mendickxiao's Stars
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
WerWolv/ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
open-guides/og-aws
📙 Amazon Web Services — a practical guide
nginx/nginx
The official NGINX Open Source repository.
goharbor/harbor
An open source trusted cloud native registry project that stores, signs, and scans content.
sqlitebrowser/sqlitebrowser
Official home of the DB Browser for SQLite (DB4S) project. Previously known as "SQLite Database Browser" and "Database Browser for SQLite". Website at:
MobSF/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
fortra/impacket
Impacket is a collection of Python classes for working with network protocols.
ffuf/ffuf
Fast web fuzzer written in Go
aboul3la/Sublist3r
Fast subdomains enumeration tool for penetration testers
frohoff/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
intel-analytics/ipex-llm
Accelerate local LLM inference and finetuning (LLaMA, Mistral, ChatGLM, Qwen, Mixtral, Gemma, Phi, MiniCPM, Qwen-VL, MiniCPM-V, etc.) on Intel XPU (e.g., local PC with iGPU and NPU, discrete GPU such as Arc, Flex and Max); seamlessly integrate with llama.cpp, Ollama, HuggingFace, LangChain, LlamaIndex, vLLM, GraphRAG, DeepSpeed, Axolotl, etc
sqlcipher/sqlcipher
SQLCipher is a standalone fork of SQLite that adds 256 bit AES encryption of database files and other security features.
sql-machine-learning/sqlflow
Brings SQL and AI together.
infosecn1nja/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
guelfoweb/knock
Knock Subdomain Scan
dafthack/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
codingo/NoSQLMap
Automated NoSQL database enumeration and web application exploitation tool.
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
intel-analytics/BigDL-2.x
BigDL: Distributed TensorFlow, Keras and PyTorch on Apache Spark/Flink & Ray
s0md3v/Striker
Striker is an offensive information and vulnerability scanner.
UnkL4b/GitMiner
Tool for advanced mining for content on Github
anchore/anchore-engine
A service that analyzes docker images and scans for vulnerabilities
anshumanbh/git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools
pwning/public-writeup
CTF write-ups by Plaid Parliament of Pwning
awslabs/lambda-refarch-mapreduce
This repo presents a reference architecture for running serverless MapReduce jobs. This has been implemented using AWS Lambda and Amazon S3.
wickett/lambhack
A very vulnerable serverless application in AWS Lambda
stevespringett/Alpine
An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
generia/buildroot-osx
Buidroot OSX - Use Buildroot on OSX natively without a Linux container.
zombieCraig/hwbridge_api
Metasploit Hardware Bridge API docs