infosec
There are 2250 repositories under infosec topic.
sherlock-project/sherlock
Hunt down social media accounts by username across social networks
soxoj/maigret
🕵️♂️ Collect a dossier on a person by username from thousands of sites
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
ffuf/ffuf
Fast web fuzzer written in Go
wazuh/wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
maurosoria/dirsearch
Web path scanner
threat9/routersploit
Exploitation Framework for Embedded Devices
digininja/DVWA
Damn Vulnerable Web Application (DVWA)
infosecn1nja/Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
samratashok/nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
dstotijn/hetty
An HTTP toolkit for security research.
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
trickest/cve
Gather and update all available and newest CVEs with their PoC.
liamg/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
0xInfection/Awesome-WAF
Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥
jakejarvis/awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
EdOverflow/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
fr0gger/Awesome-GPT-Agents
A curated list of GPT agents for cybersecurity
ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️
infobyte/faraday
Open Source Vulnerability Management Platform
decalage2/awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
rmusser01/Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
ffffffff0x/1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
onlurking/awesome-infosec
A curated list of awesome infosec courses and training resources.
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
fabacab/awesome-cybersecurity-blueteam
:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
Pennyw0rth/NetExec
The Network Execution Tool
Ullaakut/cameradar
Cameradar hacks its way into RTSP videosurveillance cameras
jassics/security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
skerkour/black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
GerbenJavado/LinkFinder
A python script that finds endpoints in JavaScript files
PaulSec/awesome-sec-talks
A collected list of awesome security talks
KuroLabs/stegcloak
Hide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐
ysrc/xunfeng
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
arainho/awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.