memojoelojo's Stars
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
ustayready/python-pentesting
Just a repo of random Python scripts to get pentesters started with the Python language on engagements.
OWASP/samm
SAMM stands for Software Assurance Maturity Model.
OWASP/ASVS
Application Security Verification Standard
Netflix/dispatch
All of the ad-hoc things you're doing to manage incidents today, done for you, and much more!
toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
cottinghamd/HardeningAuditor
Scripts for comparing Microsoft Windows compliance with the ASD 1709 & Office 2016 Hardening Guides
prowler-cloud/prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
grapheneX/grapheneX
Automated System Hardening Framework
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
joe-shenouda/awesome-cyber-skills
A curated list of hacking environments where you can train your cyber skills legally and safely
thp/urlwatch
Watch (parts of) webpages and get notified when something changes via e-mail, on your phone or via other means. Highly configurable.
astrada/google-drive-ocamlfuse
FUSE filesystem over Google Drive
a0rtega/pafish
Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
phrancisco/IRMs-SP
Coleccion de IRM de Societe Generale traducidos por mí al Español
volatilityfoundation/volatility
An advanced memory forensics framework
google/rekall
Rekall Memory Forensic Framework
v1s1t0r1sh3r3/airgeddon
This is a multi-use bash script for Linux systems to audit wireless networks.
danilabs/scripts-nse
Some NSE scripts to search information from routers
maliceio/malice
VirusTotal Wanna Be - Now with 100% more Hipster
YJesus/AntiRansom
Fighting against ransomware using honeypots
OpenSC/OpenSC
Open source smart card tools and middleware. PKCS#11/MiniDriver/Tokend
plitc/windows_10_privacy
based on IX 9 September 2015 - Windows 10 Datenschutz
rootedcon/HBoot
Script to extract a signature of the first blocks of the disk, to be able to dectect boot tampering attemps.
DefectDojo/django-DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
openai/gym
A toolkit for developing and comparing reinforcement learning algorithms.
infobyte/faraday
Open Source Vulnerability Management Platform
KvasirSecurity/Kvasir
Kvasir: Penetration Test Data Management
epsylon/xsser
Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
microsoft/CNTK
Microsoft Cognitive Toolkit (CNTK), an open source deep-learning toolkit