smashingcodes's Stars
ThaDafinser/UserAgentParser
UserAgent parsing done right
golang101/golang101
Go语言101 : 一个与时俱进的Go编程知识库
astaxie/build-web-application-with-golang
A golang ebook intro how to build a web with golang
gravitational/teleport
The easiest, and most secure way to access and protect all of your infrastructure.
ccfos/nightingale
An all-in-one observability solution which aims to combine the advantages of Prometheus and Grafana. It manages alert rules and visualizes metrics, logs, traces in a beautiful web UI.
google/grr
GRR Rapid Response: remote live forensics for incident response
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
SigmaHQ/sigma
Main Sigma Rule Repository
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
jumpserver/jumpserver
An open-source PAM tool alternative to CyberArk. 广受欢迎的开源堡垒机。
bagder/http2-explained
A detailed document explaining and documenting HTTP/2, the successor to the widely popular HTTP/1.1 protocol
secdec/attack-surface-detector-zap
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
secdec/attack-surface-detector-burp
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
secdec/adapt
ADAPT is a tool that performs automated Penetration Testing for WebApps.
microsoft/AttackSurfaceAnalyzer
Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
WebGoat/WebGoat
WebGoat is a deliberately insecure application
Versent/saml2aws
CLI tool which enables you to login and retrieve AWS temporary credentials using a SAML IDP
shadowsocks/shadowsocks
zaproxy/zaproxy
The ZAP by Checkmarx Core project
We5ter/Awesome-DevSecOps-Platforms
A curated list of awesome security platforms,including CTF/Security Response Center/Bug Tracker and so on.
ArtiomL/f5networks
:octocat: This project is dedicated to developing and sharing useful code for various F5 products and solutions
BloodHoundAD/BloodHound
Six Degrees of Domain Admin
azauditor/ADAudit
Active Directory Audit Tools for IT Audits
robertdavidgraham/masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
dev-sec/cis-kubernetes-benchmark
CIS Kubernetes Benchmark - InSpec Profile
SecurityFTW/cs-suite
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
dev-sec/ansible-ssh-hardening
This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.
inspec/inspec
InSpec: Auditing and Testing Framework
dev-sec/cis-docker-benchmark
CIS Docker Benchmark - InSpec Profile
bayandin/awesome-awesomeness
A curated list of awesome awesomeness