security-testing

There are 425 repositories under security-testing topic.

mitre/caldera
Automated Adversary Emulation Platform
Language:Python6.5k 180 8271.3k
jassics/security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
4.7k 115 13593
payloadbox/command-injection-payload-list
🎯 Command Injection Payload List
3.6k 81 8736
wallarm/gotestwaf
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
Language:Go1.7k 41 82245
opensec-cn/kunpeng
kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。
Language:Go1.7k 55 36321
akto-api-security/akto
Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure
Language:Java1.4k 16 171266
Viralmaniar/Passhunt
Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
Language:Python1.3k 56 8189
guardrailsio/awesome-python-security
Awesome Python Security resources 🕶🐍🔐
941 40 1103
fportantier/habu
Hacking Toolkit
Language:Python940 41 9158
secureCodeBox/secureCodeBox
secureCodeBox (SCB) - continuous secure delivery out of the box
Language:JavaScript918 25 628172
bl4de/security-tools
My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.
Language:Python901 36 31176
CaringCaribou/caringcaribou
A friendly car security exploration tool for the CAN bus
Language:Python858 52 78211
vxcontrol/pentagi
✨ Fully autonomous AI Agents system capable of performing complex penetration testing tasks
Language:Go790 17 49132
B3nac/InjuredAndroid
A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
Language:Kotlin722 23 14155
Anof-cyber/Application-Security
Resources for Application Security including Web, API, Android, iOS and Thick Client
686 14 359
Marshall-Hallenbeck/red_team_attack_lab
Red Team Attack Lab for TTP testing & research
Language:PowerShell580 18 377
shodansploit/shodansploit
🔎 shodansploit > v1.3.0
Language:Python536 21 392
guardrailsio/awesome-dotnet-security
Awesome .NET Security Resources
518 21 156
pyhackertarget/hackertarget
🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯
Language:Python510 16 3118
rust-fuzz/honggfuzz-rs
Fuzz your Rust code with Google-developed Honggfuzz !
Language:Rust492 3 4941
cyproxio/mcp-for-security
MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration testing into AI workflows.
Language:TypeScript468 14 483
enkomio/Taipan
Web application vulnerability scanner
464 25 1190
PaytmLabs/nerve
NERVE Continuous Vulnerability Scanner
Language:Python457 27 19118
security-cheatsheet/metasploit-cheat-sheet
Metasploit Cheat Sheet 💣
457 25 189
narstybits/MacOS-DuckyScripts
Presenting a wide range of more than 100 powerful BadUSB scripts exclusively designed for Mac OS & the Flipper Zero device. As the sole curator and maintainer of this repository. Your utilization of these scripts is highly valued, and I sincerely appreciate your support and enthusiasm!
438 9 635
flipkart-incubator/watchdog
Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Language:Python421 29 12102
sterrasec/apk-medit
memory search and patch tool on debuggable apk without root & ndk
Language:Go406 28 1661
vectra-ai-research/MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
Language:PowerShell406 15 562
krabelize/icmpdoor
ICMP Reverse Shell written in Python 3 and with Scapy (backdoor/rev shell)
Language:Python368 5 979
akenofu/OSCP-Cheat-Sheet
This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder
366 21 0110
e-m-b-a/embark
EMBArk - The firmware security scanning environment
Language:Python365 8 9760
mercedes-benz/sechub
SecHub provides a central API to test software with different security tools.
Language:Java347 9 2.5k80
redcanaryco/chain-reactor
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
Language:C322 35 936
vectra-ai-research/Halberd
Halberd : Multi-Cloud Agentic Attack Tool
Language:Python321 7 1933
guardrailsio/awesome-java-security
Awesome Java Security Resources 🕶☕🔐
310 12 030
security-checklist/php-security-check-list
PHP Security Check List [ EN ] 🌋 ☣️
296 15 156

security-testing

mitre/caldera

jassics/security-study-plan

payloadbox/command-injection-payload-list

wallarm/gotestwaf

opensec-cn/kunpeng

akto-api-security/akto

Viralmaniar/Passhunt

guardrailsio/awesome-python-security

fportantier/habu

secureCodeBox/secureCodeBox

bl4de/security-tools

CaringCaribou/caringcaribou

vxcontrol/pentagi

B3nac/InjuredAndroid

Anof-cyber/Application-Security

Marshall-Hallenbeck/red_team_attack_lab

shodansploit/shodansploit

guardrailsio/awesome-dotnet-security

pyhackertarget/hackertarget

rust-fuzz/honggfuzz-rs

cyproxio/mcp-for-security

enkomio/Taipan

PaytmLabs/nerve

security-cheatsheet/metasploit-cheat-sheet

narstybits/MacOS-DuckyScripts

flipkart-incubator/watchdog

sterrasec/apk-medit

vectra-ai-research/MAAD-AF

krabelize/icmpdoor

akenofu/OSCP-Cheat-Sheet

e-m-b-a/embark

mercedes-benz/sechub

redcanaryco/chain-reactor

vectra-ai-research/Halberd

guardrailsio/awesome-java-security

security-checklist/php-security-check-list