smashingcodes

smashingcodes's Stars

• ThaDafinser/UserAgentParser

  UserAgent parsing done right

  Language:PHP24747

• golang101/golang101

  Go语言101 : 一个与时俱进的Go编程知识库

  Language:HTML4.5k437

• astaxie/build-web-application-with-golang

  A golang ebook intro how to build a web with golang

  Language:Go43.2k10.6k

• gravitational/teleport

  The easiest, and most secure way to access and protect all of your infrastructure.

  Language:Go17.4k1.7k

• ccfos/nightingale

  An all-in-one observability solution which aims to combine the advantages of Prometheus and Grafana. It manages alert rules and visualizes metrics, logs, traces in a beautiful web UI.

  Language:Go9.6k1.4k

• google/grr

  GRR Rapid Response: remote live forensics for incident response

  Language:Python4.8k764

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python60.3k14.5k

• SigmaHQ/sigma

  Main Sigma Rule Repository

  Language:Python8.2k2.2k

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP57.2k23.8k

• jumpserver/jumpserver

  An open-source PAM tool alternative to CyberArk. 广受欢迎的开源堡垒机。

  Language:Python25.2k5.3k

• bagder/http2-explained

  A detailed document explaining and documenting HTTP/2, the successor to the widely popular HTTP/1.1 protocol

  Language:CSS2.3k280

• secdec/attack-surface-detector-zap

  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

  Language:Java6013

• secdec/attack-surface-detector-burp

  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

  Language:Java9627

• secdec/adapt

  ADAPT is a tool that performs automated Penetration Testing for WebApps.

  Language:Python18252

• microsoft/AttackSurfaceAnalyzer

  Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

  Language:C#2.7k276

• WebGoat/WebGoat

  WebGoat is a deliberately insecure application

  Language:JavaScript6.9k5.4k

• Versent/saml2aws

  CLI tool which enables you to login and retrieve AWS temporary credentials using a SAML IDP

  Language:Go2.1k563

• shadowsocks/shadowsocks

  Language:Python33.6k18.6k

• zaproxy/zaproxy

  The ZAP by Checkmarx Core project

  Language:Java12.6k2.2k

• We5ter/Awesome-DevSecOps-Platforms

  A curated list of awesome security platforms,including CTF/Security Response Center/Bug Tracker and so on.

  29686

• ArtiomL/f5networks

  :octocat: This project is dedicated to developing and sharing useful code for various F5 products and solutions

  Language:Shell2216

• BloodHoundAD/BloodHound

  Six Degrees of Domain Admin

  Language:PowerShell9.8k1.7k

• azauditor/ADAudit

  Active Directory Audit Tools for IT Audits

  Language:PowerShell7621

• robertdavidgraham/masscan

  TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

  Language:C23.4k3.1k

• dev-sec/cis-kubernetes-benchmark

  CIS Kubernetes Benchmark - InSpec Profile

  Language:Ruby29377

• SecurityFTW/cs-suite

  Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

  Language:Shell1.1k217

• dev-sec/ansible-ssh-hardening

  This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.

  Language:HTML776201

• inspec/inspec

  InSpec: Auditing and Testing Framework

  Language:Ruby2.8k683

• dev-sec/cis-docker-benchmark

  CIS Docker Benchmark - InSpec Profile

  Language:Ruby485114

• bayandin/awesome-awesomeness

  A curated list of awesome awesomeness

  Language:Ruby31.7k3.5k