asecurity's Stars
thunderbird/appointment
Invite others to grab times on your calendar. Choose a date. Make appointments as easy as it gets.
mendableai/firecrawl
🔥 Turn entire websites into LLM-ready markdown or structured data. Scrape, crawl and extract with a single API.
Tylous/FaceDancer
FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loading
socfortress/CoPilot
SOCFortress CoPilot
PortSwigger/logger-plus-plus
Burp Suite Logger++: Log activities of all the tools in Burp Suite
blackorbird/APT_REPORT
Interesting APT Report Collection And Some Special IOC
zan8in/afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
docker-mailserver/docker-mailserver
Production-ready fullstack but simple mail server (SMTP, IMAP, LDAP, Antispam, Antivirus, etc.) running inside a container.
spamhaus/spamassassin-dqs
Spamhaus code for the Spamassassin plugin. See https://docs.spamhaustech.com/40-real-world-usage/SpamAssassin/000-intro.html
Tib3rius/Copier
A Burp extension to help pentesters copy requests / responses for reports.
100DaysofYARA/2024
Rules shared by the community from 100 Days of YARA 2024
dafthack/GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
iperov/DeepFaceLab
DeepFaceLab is the leading software for creating deepfakes.
dnSpyEx/dnSpy
Unofficial revival of the well known .NET debugger and assembly editor, dnSpy
cipher387/linux-for-OSINT-21-day
In this repository you will find sample commands and test files for each day of the course "Linux for OSINT. A 21-day course for beginners".
K3YOMI/Wall-of-Flippers
A simple and easy way to find Flipper Zero Devices and Bluetooth Low Energy Based Attacks
deptofdefense/hack-a-sat-library
Public library of space documents and tutorials
google/security-research
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.
SecurityRiskAdvisors/VECTR
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios
vysecurity/LinkedInt
LinkedIn Recon Tool
koush/scrypted
Scrypted is a high performance video integration and automation platform
dafthack/PowerMeta
PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of those files from the target domain. After retrieving the files, the metadata associated with them can be analyzed by PowerMeta. Some interesting things commonly found in metadata are usernames, domains, software titles, and computer names.
infosecn1nja/red-team-scripts
A collection of red teaming and adversary emulation related tools, scripts, techniques, notes, etc
searxng/searxng-docker
The docker-compose files for setting up a SearXNG instance with docker.
cisagov/ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
ropnop/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
bhdresh/CVE-2017-0199
Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft Office RCE. It could generate a malicious RTF/PPSX file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.
MuirlandOracle/up-http-tool
Simple HTTP listener for security testing
ticarpi/jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
cube0x0/PIVert-Relay