hkm's Stars
huggingface/transformers
🤗 Transformers: State-of-the-art Machine Learning for Pytorch, TensorFlow, and JAX.
kubernetes/kops
Kubernetes Operations (kOps) - Production Grade k8s Installation, Upgrades and Management
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
kubescape/kubescape
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
infosecn1nja/Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
fr0gger/Awesome-GPT-Agents
A curated list of GPT agents for cybersecurity
madhuakula/kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
Findomain/Findomain
The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.
arainho/awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
dafthack/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
inonshk/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
bats3c/shad0w
A post exploitation framework designed to operate covertly on heavily monitored environments
x90skysn3k/brutespray
Bruteforcing from various scanner output - Automatically attempts default creds on found services.
cisagov/ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
mvelazc0/defcon27_csharp_workshop
Writing custom backdoor payloads with C# - Defcon 27 Workshop
0xsha/CloudBrute
Awesome cloud enumerator
justakazh/sicat
The useful exploit finder
carnal0wnage/weirdAAL
WeirdAAL (AWS Attack Library)
mvelazc0/PurpleSharp
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
gmelodie/awesome-wordlists
A curated list wordlists for bruteforcing and fuzzing
hashicorp/go-discover
Discover nodes in cloud environments
ElectronicCats/CatSniffer
CatSniffer is an original multiprotocol and multiband board for sniffing, communicating, and attacking IoT (Internet of Things) devices using the latest radio IoT protocols. It is a highly portable USB stick that integrates TI CC1352, Semtech SX1262, and an RP2040 for V3 or a Microchip SAMD21E17 for V2
aufzayed/bugbounty
Bugbounty Resources
hakluke/hakip2host
hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
iknowjason/edge
Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
netspooky/dissectors
random dissectors
tr3w/Hackvertor-tags
Hackvertor tags i've created
Rockcena/DNSCewl
A DNS Bruteforcing Wordlist Generator
toorandom/Homoglyph_Analytics
This code calculates the most similar allowed glyph to an international character, used for fraud detection on domains