by MongoDB default configuration weaknesses and injection attacks.
altify - Uses deep learning to caption images in an HTML file and fills out its alternative text attributes with the related caption
MLAlgorithms - Minimal and clean examples of machine learning algorithms
explainshell - match command-line arguments to their help text
knock - Knock Subdomain Scan
kappa - What precedes Lambda
Zappa - Serverless Python Web Services
ansible-inventory-grapher -
boot2root-scripts - Homemade scripts to-do various vulnerable challenges
wharfee - A CLI with autocompletion and syntax highlighting for Docker commands.
autopush - Python Web Push Server used by Mozilla
WASE - The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
rfw - Remote Firewall as a web service. REST API for iptables.
sublime-text-git - Plugin for some git integration into sublime text
flask-intro - Introduction to Flask showing much of the basic functionality. Plus, I built a task manager application called FlaskTaskr.
patator - Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
flask-security-admin-example - Example of combining Flask-Security and Flask-Admin
aws-cli - Universal Command Line Interface for Amazon Web Services
fetch-some-proxies - Simple Python script for fetching "some" (usable) proxies
osint_tools_security_auditing - osint_tools_security_auditing
urlwatch - A tool for monitoring webpages for updates
DisableWinTracking - Uses some known methods that attempt to disable tracking in Windows 10
galaxy - Source code behind Galaxy - http://galaxy.ansible.com
PracticalMalwareLabs - Keep track of the labs from the book "Practical Malware Analysis"
python-nvd3 - Python Wrapper for NVD3 - It's time for beautiful charts
certfuzz - This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).
ansible-cmdb - Generate host overview from ansible fact gathering output
packetpig - Packetpig - Open Source Big Data Security Analytics
unix-command-survey - Visualization of correlations between HN users' .bash_history
teeceepee - mini-TCP stack in Python, for fun
git-workflow - Tool to visualize your git workflow, in a pretty graph
meterssh - MeterSSH is a way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communications as a normal SSH connection. The way it works is by injecting shellcode into memory, then wrapping a port spawned (meterpeter in this case) by the shellcode over SSH back to the attackers machine. Then connecting with meterpreter's listener to localhost will communicate through the SSH proxy, to the victim through the SSH tunnel. All communications are relayed through the SSH tunnel and not through the network.
deis - Deis v1, the CoreOS and Docker PaaS: Your PaaS. Your Rules.
gamification-engine - gamification-engine (gengine) is a framework for developing gamification features for your application
Winpayloads - Undetectable Windows Payload Generation
graphite-influxdb - An influxdb backend for Graphite-web and graphite-api
Diamond - Diamond is a python daemon that collects system metrics and publishes them to Graphite (and others). It is capable of collecting cpu, memory, network, i/o, load and disk metrics. Additionally, it features an API for implementing custom collectors for gathering metrics from almost any source.
django-wiki - A wiki system with complex functionality for simple integration and a superb interface. Store your knowledge with style: Use django models.
mock-server - Simple mock server for REST API
YouCompleteMe - A code-completion engine for Vim
models - Models built with TensorFlow
IPython-Dashboard - A stand alone, light-weight web server for building, sharing graphs created in ipython. Build for data science, data analysis guys. Aiming at building an interactive visualization, collaborated dashboard, and real-time streaming graph.
datacleaner - A Python tool that automatically cleans data sets and readies them for analysis.
openstack-ansible - Ansible playbooks for deploying OpenStack.
chalice - Python Serverless Microframework for AWS
tpot - A Python tool that automatically creates and optimizes machine learning pipelines using genetic programming.
pi-health-dashboard - Building a System Health Dashboard for Raspberry Pi
piot-101 - PiOT Workshop Materials
pi-sensor-free-presence-detector -
maltrieve - A tool to retrieve malware directly from the source for security researchers.
Responder - Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
w3af - w3af: web application attack and audit framework, the open source web vulnerability scanner.
BrundleFuzz - BrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.
openstack-ansible-security - Security Role for OpenStack-Ansible
heralding - Credentials catching honeypot
DET - (extensible) Data Exfiltration Toolkit (DET)
flask_jsondash - 🐍 📊 📈 Build complex dashboards without any front-end code. Use your own endpoints. JSON config only. Ready to go.
oscp - oscp-scripts
AIL-framework - AIL framework - Analysis Information Leak framework
artifacts - ForensicArtifacts.com Artifact Repository
bsideslv2016 -
incubator-airflow - Apache Airflow (Incubating)
spoodle - A mass subdomain + poodle vulnerability scanner
DSFS - Damn Small FI Scanner
DSJS - Damn Small JS Scanner
DSVW - Damn Small Vulnerable Web
tsusen - Network traffic sensor
BugId - Python script that uses the cBugId module to detect, analyze and id application bugs
cloudflare_enum - Cloudflare DNS Enumeration Tool for Pentesters
rainmap-lite - Rainmap Lite - Responsive web based interface that allows users to launch Nmap scans from their mobiles/tablets/web browsers!
HoneyPy - A low interaction honeypot.
convnet-benchmarks - Easy benchmarking of all publicly accessible implementations of convnets
ghp-import - Easily import docs to your gh-pages branch.
maestro - Container orchestration for Docker environments
flocker - Container data volume manager for your Dockerized application
plotly.py - An interactive, browser-based graphing library for Python ✨
Bookie - Python based delicious.com replacement
vulners-scanner - Vulnerability scanner based on vulners.com audit API
stackstorm-forensics - Forensics and CTF automation pack to use with StackStorm. Actions and ChatOps aliases.
apt2 - automated penetration toolkit
ad-ldap-enum - An LDAP based Active Directory user and group enumeration tool
sneaky-creeper - Get your APT on using social media as a tool for data exfiltration.
Clearcut - Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review
malboxes - Builds malware analysis Windows VMs so that you don't have to.
amira - AMIRA: Automated Malware Incident Response & Analysis
lollypop - Lollypop
i3blocks-contrib - Official repository for community contributed blocklets
rainbowstream - A smart and nice Twitter client on terminal written in Python.
livestreamer - Command-line utility that extracts streams from various services and pipes them into a video player of choice.
kippo_detect - Quick proof of concept to detect a Kippo SSH honeypot instance externally
flask-celery-rabbitmq-generate-thumbnail - Flask + Celery + RabbitMQ example
rover - Proof of Concept code for CVE-2016-5696
pelican-plugins - Collection of plugins for the Pelican static site generator
BracketHighlighter - Bracket and tag highlighter for Sublime Text http://facelessuser.github.io/BracketHighlighter/
BigComment - Generate ascii-art comment to display text on Minimap.
SublimeAllAutocomplete - Extend Sublime autocompletion to find matches in all open files of the current window
data_hacking - Click Security Data Hacking Project
webappsec-toolkit - Web Application Security related tools. Includes backdoors, proof of concepts and tricks
vuln - Project to practice the basic at exploit bufferoverflow bugs.
smbmap - SMBMap is a handy SMB enumeration tool
dumb-init - A minimal init system for Linux containers
awesome-vehicle-security - 🚗 A curated list of resources for learning about vehicle security and car hacking
Pillage - Pillage is a multithreaded enumeration python script I created for the enumeration phase of penetration tests.
resume - A collection of different resume formats
Pocsuite - Pocsuite is an open-sourced remote vulnerability testing framework developed by the Knownsec Security Team.
CredNinja - A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale via SMB, plus now with a user hunter
Awesome-Linux-Software - 🐧 A list of awesome applications, softwares, tools and other materials for Linux distros.
Bluto - DNS Recon | Brute Forcer | DNS Zone Transfer | DNS Wild Card Checks | DNS Wild Card Brute Forcer | Email Enumeration | Staff Enumeration | Compromised Account Checking
httpie - Modern command line HTTP client – user-friendly curl alternative with intuitive UI, JSON support, syntax highlighting, wget-like downloads, extensions, etc. https://httpie.org
NfSpy - ID-spoofing NFS client
github-dorks - Collection of github dorks and helper tool to automate the process of checking dorks
D-TECT - D-TECT - Pentesting the Modern Web
cipherscan - A very simple way to find out which SSL ciphersuites are supported by a target.
ncclient - Python library for NETCONF clients (http://ncclient.org)
drydock - drydock provides a flexible way of assessing the security of your Docker daemon configuration and containers using editable audit templates
spinnaker - Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.
wee-slack - A WeeChat plugin for Slack.com. Synchronizes read markers, provides typing notification, search, etc..
errbot - Errbot is a chatbot, a daemon that connects to your favorite chat service and bring your tools and some fun into the conversation.
zerotodocker - Dockerfiles to be used to create Dockerhub trusted builds of NetflixOSS
needle - The iOS Security Testing Framework
Scripts - General scripts for random stuff
azure-linux-extensions - Linux Virtual Machine Extensions for Azure
azure-cli - Command-line tools for Azure.
lektor - The lektor static file content management system
social-engineer-toolkit - The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
angr - The next-generation binary analysis platform from UC Santa Barbara's Seclab!
sentry - Sentry is a cross-platform crash reporting and aggregation platform.
dcos - DC/OS Build and Release tools
spike - A cool web interface to manage rules for naxsi
python-data-workshop - Code and slides for a workshop I'm hosting on Python and its useful data-processing/machine learning capabilities.
geoplotlib - python toolbox for visualizing geographical data and making maps
skyline - It'll detect your anomalies! Part of the Kale stack.
arpy - Mac OSX ARP spoof (MiTM) tool that can also plug into Gource
autofocus-lenz - A command line utility to aid in using autofocus for IR and research
minemeld-core - Engine of MineMeld
Snapper - A security tool for grabbing screenshots of many web hosts
cve-search - cve-search - a tool to perform local searches for known vulnerabilities
jexboss - JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
tap - The TrustedSec Attack Platform is a reliable method for droppers on an infrastructure in order to ensure established connections to an organization.
ansible-modules-core - Ansible modules - these modules ship with ansible
isign - Code sign iOS applications, without proprietary Apple software or hardware
yokadi - Command line oriented, sqlite powered, todo list
tweepy - Twitter for Python!
twitter - Python Twitter API
python-twitter - A Python wrapper around the Twitter API.
compose - Define and run multi-container applications with Docker
firminator_backend - The first open source vulnerability scanner for firmwares
rally - Macrobenchmarking framework for Elasticsearch
tplmap - Code and Server-Side Template Injection Detection and Exploitation Tool
datasploit - A tool to perform various OSINT techniques, aggregate all the raw data, visualise it on a dashboard, and facilitate alerting and monitoring on the data.
artillery - The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
lisa.py - -An Exploit Dev Swiss Army Knife.
Nosql-Exploitation-Framework - A Python Framework For NoSQL Scanning and Exploitation
LL-Fuzzer - An automated NFC fuzzing framework for Android devices.
lemur-docker - Docker files for the Lemur certificate orchestration tool
mallory - Mallory - MiTM TCP and UDP Proxy
PytheM - Multi-purpose pentest framework
Ansible -
data-science-toolbox - Start doing data science in minutes
azurefs - Mount Microsoft Azure Blob Storage as local filesystem in Linux (inactive)
azure-storage-python - Microsoft Azure Storage Library for Python
Prowl -
sensu-plugin-python - A framework for writing Sensu plugins & handlers with Python.
fopnp - Foundations of Python Network Programming (Apress) — scripts and examples
AutoLocalPrivilegeEscalation - An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically
detux - The Multiplatform Linux Sandbox
badactors - Create a list of bad actors from public IP blacklist.
isthisipbad - Python Script to Check IP Against Blacklist
machinae - Machinae Security Intelligence Collector
TekDefense-Automater - Automater - IP URL and MD5 OSINT Analysis
vulnerable-apps -
thug - Python low-interaction honeyclient
MyBroElk - Scripts for Bro IDS and ELK Stack
ansible-container - Ansible Container is a tool to build Docker images and orchestrate containers using only Ansible playbooks.
docker-101-tutorial - A guided tour of docker basics
trellis - Ansible playbooks for a WordPress LEMP stack
ansible-playbooks - Ansible playbook collection that have been written for Ubuntu. Some of the playbooks are Elasticsearch, Mesos, AWS, MySql, Sensu, Nginx etc..
PwnedCheck - Python package to interact with http://haveibeenpwned.com
ESClient - A lightweight and easy to use Python client for ElasticSearch
fibratus - Tool for exploration and tracing of the Windows kernel
lovetz - Passive History Scanner written in Python
ngxtop - Real-time metrics for nginx server
logstash-patterns - Grok patterns for parsing and structuring log messages with logstash
tilt - Terminal Ip Lookup Tool
doork - Passive Vulnerability Auditor
nikola - A static website and blog generator
gitsome - A supercharged Git/GitHub command line interface (CLI). An official integration for GitHub and GitHub Enterprise: https://github.com/integrations/gitsome
python-scripts - because i'm tired of gists
TARDIS - Threat Analysis, Reconnaissance, and Data Intelligence System
bless - Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function
IPGeoLocation - Retrieve IP Geolocation information
DataSciencePython - common data analysis and machine learning tasks using python
http-prompt - HTTPie + prompt_toolkit = an interactive command-line HTTP client featuring autocomplete and syntax highlighting
Flask-MongoDB-Project - A basic Flask app template using MongoEngine
Jaidam - Jaidam is an open source penetration testing tool that would take as input a list of domain names, scan them, determine if wordpress or joomla platform was used and finally check them automatically, for web vulnerabilities using two well‐known open source tools, WPScan and Joomscan.
Breach-Miner - A tool to harvest credentials from leaked data dump
s-and-p-500-companies - List of companies in the S&P 500 together with associated financials
flask-tumblelog - A mongoengine flask tumblelog
flaskr-tdd - Flaskr: Intro to Flask, Test Driven Development (TDD), and jQuery
nginx-ldap-auth - Example of LDAP authentication using ngx_http_auth_request_module
Hack - A typeface designed for source code
percol - adds flavor of interactive filtering to the traditional pipe concept of UNIX shell
python-markdown-graphviz - support for embedding graphviz graphs inside markdown documents
VolUtility - Web App for Volatility framework
paasta - An open, distributed platform as a service
st2 - StackStorm (aka "IFTTT for Ops") is event-driven automation commonly used for auto-remediation, security responses, facilitated troubleshooting, complex deployments, and more. Includes rules engine, workflow, 1800+ integrations (see /st2contrib), native ChatOps and so forth. Installer available at http://docs.stackstorm.com/install/index.html. Ping us on slack - https://stackstorm-community.slack.com/.
salt - Software to automate the management and configuration of any infrastructure or application at scale. Get access to the Salt software package repository here:
fabric - Simple, Pythonic remote execution and deployment.
routersploit - The Router Exploitation Framework
misc - Collection of useful scripts.
blackFeeds - List of malicious domains to be indexed in ELK.
altdns - Generates permutations, alterations and mutations of subdomains and then resolves them
enumXFF - Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
python-prompt-toolkit - Library for building powerful interactive command lines in Python
nightmare - A distributed fuzzing testing suite with web administration
python-markdown-oembed - Markdown extension to allow media embedding using the oEmbed standard.
ansible-modules-extras - Ansible extra modules - these modules ship with ansible
wazuh-ruleset - Wazuh Ruleset
katoolin - Automatically install all Kali linux tools
match - 🔮 Scalable reverse image search built on Kubernetes and Elasticsearch
flask - A microframework based on Werkzeug, Jinja2 and good intentions
DashDoc - Dash integration for Sublime Text
PlainTasks - An opinionated todo-list plugin for Sublime Text editor (version 2 and 3)
MarkdownEditing - Powerful Markdown package for Sublime Text with better syntax understanding and good color schemes.
sublimetext-markdown-preview - markdown preview and build plugin for sublime text 2/3
Diffie-Hellman_Backdoor - How to backdoor Diffie-Hellman
tablib - Python Module for Tabular Datasets in XLS, CSV, JSON, YAML, &c.
records - SQL for Humans™
DeepLearningTutorials - Deep Learning Tutorial notes and code. See the wiki for more info.
AutoNessus - This script communicates with the Nessus API in an attempt to help with automating scans. Depending on the flag issued with the script, you can list all scans, list all policies, start, stop, pause, and resume a scan.
API-dnsdumpster.com - (Unofficial) Python API for https://dnsdumpster.com/
iocs - Indicators from Unit 42 Public Reports
GitMiner - Tool for advanced mining for content on Github
ranger - A tool for security professionals to access and interact with remote Microsoft Windows based systems.
Static-Malware-Analyses - A open source Python script to perform static analysis on a Malware Binary File (portable executable).
virustotal - Pythonic VirusTotal Public API 2.0 client
pentest-machine - Automates some pentest jobs via nmap xml file
SecurityPrivacyReferenceArchitecture - Open Repository for the Open Security and Privacy Reference Architecture
CaptchaJackingPoC - Web security concept of CaptchaJacking Proof of Concept Code | Made very quickly, serves purely as a PoC only
pyAnonMail - A anonymous mailing script using non-secure mail servers
darksearch - 🔍 Search engine for hidden material. Scraping dark web onions, irc logs, deep web etc...
logster - Parse log files, generate metrics for Graphite and Ganglia
zap-cli - A simple tool for interacting with OWASP ZAP from the commandline.
NodeJsScan - NodeJsScan is a static security code scanner for Node.js applications.
secure-smtpd - Fork of Python's standard SMTP server. Adding support for various extensions to the protocol.
TheTVDB.bundle -
programming-101-exercises - Bunch of unsolved exercises used in the "Programming 101" course
django-bootstrap3 - Bootstrap 3 integration with Django.
awesome-cheatsheet - 🍻 awesome cheatsheet
pentest-script - scripts used in my pentest work.
napalm-ansible -
data - User, contributor and developer friendly vulnerability database
techRecommend - Hacker News recommendations, clustering and tagging
Threat-Intelligence-Hunter - TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs. The idea behind the tool is to facilitate searching and storing of frequently added IOCs for creating your own local database of indicators.
v0lt - Security CTF Toolkit
discover-flask - Full Stack Web Development with Flask.
gns3-gui - GNS3 Graphical Network Simulator
pentestly - Python and Powershell internal penetration testing framework
bandit - Python AST-based static analyzer from OpenStack Security Group
Limon - Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open source tools
inframer - collect, store, analyze - your infrastructure information
html2text - Convert HTML to Markdown-formatted text.
pywebsocket - WebSocket server and extension for Apache HTTP Server for testing
pelican - Static site generator that supports Markdown and reST syntax. Powered by Python.
dataset - Easy-to-use data handling for SQL data stores with support for implicit table creation, bulk loading, and transactions. Dataset also includes support for freezing data to CSV and JSON flat files.
maybe - 📂 🐇 🎩 See what a program does before deciding whether you really want it to happen.
Scout2 - Security auditing tool for AWS environments
open-syllabus-project - What can be learned from 1M+ college course syllabi?
wikimo_content - WikiMo documentation (mainly the security space, but everyone's welcome to use this)
elk - Moose-like object system for Python
saws - A supercharged AWS command line interface (CLI).
ntpserver - A Python based ntp server
Routerhunter-2.0 - Testing vulnerabilities in devices and routers connected to the Internet.
discover-github-data - Github repositories dataset and extraction app.
VRTracker_Old - a 3D position tracking device using infrared cameras, made to be used with every VR / AR headset
pygeoip - Pure Python API for Maxmind's binary GeoIP databases
viz - Visualize GitHub's most popular repos of 2016 and 2015. http://www.donnemartin.com/viz
GraphvizAnim - A tool to create animated graph visualizations, based on graphviz.
CSP-Bypass - A Burp Plugin for Detecting Weaknesses in Content Security Policies
ctf - Ctf solutions from p4 team
buster - Brute force static site generator for Ghost
CRCN - Coherence + Recurrent Neural Network + Convolutional Neural Network
awesome-mac-things - some useful mac things:scripts, shells, doc, shortcut keys
SpoofMAC - 💼 Change your MAC address for debugging
whatportis - A command to search port names and numbers
classifier - Organize files in your directory instantly, by classifying them into different folders
perf-benchmarks - Cloud performance benchmarks
edx-platform - The Open edX platform, the software that powers edX!
ThreatTracker - ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a set of Google Custom Search Engines.
GeoPackets -
py-junos-eznc - Python library for Junos automation
NetworkAutomationProject -
SNMP-Brute - Fast SNMP brute force, enumeration, CISCO config downloader and password cracking script.
SMS-LogAlert - uses keywords from alert logs to send SMS
web2attack - Web hacking framework with tools, exploits by python
github_cloner - Clone github repositories of a user / organization
theZoo - A repository of LIVE malwares for your own joy and pleasure
ctf101-systems-2015 - NUS Greyhats CTF101 Systems Security Lesson Material
ProsaWorkshop - Stuff for Prosa binary reversing, exploitation and shellcoding workshop
API-malwr.com - (Unofficial) Python API for https://malwr.com/
IP-monitoring - Monitor your IP reputation for Email sending or Email marketing.
burp-git-bridge - Store Burp data and collaborate via git
sysops-api - sysops-api is a framework designed to provide visability from tens of thousands of machines in seconds.
cloudrouter - The collaborative open source project focused on developing a powerful, easy to use router designed for the cloud.
pwntools - CTF framework and exploit development library
gvgen - Graphviz Python dot generator
SplunkforPaloAltoNetworks - Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint security with Splunk's extensive investigation and visualization capabilities to deliver an advanced security reporting and analysis tool.
coursera-dl - Script for downloading Coursera.org videos and naming them.
newt - Social media tracking
autoinvestigate - scripts and examples for wall of sheep preso on automating investigations
GSM-scanner - spectrum monitoring system for GSM providers
osx_verify - OSX Installer Verifier
macOS-Security-and-Privacy-Guide - A practical guide to securing macOS.
fbpush - A terminal-based CLI tool to push junoscript configs to Juniper network devices.
dhcpwn - All your IPs are belong to us.
greenhat - 👷 Quick hack for making real work happen.
click - Python composable command line utility
giles - Giles Event Correlation Engine Compiler
scripts - Bash & Python scripts for daily life
phpsploit - Stealth post-exploitation framework
PenBox - PenBox - A Penetration Testing Framework - The Tool With All The Tools , The Hacker's Repo
alerta - Alerta monitoring system
gcat - A fully featured backdoor that uses Gmail as a C&C server
autopwn - Specify targets and run sets of tools against them
script-collection - Collection of my scripts ranging from bash or python or shell. Readme will contain list of which script does what.
chopshop - Protocol Analysis/Decoder Framework
miasm - Reverse engineering framework in Python
websocketshell -
sanitizers - AddressSanitizer, ThreadSanitizer, MemorySanitizer
mkdocs - Project documentation with Markdown.
terminal_markdown_viewer - Styled Terminal Markdown Viewer
enemy-of-the-state - This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.
flare-dbg - flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
Gooey - Turn (almost) any Python command line program into a full GUI application with one line
awesome-machine-learning - A curated list of awesome Machine Learning frameworks, libraries and software.
xonsh - Python-powered, cross-platform, Unix-gazing shell
python-keepassx - CLI to keepassx
data-science-ipython-notebooks - Recently updated with 50 new notebooks! Data science Python notebooks: Deep learning (TensorFlow, Theano, Caffe, Keras), scikit-learn, Kaggle, big data (Spark, Hadoop MapReduce, HDFS), matplotlib, pandas, NumPy, SciPy, Python essentials, AWS, and various command lines.
aws-shell - An integrated shell for working with the AWS CLI.
exploits - Miscellaneous exploit code
yarGen - yarGen is a generator for YARA rules
malware-scripts - Useful scripts related with malware
pcapedit - An Interactive Pcap Editor (based on Scapy)
flowinspect - A Network Inspection Tool
tqdm - A fast, extensible progress bar for Python and CLI
Bluto-Old - Recon, Subdomain Bruting, Zone Transfers
AlienVaultLabs - Alienvault Labs Projects Random Stuff
grr - GRR Rapid Response: remote live forensics for incident response
blacklist_builder - Fetches multiple blacklists, formats, outputs to text file for use with Palo Alto firewalls (possibly others).
trigger_ammo - Useful scripts (ammo) for use with Trigger (http://trigger.readthedocs.org) to assist with network automation.
misc_net_scripts - Miscellaneous network scripts for random tasks
Harvester - Harvester scrapes configurations from various network configurations for quick analysis.
pyersinia - Herramienta escrita en Python y utilizando la librería Scapy basada en Yersinia para la implementación de ataques de capa de enlace de datos
immunio-xss-fuzzer - Immunio's XSS Fuzzer tool
see - Sandboxed Execution Environment
baredroid -
Scripts - Useful Scripts
commix - Automated All-in-One OS command injection and exploitation tool.
Windows-Exploit-Suggester - This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
paramiko - The leading native Python SSHv2 protocol library.
EyeWitness - EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
spiderfoot - SpiderFoot, the open source footprinting and intelligence-gathering tool.
burp-pyTemplate - Burp extension to quickly and easily develop Python complex exploits based on Burp proxy requests.
MalwareViz - Malware Visualization shows the simple stuff of malicious software.
certbot - Certbot, previously the Let's Encrypt Client, is EFF's tool to obtain certs from Let's Encrypt, and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
udemy-dl-windows - A windows utility to download courses from udemy for personal offline use
Brownian - A web interface for interacting with your Bro IDS logs.
JavaUnserializeExploits -
impacket - Impacket is a collection of Python classes for working with network protocols.
uberfind -
PenTesting-Scripts - A ton of helpful tools
SimplyEmail - Email recon made fast and easy, with a framework to build on
AndroBugs_Framework - AndroBugs Framework is an efficient Android vulnerability scanner that helps developers or hackers find potential security vulnerabilities in Android applications. No need to install on Windows.
autojump - A cd command that learns - easily navigate directories from the command line
wifijammer - Continuously jam all wifi clients/routers
fast-recon - Does some google dorks against a domain
pythonpentest - A repository for large scripts from my book.
dnsrecon - DNS Enumeration Script
autoenum - Nmap enumeration and script scan automation script
pasv-agrsv - Passive recon / OSINT automation script
sparta - Network Infrastructure Penetration Testing Tool
dnsteal - DNS Exfiltration tool for stealthily sending files over DNS requests.
theHarvester - E-mail, subdomain and people names harvester
pyshark - Python wrapper for tshark, allowing python packet parsing using wireshark dissectors
ciscoconfparse - Parse, Audit, Query, Build, and Modify Cisco IOS-style configurations
maltrail - Malicious traffic detection system
Legofy - Make images look as if they are made out of 1x1 LEGO blocks
pyes - Python connector for ElasticSearch - the pythonic way to use ElasticSearch
threat_intel - Threat Intelligence APIs
Tron - Next generation batch process scheduling and management
osxcollector - A forensic evidence collection & analysis toolkit for OS X
curator - Curator: Tending your Elasticsearch indices
scripts - Scripts I use during pentest engagements.
ptf - The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
scp_sidecar - Ansible modules using SCP and SSH to transfer files to network devices
pynet - Python for Network Engineers
SSLtest -
awesome-aws - A curated list of awesome Amazon Web Services (AWS) libraries, open source repos, guides, blogs, and other resources. Featuring the Fiery Meter of AWSome.
CrackMapExec - A swiss army knife for pentesting networks
gping - Ping, but with a graph
skype-osint - Python OSINT Tool to retrieve information from Skype
status - HTTP Status for Humans
spraywmi - SprayWMI is an easy way to get mass shells on systems that support WMI. Much more effective than PSEXEC as it does not leave remnants on a system.
Loki - Loki - Simple IOC and Incident Response Scanner
Malformity - Malformity is a Maltego project based on the Canari framework for malicious binary and infrastructure research.
offsec - Random collection of exploit code, tools, scripts, etc.
chcli - 💻 Programming challenges for Hackers - A command line tool for all programming challenges
cdpwalker - Network topology discovery via SNMP and CDP (Cisco Discovery Protocol)
pyeapi - Python client for Arista eAPI
ntc-ansible - Multi-vendor network modules
ossrouting - A simple three-VM environment for performing routing using open source software.
py-infoblox - Python Infoblox module and tools
ansible-ucstools - An Ansible module to help automate some common tasks in Cisco UCS
devstack-odl - Devstack configuration for building OpenDaylight and OpenStack together
neutron - OpenStack Networking (Neutron)
nwkauto - All materials from my Network Automation workshop at Interop Vegas 2015
ThreatExchange - Share threat information with vetted partners
passive-dns - dns logger for passive dns collection
lapith - A simple Nessus results viewer
Coursera-SDN - SDN Coursera Coursework
VirusTotal_API_Tool - A Tool To Leverage Virus Total's Private API Key
MIDAS - Metadata Inspection Database Alerting System
binwalk - Firmware Analysis Tool
awesome-honeypots - an awesome list of honeypot resources
dumpmon - Information Dump Monitor
windows-privesc-check - Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems
exabgp - The BGP swiss army knife of networking
cscan - Faraday Continuous Scanning
FuzzLabs - FuzzLabs Fuzzing Framework
mac4n6 - Collection of forensics artifacs location for Mac OS X and iOS
maglica - A Simple Internal Cloud Tool
subbrute - A DNS meta-query spider that enumerates DNS records, and subdomains.
python-scripts - general python scripts and code snippets for my personal use and reference
recon-ng-maltego - recon-ng Maltego local transform pack
pamalt - PaloAlto Networks Maltego integration
parameter_finder - a script to find all paramters used in a php file and craft a request based on that.
intermediatePython -
xcat - Automate XPath injection attacks to retrieve documents
shodan-python - The official Python library for Shodan
wpvulndb_commandline - A commandline vulnerability reporter using WP-CLI and WPVulnDB
elasticsearch-plugins-script - Contain utility scripts for releasing elasticsearch official plugins
elasticsearch-py - Official Python low-level client for Elasticsearch.
flexx - Write desktop and web apps in pure Python
glances - Glances an Eye on your system. A top/htop alternative.
pyinotify - Monitoring filesystems events with inotify on Linux.
hackers-grep - hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols
afl-utils - Utilities for automated crash sample processing/analysis, easy afl-fuzz job management and corpus optimization
sslyze - Current development of SSLyze now takes place on a separate repository
domain - Setup script for Regon-ng
svn-extractor - simple script to extract all web resources by means of .SVN folder exposed over network.
scripts - Miscellaneous scripts
dnscan -
tldextract - Accurately separate the TLD from the registered domain and subdomains of a URL, using the Public Suffix List.
security_monkey - Security Monkey
PT-Manager - Penetration Test Vulnerabilities Manager is an extension for Burp Suite, written in Jython. It was developed by Barak Tawily in order to help application security professionals manage vulnerabilities
MFFA - Media Fuzzing Framework for Android
Kvasir - Kvasir: Penetration Test Data Management
tools - Tools that are related to pentest and network security
autonetkit - AutoNetkit: an automated network configuration engine
ansible-cisco-snmp - Ansible modules using SNMP to manage Cisco devices
CredCrack - A fast and stealthy credential harvester
big-list-of-naughty-strings - The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
elastalert - Easy & Flexible Alerting With ElasticSearch
ELK-forensics - ELK configuration files for Forensic Analysts and Incident Handlers
pamalt_canari - PaloAlto + Maltego Local Transforms Ported to the Canari Framework
nagios_check_paloalto - Nagios/Icinga Plugin for Palo Alto Firewall Systems
napalm - Network Automation and Programmability Abstraction Layer with Multivendor support
cuckoo-droid - CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.
PortDog -
pdfrw - pdfrw is a pure Python library that reads and writes PDFs
ansible-playbook-debugger - A Debugger for Ansible Playbook
fuzzbox - A multi-codec media fuzzing tool.
Reddit-GoodReads-Bot -
malcom - Malcom - Malware Communications Analyzer
panwdbl - Simple block lists hub for PAN-OS DBL feature
ivre - Network recon framework.
burp-plugins -
mailinabox - Mail-in-a-Box helps individuals take back control of their email by defining a one-click, easy-to-deploy SMTP+everything else server: a mail server in a box.
python-cymruwhois - Python client for the whois.cymru.com service
write-ups-2014 - Wiki-like CTF write-ups repository, maintained by the community. 2014
instarecon - Automated digital reconnaissance
writeups - CTF writeups
plecost - Plecost - Wordpress finger printer Tool
awesome-python - A curated list of awesome Python frameworks, libraries, software and resources
ansible-pan - Ansible modules for Palo Alto Networks NGFWs
owtf - Offensive Web Testing Framework (OWTF), is an OWASP+PTES focused try to unite great tools and make pen testing more efficient, written mostly in Python @owtfp http://owtf.org
thedumpster - thedumpster is a tool which does passive recon using google and its dorks against a particular domain.
exscript - A Python module making Telnet and SSH easy
pexpect - A Python module for controlling interactive programs in a pseudo-terminal
trigger - Trigger is a robust network automation toolkit written in Python that was designed for interfacing with network devices.
netmiko - Multi-vendor library to simplify Paramiko SSH connections to network devices
zarp - Network Attack Tool
osint_poc - Various OSINT based scripts that demonstrate basic functions of analytics, filtering, and visualizing
ansible - Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy. Avoid writing scripts or custom code to deploy and update your applications— automate in a language that approaches plain English, using SSH, with no agents to install on remote systems.
afl-fuzzing-demos - Fuzzing things with afl and python-afl
thefuck - Magnificent app which corrects your previous console command.
MITMf - Framework for Man-In-The-Middle attacks
webapp-checklist - Technical details that a programmer of a web application should consider before making the site public.
Mobile-Security-Framework-MobSF - Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS/Windows) automated pen-testing framework capable of performing static, dynamic analysis and web API testing.
FIR - Fast Incident Response
netflow-indexer - A program that uses xapian to index the flat file databases used by nfdump or flow-tools
pandb-query - A tool for bulk URL queries against Palo Alto Networks' PAN-DB cloud database
pan-stix - pan-stix
ir-scripts - Random scripts for log mining, intel gathering, network querying, and other incident response-ish activities
combine - Tool to gather Threat Intelligence indicators from publicly available sources
Dshell - Dshell is a network forensic analysis framework.
panorama-rules-to-excel - Create an Excel Spreadsheet from your firewall rules in Palo Alto Networks Panorama
pandevice - The Palo Alto Networks Device Framework is a way to interact with Palo Alto Networks devices (including Next-generation Firewalls and Panorama) using the device API that is object oriented and conceptually similar to interaction with the device via the GUI or CLI.
scripts -
pan-python - Multi-tool set for Palo Alto Networks PAN-OS, Panorama, WildFire and AutoFocus
mywebappscripts - A collection of all the lists, scripts and techniques I use while doing web application penetration tests.

QML

cool-retro-term - A good looking terminal emulator which mimics the old cathode display...

R

superheat - An r package for generating beautiful and customizable heatmaps
AnomalyDetection - Anomaly Detection with R
shiny - Easy interactive web applications with R
ML_for_Hackers - Code accompanying the book "Machine Learning for Hackers"
awesome-network-analysis - A curated list of awesome network analysis resources.
Statistics-101 - Documentation for Statistics 101 Workshop, originally presented at DevOps Days Amsterdam 2015
networkD3 - D3 JavaScript Network Graphs from R

Roff

pandoc-templates - Templates for pandoc
retire.js - scanner detecting the use of JavaScript libraries with known vulnerabilities

Ruby

inspec-aws - Inspec resources for AWS
Scripts-Sploits - A number of scripts POC's and problems solved as pentests move along.
postal - 📨 A fully featured open source mail delivery platform for incoming & outgoing e-mail
linux-baseline - DevSec Linux Baseline - InSpec Profile
katana - ready to go heroku hosted URL shortener based on guillotine
s3itch - An S3 proxy for Skitch's WebDAV sharing support
docker-sync - Run your application at full speed while syncing your code for development, finally empowering you to utilize docker for development under OSX/Windows/*Linux
owasp-mstg - The Mobile Security Testing Guide (MSTG) is the ultimate guide for mobile app security testing and reverse engineering.
octobox - 📮 Take back control of your GitHub Notifications
terraforming - Export existing AWS resources to Terraform style (tf, tfstate)
windmill - A TLS endpoint for serving osquery configuration
fpm - Effing package management! Build packages for multiple platforms (deb, rpm, etc) with great ease and sanity.
praedasploit -
kbsecret - A secret manager backed by Keybase and KBFS.
rubocop - A Ruby static code analyzer, based on the community Ruby style guide.
rails-security-checklist - 🔑 Community-driven Rails Security Checklist. Contribute and share your experience
lolcommits - 📷 git-based selfies for software developers
pentest-lab - Pentest Lab on OpenStack with Heat, Chef provisioning and Docker
sitediff - Fingerprint a web app using local files as the fingerprint sources
HookHand - ↪️ Runs scripts from webhooks.
osem - Open Source Event Manager. An event management tool tailored to Free and Open Source Software conferences.
cii-best-practices-badge - Core Infrastructure Initiative Best Practices Badge
knife-google - Chef knife plug-in for Google Compute
discourse - A platform for community discussion. Free, open, simple.
wordpress-exploit-framework - A Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.
puppet-r10k - Setup and configure r10k for use with git based environments in puppet
engineering-blogs - A curated list of engineering blogs
security-blogs - A list of security blogs.
gitrob - Reconnaissance tool for GitHub organizations
s3db-backup - Backup and restore the database of your rails app to amazon S3, encrypting and compressing it on the fly
SIMP - A system automation and configuration management stack targeted toward operational flexibility and policy compliance.
exercism.io - Quickly ramp up in new programming languages.
faker - A library for generating fake data such as names, addresses, and phone numbers.
honeypot_recipes - A chef cookbook which can be used to quickly deploy a high interaction honeypot, using the sysdig and falco tools
githubarchive.org - GitHub Archive is a project to record the public GitHub timeline, archive it, and make it easily accessible for further analysis.
factory_girl - A library for setting up Ruby objects as test data.
fluentd - Fluentd: Unified Logging Layer (project under CNCF)
dawnscanner - Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.
vagrant-orchestration - Repo to collect vagrant stacks
Not-In-Pentesting-Class - The Dirty Secrets They Didn't Teach You In Pentesting Class
opsworks-elasticsearch-cookbook - AWS OpsWorks Elasticsearch sample cookbook
course - Materials for the NSM video course
lorry - The API portion of Lorry UI a Docker Compose YAML Editor
icinga-vagrant - Vagrant boxes for Icinga 2, Icinga Web 2 and integrations (Graphite, InfluxDB, Elastic, Graylog, etc.)
hakiri_toolbelt - Secure Ruby apps with Hakiri
alexa-home - Using Amazon Echo to control the home! http://linuxforhobbyists.com to learn to DIY
kitchen-docker - A Test Kitchen Driver for Docker
puma - A ruby web server built for concurrency
fresh - Keep your dotfiles fresh.
kitchen-ansiblepush - test-kitchen plugin to use ansible in push mode
kitchen-ansible - Ansible Provisioner for Test Kitchen
ansible-variables - Ansible example variable list for a variety of operating systems
pentest-env - Pentest environment deployer (kali linux + targets) using vagrant and chef.
BinProxy - BinProxy is a proxy for arbitrary TCP connections. You can define custom message formats using the BinData gem.
paperclip - Easy file attachment management for ActiveRecord
Kaffeine - Keeping free Heroku apps awake.
koala - A lightweight Facebook library supporting the Graph, Marketing, and Atlas APIs, realtime updates, test users, and OAuth.
heaven - 🚶 Rails app for GitHub Flow
Learn-Something-Every-Day - 📝 A compilation of everything that I learn; Computer Science, Software Development, Engineering, Math, and Coding in General.
awesome-react-native - Awesome React Native components, news, tools, and learning material!
API-fuzzer - API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
fuzzapi - Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
vsaudit - VOIP Security Audit Framework
tugboat - A command line tool for interacting with your DigitalOcean droplets.
doctor - Doctor is a documentation server for your docs in github
flapjack - Monitoring notification routing + event processing system. For issues with the Flapjack packages, please see https://github.com/flapjack/omnibus-flapjack/
github-connector - The GitHub Active Directory Connector allows managing GitHub organizations with Active Directory.
convection - A fully generic, modular DSL for AWS CloudFormation
builderator - Tools to make CI Packer builds awesome
recog - Pattern recognition for hosts, services, and content
malware-analysis - A repository of tools and scripts related to malware analysis
deployinator - Deployinate!
mctop - a top like tool for inspecting memcache key values in realtime
docker_nano_host - Sample cookbook for configuring a docker host on Windows Nano
dockerbook-code - The code and configuration examples from The Docker Book (http://www.dockerbook.com)
HellRaiser - Vulnerability Scanner
chef-zero - Simple, easy-run, fast-start in-memory Chef server for testing and solo purposes
test-kitchen - Test Kitchen is an integration tool for developing and testing infrastructure code and software on isolated target platforms.
ansible-harden-windows - Ansible role to harden windows system
inspec - InSpec: Auditing and Testing Framework
bettercap - A complete, modular, portable and easily extensible MITM framework.
CeWL - CeWL is a Custom Word List Generator
fog - The Ruby cloud services library.
babushka - Test-driven sysadmin.
security-audit - A set of automated security tests for Red Hat Linux 6.x based systems.
ansible-vagrant-examples - Ansible examples using Vagrant to deploy to local VMs.
lita - ChatOps for Ruby.
gauntlt - a ruggedization framework that embodies the principle "be mean to your code"
ssh_scan - A prototype SSH configuration and policy scanner (Blog: https://mozilla.github.io/ssh_scan/)
sinatra - Classy web-development dressed in a DSL (official / canonical repo)
splogTASH - SPL to lucene translator
logstash-plugins -
snpr - The sources of the openSNP website
vagrant-windows -
vagrant-aws - Use Vagrant to manage your EC2 and VPC instances.
trunk - A simple, web-based notes app
middleman - Hand-crafted frontend development
vagrant-lxc - LXC provider for Vagrant
AutOssec - Ossec cookbook for Chef, with secure & automated key management
logstash-output-websocket -
ansible-ssh-hardening - This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.
hardening - DevSec Examples
hoosegow - Ephemeral Docker jails for running untrusted Ruby code
vagrant-azure - Enable Vagrant to manage virtual machines in Microsoft Azure
god - Ruby process monitor
gitlabhq - GitLab CE | Please open new issues in our issue tracker on GitLab.com
puppet - Server automation framework and application
chef - A systems integration framework, built to bring the benefits of configuration management to your entire infrastructure.
capistrano - Remote multi-server automation tool
vagrant - Vagrant is a tool for building and distributing development environments.
frab - conference manangement system
logstash-input-github - Accept Github Webhooks into Logstash
cookbook-elasticsearch - Chef cookbook for Elasticsearch
ansible-elasticsearch - Ansible playbook for Elasticsearch
logstash - Logstash - transport and process your logs, events, or other data
ohai - Ohai profiles your system and emits JSON
ELK-utils - Utilities for working with the ELK (Elasticsearch, Logstash, Kibana) stack
wpsploit - WPSploit - Exploiting Wordpress With Metasploit
gengiscan - Fingerprint server side technology
Metasploit-Penetration-Testing-Cookbook-Codes - Following repository contains source codes used in my two Books.
msf-stuff - stuff from or for msf
ruby-advisory-db - A database of vulnerable Ruby Gems
vagrant-vbox-snapshot - Vagrant plugin that wraps "VBoxManage snapshot"
logstash-filter-elasticsearch - Elasticsearch filter for Logstash
XXEinjector - Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
arachni - Web Application Security Scanner Framework
security-headers - This is a plugin to https://discourse.org that allows you to grade your websites HTTP security headers and collects data about how the the top 10,000 sites implement them.
my-scripts - Code snippets I find useful
piwat - Fork of the Raspberry Pi Wireless Attack Toolkit (http://sourceforge.net/projects/piwat/)
apphera-core - Apphera Core API - Open Source Social Media Monitoring and Engagement main API server
social_media_monitoring - Social media monitoring tools such as sentiment analysis, keyword tracking and more
TestingScripts - A More or less Random Collection of Scripts for security Testing.
smbexec -
yasuo - A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
jekyll - 🌐 Jekyll is a blog-aware, static site generator in Ruby
gitsh - An interactive shell for git
dockscan - dockscan is security vulnerability and audit scanner for Docker installations
awesome-awesomeness - A curated list of awesome awesomeness
puppet-netstdlib - A collection of Puppet functions for interacting with the network
AFW - Advanced FireWall cookbook for Chef and Linux that uses Iptables and to dynamically configure inbound and outbound rules on each node.
coursegen - Course web page generator framework
software-patterns -
glue - Application Security Automation
serverspec - RSpec tests for your servers configured by CFEngine, Puppet, Chef, Ansible, Itamae or anything else even by hand
sensu - Monitoring for today's infrastructure.
huginn - Create agents that monitor and act on your behalf. Your agents are standing by!
Scumblr - Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results
brakeman - A static analysis security vulnerability scanner for Ruby on Rails applications
clouddns - ☁️ A ruby DSL for managing DNS
Serpico - SimplE RePort wrIting and COllaboration tool
wpscan - WPScan is a black box WordPress vulnerability scanner.
Orroid - It checks how secure the program you made is and shows how vulnerable your program is.
ansible-playbooks - Configure servers in a snap with these concise Ansible playbooks!

Rust

cargo-fuzz - Command line helpers for fuzzing
rustls - Embryonic Rust TLS library
alacritty - A cross-platform, GPU-accelerated terminal emulator
parallel - Inspired by GNU Parallel, a command-line CPU load balancer written in Rust.
leaf - Open Machine Intelligence Framework for Hackers. (GPU/CPU)

Scala

rudder - Continuous configuration for effective compliance
playframework - Play Framework
chronos - Fault tolerant job scheduler for Mesos which handles dependencies and ISO8601 based schedules
vamp - Vamp - canary releasing and autoscaling for microservice systems
cave - CAVE: Continuous Audit Vault Enterprise
graphite-relay - A fast Graphite relay
incubator-toree - Mirror of Apache Toree (Incubating)
marathon - Deploy and manage containers (including Docker) on top of Apache Mesos at scale.
shard - A command line tool to detect shared passwords
gatling - Async Scala-Akka-Netty based Load Test Tool
mupd8 - Muppet

Scheme

radamsa - a general-purpose fuzzer

Shell

yara-forensics - Set of Yara rules for finding files using magics headers
container-internals-lab - Container internals lab for Red Hat Summit
build-linux - A short tutorial about building Linux based operating systems.
SysEnum - Simple Bash script to retrieve basic system information.
jenkins-phoenix - Stateless Jenkins deployment with Docker
faenza-icon-theme - Faenza icons designed and developed by Matthieu James <matthieu.james@gmail.com>.
do-k8s - Scripts to deploy Kubernetes in DigitalOcean
ansible-prometheus - An Ansible role that installs Prometheus, in the format for Ansible Galaxy.
longhorn - We put storage on cows and move them around
ecs-deploy - Simple shell script for initiating blue-green deployments on Amazon EC2 Container Service (ECS)
logkeys - A GNU/Linux keylogger that worked!
awesome-dots - All configuration files for my awesome setup
bootcamp - A open contribute bootcamp to develop DevSecOps skills...
docker-broker-deployment - Docker Broker is an Open Service Broker API-compatible system that provisions Docker-based services on demand
lair-docker - Lair Framework dockerized.
styleguides - A repository with a coding standard/style guide and conventions document for each of the languages I care about
initscripts - User-contributed OS init scripts for Supervisor
pwnbox - Docker container with tools for binary reverse engineering and exploitation.
kube-backup - 💾 Kubernetes resource state sync to git inspired by rancid
golang-builder - Containerized build environment for compiling an executable Golang package and packaging it in a light-weight Docker container.
golang-builder - Prometheus Golang builder Docker images
bash-my-aws - Bash functions for managing AWS resources simply and easily
docker-alpine - Alpine based images for Docker - Fundamental ones
onetwopunch - Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans.
terminals-are-sexy - 💥 A curated list of Terminal frameworks, plugins & resources for CLI lovers.
movies-for-hackers - 🎬 A curated list of movies every hacker & cyberpunk must watch.
docker-vulnerability-environment - Use the docker to build a vulnerability environment
kolide-quickstart - Quickstart for self-hosted Kolide
cronlock - cronlock lets you deploy cronjobs cluster-wide without worrying about overlaps. It uses Redis to keep track of locks.
bash3boilerplate - Templates to write better Bash scripts
cyberprobe - Capturing, analysing and responding to cyber attacks
git-blame-someone-else - Blame someone else for your bad code.
Lazy-RDP - Script for automatic scanning & bruteforce RDP
packer-terraform-docker-aws-test - Packer / Terraform AWS test to build a Docker host and deploy on a Terraform EC2 configuration on AWS.
takeover.sh - Wipe and reinstall a running Linux system via SSH, without rebooting. You know you want to.
arch-linux-anywhere - Custom arch linux installer
tmux-continuum - Continuous saving of tmux environment. Automatic restore when tmux is started. Automatic tmux start when computer is turned on.
gluster-server - GlusterFS server container. It is used by storage nodes in KubeNow.
Book_SecDevOps_Risk_Workflow - Content for 'JIRA Risk Project' book published at LeanPub
tpotce - T-Pot Image Creator
todo.txt-cli - A simple and extensible shell script for managing your todo.txt file.
cross-gke-cluster-networking - Tutorial for setting up cross cluster networking using internal load balancers
dotfiles - OS X dotfiles: bash, git, vim, etc.
docker-kong - 🐒 Docker distribution for Kong
BashScriptTestingLibrary - A unit testing framework for Shell scripts - namely Bash.
lunar - A UNIX security auditing tool based on several security frameworks
docker-kafka - Kafka (and Zookeeper) in Docker
Simplekube - A simple installation script for easily deploy a single node Kubernetes on the current machine.
kafka-docker - Dockerfile for Apache Kafka
consul_demo - Consul service discovery tool examples.
yubitouch - Bash script for setting or clearing touch requirements for # cryptographic operations the OpenPGP application on a YubiKey 4
lobsters-on-kubernetes - Lobsters, the Hacker News clone, on Kubernetes
kubernetes-on-arm - Kubernetes ported to ARM boards like Raspberry Pi.
prometheus-kubernetes - Most common Prometheus deployment example with alerts for Kubernetes cluster
tmux-colors-solarized - A color theme for the tmux terminal multiplexer using Ethan Schoonover’s Solarized color scheme
bash-git-prompt - An informative and fancy bash prompt for Git users
hardenedlinux_profiles - It contains hardenedlinux community documentation.
minikube-demo - Setting up and configuring single node Kubernetes cluster with Minikube
Kubernetes-dev-env - Scripts for the Kubernetes Dev Environment Tutorial
wp-statefulset -
docker-alpine - Docker containers running Alpine linux and s6 for process management. Sold, reliable containers.
pi-hole - A black hole for Internet advertisements
mongodb-security-exercise - Exercise setting up a local MongoDB server with authentication and TLS
macos-virtualbox-vm - Instructions and script to help you create a VirtualBox VM running macOS.
ipset-blacklist - A script to ban large numbers of IP addresses published in blacklists.
Ultimate-Blocklist - A super blocklist made from the most popular ones on the web!
coreos-kubernetes - CoreOS Container Linux+Kubernetes documentation & Vagrant installers
ooni-sysadmin - ooni-sysadmin: system administration tools for the Open Observatory of Network Interference
notes - 📝 Simple delightful note taking, with more unix and less lock-in.
dokku - A docker-powered PaaS that helps you build and manage the lifecycle of applications
lambda-packages - Various popular python libraries, pre-compiled to be compatible with AWS Lambda
skynet - Infrastructure automation
docs - Documentation for Docker Official Images in docker-library
consul-on-kubernetes - Running HashiCorp's Consul on Kubernetes
heads - A minimal Linux that runs as a coreboot ROM payload to provide a secure, flexible boot environment for laptops and servers.
docker-vault-coreos - docker container for vault with builtin etcd configuration.
hostfw - Simple host-based permit-by-exception iptables generation script
firehol - A firewall for humans...
SELKS - A Suricata based IDS/IPS distro
spark - ▁▂▃▅▂▇ in your shell.
kubernetes-vagrant-coreos-cluster - Kubernetes cluster (for testing purposes) made easy with Vagrant and CoreOS.
ContainerCF - Container.CF Open Source Home
pentest - ⛔ offsec batteries included
misp-warninglists - Warning lists to inform users of MISP about potential false-positives or other information in indicators
fasd - Command-line productivity booster, offers quick access to files and directories, inspired by autojump, z and v.
automirror - Automagically configure screen mirroring with xrandr
oss-fuzz - OSS-Fuzz - continuous fuzzing of open source software
passenger-docker - Docker base images for Ruby, Python, Node.js and Meteor web apps
openvas-docker - A Docker container for Openvas
awesome-iocs - A collection of sources of indicators of compromise
icinga2-api-examples - icinga2 api examples
tpm - Tmux Plugin Manager
yodo - Local Privilege Escalation
FFcast - screenshot & screencast screen regions; FFmpeg; X11; run command on rectangular screen regions
rules - Repository of yara rules
docker-icinga2-demo - DEPRECATED - Docker demo container for Icinga 2
rundeck -
nsenter -
icinga2 -
Android-Responder - Scripts for running Responder.py in an Android (rooted) device.
ee-infra-jenkins - Ansible playbook to install JenkinsCI. Used by Engagement Engineering
dockes - Elasticsearch cluster with Docker
healthcheck - moby/moby#21142 prototypes
elasticsearch - Docker Official Image packaging for elasticsearch
authy-ssh - Easy two-factor authentication for ssh servers
git-standup - Recall what you did on the last working day. Psst! or be nosy and find what someone else in your team did ;-)
pwndsh - Post-exploitation framework (and an interactive shell) developed in Bash shell scripting
getting-started-with-public-cloud-iaas-null-blr-puliya - null Bangalore Puliya on Getting Started with Public Cloud IAAS (AWS/GCP/Azure)
git-secrets - Prevents you from committing secrets and credentials into git repositories
mac-dev-setup - A beginner's guide to setting up a development environment on Mac OS X
og-aws - 📙 Amazon Web Services — a practical guide
icinga2-slack-notification -
jboss-autopwn - A JBoss script for obtaining remote shell access
setup-ipsec-vpn - Scripts to build your own IPsec VPN server, with IPsec/L2TP and Cisco IPsec on Ubuntu, Debian and CentOS
octo.ai - The analytics hypervisor, an operating system to manage all your analytics needs and licensed under Apache 2.0 License.
docker-data-science-toolbox - Data Science Command Line Toolbox in a docker container
i3-wm-scripts - Various scripts for the i3 window manager to allow for renaming workspaces
prowler - aws-cis-security-benchmark: Tool based on AWS-CLI commands for AWS account hardening, following guidelines of the CIS Amazon Web Services Foundations Benchmark (https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf)
node-hub - A nodejs hub for something like a raspberry pi to relay events securely from devices not capable of the encryption required
PiCAST - PiCAST turns your $35 Raspberry Pi in to a Chromecast like Device.
workshop -
autorandr - Auto-detect the connect display hardware and load the appropiate X11 setup using xrandr or disper
container-compliance - Assessing compliance of a container
mattermost-docker - Dockerfile for mattermost in production
Findsploit - Find exploits in local and online databases instantly
va-pt - VAPT is a Vulnerability Assessment and Penetration Testing toolkit. It merges the most common tools from Kali and SamuraiWTF into one platform and places them onto an Ubuntu or Raspbian platform.
payloads - Git All the Payloads! A collection of web attack payloads.
bash-concurrent - Bash function to run tasks in parallel and display pretty output as they complete.
pipework - Software-Defined Networking tools for LXC (LinuX Containers)
orchestration-workshop -
socat-shell - Socat can be used to establish a reverse shell with bash tab completion and full shell functionality
SweetSecurity - Create a defensible raspberry pi
algo - Set up a personal IPSEC VPN in the cloud
shownotes - notes for random stuff
docker-ngnix-wordpress - docker-nginx-wordpress
incubator-resources - Processes, policies, and tools for startups and product teams. All open sourced and open for contribution.
spark-workshop - Labs and data files for a full-day Spark workshop
linux-pentest - Linux pentest tools
wemux - Multi-User Tmux Made Easy
docker-monitor - Scripts and configuration to help you monitor your Docker containers
dcos-vagrant - Local DC/OS cluster provisioning
docker-swarm-demo - A demo of Docker Swarm
NetPi - NetPi Network Analyzer based on Raspberry Pi b+/2 hardware
ansible-best-practises - A project structure that outlines some best practises of how to use ansible
checksec.sh - Checksec.sh
bento - Packer templates for building minimal Vagrant baseboxes
cheat-scripts - because you cant remember everything
mhn - Modern Honey Network
logstash-modsecurity - Configuration framework to parse modsecurity audit logs
docker-wallarm-node - Wallarm Node in docker
elastalert-docker - Docker image with Elastalert on Alpine Linux.
quickinstall - A Shell Script To Take Care Of Ubuntu Basics
azure-marketplace - Elasticsearch Azure Marketplace offering + ARM template
Mac-CLI -  OS X command line tools for developers – The ultimate tool to manage your Mac. It provides a huge set of command line commands that automatize the usage of your OS X system.
ansible-elk - 📈 Ansible playbook for setting up an ELK/EFK stack.
sof-elk - Configuration files for the SOF-ELK VM, used in SANS FOR572
INE-VIRL - INE VIRL Topologies & Initial Configs
2016-security-scripts - Scripts built from our 2016 Guide to User Data Security
hugo - static site generator
git-hooks - A tool to manage project, user, and global Git hooks
docker-osx-dev - A productive development environment with Docker on OS X
jenkins - Demo of the Jenkins Pipeline plugin, using Vagrant
dockerfiles - Various Dockerfiles I use on the desktop and on servers.
vagrant-ansible-aws - Vagrant box to configure AWS with Ansible
aws-missing-tools - tools for managing AWS resources including EC2, EBS, RDS, IAM, CloudFormation and Route53.
ansible-examples - A few starter examples of ansible playbooks, to show features and how they work together. See http://galaxy.ansible.com for example roles from the Ansible community for deploying many popular applications.
os-scripts - Personal Collection of Operating Systems Scripts
mpc - Msfvenom Payload Creator (MPC)
anvils-demo - A simple example showing off rundeck's basic features
vagrant-elastic-stack - Giving the Elastic Stack a try in Vagrant
ELK-docker - Docker configuration for ELK monitoring stack with Curator and Beats data shippers support
azure-quickstart-templates - Azure Quickstart Templates
autovpn - Create On Demand OpenVPN Endpoints on AWS.
docker-elkauto - Docker ELK container
elk-docker - Elasticsearch, Logstash, Kibana (ELK) Docker image
iso-elk-stack - The UCLA Information Security Office customized an integration of Logstash, Elasticsearch, and Kibana (the "ELK stack") to extract security-specific information, richly visualize that data, and create notifications based on specific concerns.
vagrant-elk - ELK stack with collectd, syslog and nginx logs to try out Kibana and Marvel
fish-shell - The user-friendly command line shell.
fisherman - A concurrent plugin manager for fish
oh-my-fish - The Fishshell Framework.
quick-elk - Install and run an ELK stack on your laptop, lickety-split!
webusb - Connecting hardware to the web.
rancher - Platform for operating Docker in production
docker-openzwave - Built on top of GGCom - Docker - pyenv, this is the latest version of Python 2 and OpenZWave ready to go; no muss, no fuss!
docker-security - Security oriented images for Docker
MassBleed - MassBleed SSL Vulnerability Scanner
URLextractor - Information gathering & website reconnaissance
suricata-training - ISLET Configuration for Suricata
scripts - Scripts
firmadyne - System for emulation and dynamic analysis of Linux-based firmware
nsa-rules - Password cracking rules and masks for hashcat that I generated from cracked passwords.
tor-vpn - Shell script that sets up a Tor/VPN server in the cloud.
honeypot-setup-script - Honeypot (Dionaea and kippo) setup script
wrtbwmon - Adapted from https://code.google.com/p/wrtbwmon/
docker-gitlab - Dockerized GitLab
ContainNSM - Dockerfiles for NSM tools
bashscanner - A fast way to scan your server for outdated software and potential exploits.
IR_Tool - Script for Forensic on Linux
BASH-workfiles - LAB Files for BASH Scripting 101 used at the CyberSec training (MLab) 2015
setup - Setups scripts to create local vagrant based OneOps instance
scripts -
testssl.sh - Testing TLS/SSL encryption anywhere on any port
lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
kali-cloud-build - Script to create Kali Linux Amazon Machine Images (AMIs)
docker-bench-security - The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
tools -
Securix-Linux - Securix Main repository including installer and controll scripts
hacks - Just playing around...
MyShellConfigs - My *nix shell configuration files
forensicator-fate - Bringing DevOps to Forensics
logfile-generators - Series of scripts to generate fake logs for use in cyber exercises.
BruteX - Automatically brute force all services running on a target.
pentestpackage - a package of Pentest scripts I have made or commonly use
bash-it - A community Bash framework.
Firefox-Security-Toolkit - A tool that transforms Firefox browsers into a penetration testing suite
logstash-palo-alto - Various configurations and setup for making logstash work with Palo Alto Firewall syslog output
blocklist-ipsets - ipsets dynamically updated with firehol's update-ipsets.sh script
mac_notification_hacks - Some of the notification hacks i use daily
logstash-benchmark - Logstash performance test
kali-linux-docker-rolling -
ossec-debian - OSSEC HIDS Debian packages
logstash_configs - Logstash configs
scm_breeze - Adds numbered shortcuts to the output git status, and much more
pipes.sh - Animated pipes terminal screensaver
DVCS-Pillage - Pillage web accessible GIT, HG and BZR repositories
Shell_Script - DOD_Scripts
vagrant-env - Vagrant-project
cfwtune - Cisco Firewalls Tune (ACL Optimizer)
discover - For use with Kali Linux. Custom bash scripts used to automate various pentesting tasks.
scripts - random scripts accumulated over years of sysadminesque linuxeries
pwnedless - Script for applied security baseline controls in RedHat/CentOS.
docker-wordpress-nginx - A Dockerfile that installs the latest wordpress, nginx and php-fpm.
Fenrir - Simple Bash IOC Scanner
elasticsearch-monitoring - Cluster monitoring with elasticsearch and kibana
cloud-bandwidth - Example how to use Docker Engine, Compose and Machine to Measure and Graph Network Performance
prezto - The configuration framework for Zsh
devstack - Set of scripts and utilities to quickly deploy an OpenStack cloud
unix-privesc-check - Automatically exported from code.google.com/p/unix-privesc-check
ctf-tools - Some setup scripts for security research tools.
security_tools - Security tools to use on assessments.
tmux-resurrect - Persists tmux environment across system restarts.
davix - Data Analysis and Visualization Linux Toolset
paloalto-dynamic-threatlist - This script is built to automatically download and format common public threatlists in method that a Paloalto firewall is able to process.
packetbeat-deploy - Complete Ansible playbooks to deploy Elasticsearch + Kibana + Logstash + Packetbeat
beats-dashboards - DEPRECATED. Moved to https://github.com/elastic/beats. Please use the new repository to add new issues.
beats-tester - E2E tests for the Beats
beats-packer - Tools, scripts and dockerfiles for cross-compiling and packaging the Beats
LinEnum - Scripted Local Linux Enumeration & Privilege Escalation Checks
openvpn-install - OpenVPN road warrior installer for Debian, Ubuntu and CentOS
server_admin_scripts - A collection of various scripts in perl/python/bash which i use while administering my own servers.
oh-my-zsh - A delightful community-driven (with 1,000+ contributors) framework for managing your zsh configuration. Includes 200+ optional plugins (rails, git, OSX, hub, capistrano, brew, ant, php, python, etc), over 140 themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.
openstack-on-coreos - Zero Down Time Openstack Operations (Upgrade to Kilo) plus Kubernetes cluster
x509-san - Generate self-signed x509 certificates valid for multiple URLs/IPs
security-scripts - A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)
evomalware - Evomalware is a simple BASH script do detect malwares/virus/backdoor/... especially for PHP files.
hadoop-ansible - Ansible playbook that installs a Hadoop cluster, with HBase, Hive, Presto for analytics, and Ganglia, Smokeping, Fluentd, Elasticsearch and Kibana for monitoring and centralized log indexing.
erning-ansible - Ansible playbooks to provision my development environment
alcohol-ansible - ansible playbooks for my home networking
dot-files - Dotfiles for git, etc, compatible with ellipsis
nixarmor - nixarmor is a linux hardening automation project
tar-multibackup - 💾 Bash script to backup and cycle tar archives
forensics - shell script to create an image and perform initial examination on a drive
present - revealjs workflow automation: reveal.js + external markdown mixed with some bash awesomeness to automate routine presentation tasks

Smali

simplify - Generic Android Deobfuscator

Standard ML

prads - Passive Real-time Asset Detection System

Swift

Amethyst - Automatic tiling window manager for macOS à la xmonad.
PromiseKit - Promises for Swift & ObjC
Awesome-Swift-Playgrounds - A List of Awesome Swift Playgrounds
iOS8-day-by-day - Selection of projects accompanying the iOS8-Day-by-Day blog series http://www.shinobicontrols.com/iOS8DayByDay
awesome-ios - A curated list of awesome iOS ecosystem, including Objective-C and Swift Projects
BurpToggle - Status bar application for OS X to toggle the state of the system HTTP/HTTPS proxy.

TeX

data_science_for_whitehat - yarning about data science for white hat security researchers
fresh-themes - Multiformat themes and skins for your technical résumé/CV.
awesome-deep-learning-papers - The most cited deep learning papers
programming-cheatsheets - Programming cheatsheets (Python, Bash, Haskell...)
thesis-template - A Latex PhD Thesis template and build scripts
RE-for-beginners - "Reverse Engineering for Beginners" free book
AutomationWithAnsible - This is an open source ansible book project

TypeScript

vscode - Visual Studio Code
blueprint - A React-based UI toolkit for the web
winjs - A UI toolkit for modern browsers
black-screen - A terminal emulator for the 21st century.

Vala

gnome-pomodoro - A time management utility for GNOME based on the pomodoro technique!

Vim script

dotfiles - ... everybody needs one, right?
vim-startify - 🔗 The fancy start screen for Vim.
vim-linux-coding-style - Vim plugin to respect the Linux kernel coding style http://www.vim.org/scripts/script.php?script_id=4369
vim-go - Go development plugin for Vim
vim-airline-themes - A collection of themes for vim-airline
jedi-vim - Using the jedi autocompletion library for VIM.
vim-pathogen - pathogen.vim: manage your runtimepath
nerdtree - A tree explorer plugin for vim.
Vundle.vim - Vundle, the plug-in manager for Vim
indentLine - A vim plugin to display the indention levels with thin vertical lines
vim-fugitive - fugitive.vim: a Git wrapper so awesome, it should be illegal
vim-endwise - endwise.vim: wisely add "end" in ruby, endfunction/endif/more in vim script, etc
vim-airline - lean & mean status/tabline for vim that's light as air
syntastic - Syntax checking hacks for vim
vim-plug - 🌺 Minimalist Vim Plugin Manager
codi.vim - 📔 The interactive scratchpad for hackers.
dotfiles - My dotfiles, managed using GNU stow
.vim - My .vim dotfiles and configurations.
neovim - Vim-fork focused on extensibility and usability.
ctrlp.vim - Active fork of kien/ctrlp.vim—Fuzzy file, buffer, mru, tag, etc finder.
dotfiles-personal - My dotfiles
vimrc - The ultimate Vim configuration: vimrc
vim-multiple-cursors - True Sublime Text style multiple selections for Vim

VimL

vim-flavored-markdown -
promptline.vim - Generate a fast shell prompt with powerline symbols and airline colors
vim-jinja - Repository for Jinja support in vim.
nvim - NeoVim configuration files
delimitMate - Vim plugin, provides insert mode auto-completion for quotes, parens, brackets, etc.
vim-surround - surround.vim: quoting/parenthesizing made simple
ctrlp.vim - Fuzzy file, buffer, mru, tag, etc finder.
vim-json - A better JSON for Vim: distinct highlighting of keywords vs values, JSON-specific (non-JS) warnings, quote concealing. Pathogen-friendly.
vim-colors-solarized - precision colorscheme for the vim text editor
tabular - Vim script for text filtering and alignment
minibufexpl.vim - Elegant buffer explorer - takes very little screen space
delimitMate.vim - Provides auto-balancing and some expansions for parens, quotes, etc.
dotfiles - 🔧 .files
vim-buftabline - Forget Vim tabs – now you can have buffer tabs
solarized - precision color scheme for multiple applications (terminal, vim, etc.) with both dark/light modes
flatland - Flatland is a simple theme and accompanying color scheme for Sublime Text 2.
Dotfiles - My .vim .bashrc and .vimrc files
dotfiles - My dotfiles (vim / bash etc.)
seti.vim -

Visual Basic

NSABlocklist - HOSTS file to block all known NSA / GCHQ / C.I.A. / F.B.I. spying servers

XSLT

pentext - PenText system
ASVS - Application Security Verification Standard

License

To the extent possible under law, madhuakula has waived all copyright and related or neighboring rights to this work.

Files

madhuakula.md

Latest commit

History

madhuakula.md

File metadata and controls

Awesome Stars

Contents

ActionScript

ApacheConf

Arduino

Assembly

Batchfile

Bro

C

C#

C++

CSS

Clojure

CoffeeScript

Eagle

Elixir

Erlang

GCC Machine Description

Go

Groff

Groovy

HCL

HTML

Hack

Haskell

Java

JavaScript

Jupyter Notebook

Kotlin

Logos

Lua

Makefile

Matlab

NSIS

Nginx

OCaml

Objective-C

Others

PHP

PLSQL

Perl

Perl6

PowerShell

Protocol Buffer

Puppet

Python

QML

R

Roff

Ruby

Rust

Scala

Scheme

Shell

Smali

Standard ML

Swift

TeX

TypeScript

Vala

Vim script

VimL

Visual Basic

XSLT

License