erminmemic's Stars
gchq/CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
enaqx/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
future-architect/vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
wazuh/wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
kubescape/kubescape
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
1N3/Sn1per
Attack Surface Management Platform
coreb1t/awesome-pentest-cheat-sheets
Collection of the cheat sheets useful for pentesting
decalage2/oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
ly4k/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
google/bindiff
Quickly find differences and similarities in disassembled code
Azure/PyRIT
The Python Risk Identification Tool for generative AI (PyRIT) is an open access automation framework to empower security professionals and machine learning engineers to proactively find risks in their generative AI systems.
log2timeline/plaso
Super timeline all the things
projectdiscovery/cvemap
Navigate the CVE jungle with ease.
protectai/llm-guard
The Security Toolkit for LLM Interactions
decalage2/ViperMonkey
A VBA parser and emulation engine to analyze malicious macros.
freelabz/secator
secator - the pentester's swiss knife
CyberSecurityUP/Awesome-Cloud-PenTest
Ostorlab/KEV
Ostorlab KEV: One-command to detect most remotely known exploitable vulnerabilities. Sourced from CISA KEV, Google's Tsunami, Ostorlab's Asteroid and Bug Bounty programs.
Slowerzs/ThievingFox
k0sproject/k0smotron
k0smotron
WithSecureLabs/lolcerts
A repository of code signing certificates known to have been leaked or stolen, then abused by threat actors
deadbits/vigil-llm
⚡ Vigil ⚡ Detect prompt injections, jailbreaks, and other potentially risky Large Language Model (LLM) inputs
jhaddix/awsScrape
A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
oryxlabs/PolarDNS
PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.
iknowjason/AutomatedEmulation
An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
StellarSand/IYPS
A password strength app that evaluates and rates your password's robustness, estimates crack time, and provides helpful warnings and suggestions for stronger passwords.
gertjanbruggink/metrics
This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
fkkarakurt/reconic
A Powerful Network Reconnaissance Tool for Security Professionals
gbiagomba/Sherlock
This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)
red-kite-solutions/stalker
Stalker, the Extensible Attack Surface Management tool.