[26031星][3d] [Py] certbot/certbot Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
[24868星][8d] trimstray/the-book-of-secret-knowledge A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
[20221星][5d] [Shell] streisandeffect/streisand Streisand sets up a new server running your choice of WireGuard, OpenConnect, OpenSSH, OpenVPN, Shadowsocks, sslh, Stunnel, or a Tor bridge. It also generates custom instructions for all of these services. At the end of the run you are given an HTML file with instructions that can be shared with friends, family members, and fellow activists.
[19766星][3m] [Jupyter Notebook] camdavidsonpilon/probabilistic-programming-and-bayesian-methods-for-hackers aka "Bayesian Methods for Hackers": An introduction to Bayesian methods + probabilistic programming with a computation/understanding-first, mathematics-second point of view. All in pure Python ;)
[14557星][5d] [Java] tencent/tinker Tinker is a hot-fix solution library for Android, it supports dex, library and resources update without reinstall apk.
[11402星][2d] [Java] oracle/graal Run Programs Faster Anywhere
[11389星][3d] [Py] swisskyrepo/payloadsallthethings A list of useful payloads and bypass for Web Application Security and Pentest/CTF
[11306星][2d] [Py] owasp/cheatsheetseries The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
[11294星][3d] [Go] xtaci/kcptun A Stable & Secure Tunnel based on KCP with N:M multiplexing and FEC. Available for ARM, MIPS, 386 and AMD64
[11025星][2y] [ObjC] bang590/jspatch JSPatch bridge Objective-C and Javascript using the Objective-C runtime. You can call any Objective-C class and method in JavaScript by just including a small engine. JSPatch is generally used to hotfix iOS App.
[10966星][2d] [ObjC] flipboard/flex An in-app debugging and exploration tool for iOS
[7613星][3m] [Py] sovereign/sovereign A set of Ansible playbooks to build and maintain your own private cloud: email, calendar, contacts, file sync, IRC bouncer, VPN, and more.
[7307星][12d] [Java] lionsoul2014/ip2region Ip2region is a offline IP location library with accuracy rate of 99.9% and 0.0x millseconds searching performance. DB file is less then 5Mb with all ip address stored. binding for Java,PHP,C,Python,Nodejs,Golang,C#,lua. Binary,B-tree,Memory searching algorithm
[7020星][6d] [Go] nats-io/nats-server High-Performance server for NATS, the cloud native messaging system.
[7019星][2d] [JS] cs01/gdbgui Browser-based frontend to gdb (gnu debugger). Add breakpoints, view the stack, visualize data structures, and more in C, C++, Go, Rust, and Fortran. Run gdbgui from the terminal and a new tab will open in your browser.
[6479星][4d] [Shell] cisofy/lynis Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
[6033星][18d] berzerk0/probable-wordlists Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
[6005星][9d] [Py] gallopsled/pwntools CTF framework and exploit development library
[5929星][5d] [Py] asciimoo/searx searx:网络元数据搜索引擎。汇总70 多个搜索引擎的搜素结果,避免用户被追踪或者被分析。可与 Tor 结合使用
[5876星][3m] [Gnuplot] nasa-jpl/open-source-rover A build-it-yourself, 6-wheel rover based on the rovers on Mars!
[5659星][2m] [C] rofl0r/proxychains-ng proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained proxychains project. the sf.net page is currently not updated, use releases from github release page instead.
[5308星][5d] [C++] coatisoftware/sourcetrail Sourcetrail - free and open-source interactive source explorer
[5269星][1y] [Py] awslabs/aws-shell An integrated shell for working with the AWS CLI.
[5250星][1y] [Py] xiyoumc/webhubbot Python + Scrapy + MongoDB . 5 million data per day !!!
[5229星][4m] [Py] ytisf/thezoo A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
[5195星][11d] [Py] mobsf/mobile-security-framework-mobsf Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
[5173星][1y] [JS] samyk/poisontap Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.
[5164星][t] [Go] dnscrypt/dnscrypt-proxy 灵活的DNS代理,支持现代的加密DNS协议,例如:DNS protocols such as DNSCrypt v2, DNS-over-HTTPS and Anonymized DNSCrypt.
[5138星][4d] [ObjC] macpass/macpass A native OS X KeePass client
[5131星][4m] [Py] n1nj4sec/pupy Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
[5116星][3d] [ASP] hq450/fancyss fancyss is a project providing tools to across the GFW on asuswrt/merlin based router.
[5094星][2m] [Lua] alexazhou/verynginx A very powerful and friendly nginx base on lua-nginx-module( openresty ) which provide WAF, Control Panel, and Dashboards.
[5047星][7d] [Go] inlets/inlets Expose your local endpoints to the Internet
[5007星][1m] [Py] snare/voltron A hacky debugger UI for hackers
[4966星][4d] [Py] trustedsec/social-engineer-toolkit The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
[4966星][12d] [TS] jigsaw-code/outline-client Outline clients, developed by Jigsaw. The Outline clients use the popular Shadowsocks protocol, and lean on the Cordova and Electron frameworks to support Windows, Android / ChromeOS, Linux, iOS and macOS.
[4922星][1y] [Go] yinghuocho/firefly-proxy A proxy software to help circumventing the Great Firewall.
[4563星][8d] [Ruby] wpscanteam/wpscan WPScan is a free, for non-commercial use, black box WordPress Vulnerability Scanner written for security professionals and blog maintainers to test the security of their WordPress websites.
[4449星][1y] [Py] sshuttle/sshuttle Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
[4441星][2m] [Shell] zardus/ctf-tools Some setup scripts for security research tools.
[4402星][] [JS] cure53/dompurify a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
[3652星][19d] [PS] bloodhoundad/bloodhound a single page Javascript web application, uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment.
[3505星][8d] [C] cyan4973/xxhash Extremely fast non-cryptographic hash algorithm
[3504星][5m] [PHP] hanc00l/wooyun_public This repo is archived. Thanks for wooyun! 乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops
[3462星][19d] [Java] meituan-dianping/robust Robust is an Android HotFix solution with high compatibility and high stability. Robust can fix bugs immediately without a reboot.
[3369星][8d] [C] screetsec/thefatrat Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…
[3320星][2y] scanate/ethlist The Comprehensive Ethereum Reading List
[3306星][11d] [C] microsoft/windows-driver-samples This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.
[3209星][2d] [C] magnumripper/johntheripper This is the official repo for John the Ripper, "Jumbo" version. The "bleeding-jumbo" branch is based on 1.9.0-Jumbo-1 which was released on May 14, 2019. An import of the "core" version of john this jumbo was based on (or newer) is found in the "master" branch (CVS:
[3207星][1m] [C++] spiderlabs/modsecurity ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analys…
[3168星][8d] [CSS] juliocesarfort/public-pentesting-reports Curated list of public penetration test reports released by several consulting firms and academic security groups
[3033星][4d] [Py] twintproject/twint An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
[2918星][t] secfigo/awesome-fuzzing A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
[2905星][1y] [Py] byt3bl33d3r/mitmf Framework for Man-In-The-Middle attacks
[2895星][3d] [Go] 99designs/aws-vault A vault for securely storing and accessing AWS credentials in development environments
[2888星][4d] [HTML] ctf-wiki/ctf-wiki CTF Wiki Online. Come and join us, we need you!
[2887星][4y] [ObjC] maciekish/iresign iReSign allows iDevice app bundles (.ipa) files to be signed or resigned with a digital certificate from Apple for distribution. This tool is aimed at enterprises users, for enterprise deployment, when the person signing the app is different than the person(s) developing it.
[2867星][4d] [ObjC] facebook/idb idb is a flexible command line interface for automating iOS simulators and devices
[2862星][9m] [C++] wangyu-/udpspeeder A Tunnel which Improves your Network Quality on a High-latency Lossy Link by using Forward Error Correction,for All Traffics(TCP/UDP/ICMP)
[2854星][28d] [Py] espressif/esptool ESP8266 and ESP32 serial bootloader utility
[2815星][12d] [C] processhacker/processhacker A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
[2808星][10m] [Py] plasma-disassembler/plasma Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
[2802星][5d] [C] klange/toaruos A completely-from-scratch hobby operating system: bootloader, kernel, drivers, C library, and userspace including a composited graphical UI, dynamic linker, syntax-highlighting text editor, network stack, etc.
[2789星][5d] [C++] qtox/qtox qTox is a chat, voice, video, and file transfer IM client using the encrypted peer-to-peer Tox protocol.
[2783星][5d] [Go] aquasecurity/trivy A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
[2781星][2y] [C] seclab-ucr/intang research project for circumventing the "TCP reset attack" from the Great Firewall of China (GFW) by disrupting/desynchronizing the TCP Control Block (TCB) on the censorship devices.
[2733星][18d] [ObjC] dantheman827/ios-app-signer This is an app for OS X that can (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device.
[2718星][3m] [Py] drivendata/cookiecutter-data-science A logical, reasonably standardized, but flexible project structure for doing and sharing data science work.
[2627星][15d] [JS] popcorn-official/popcorn-desktop Popcorn Time is a multi-platform, free software BitTorrent client that includes an integrated media player. Desktop ( Windows / Mac / Linux ) a Butter-Project Fork
[2621星][2m] pditommaso/awesome-pipeline A curated list of awesome pipeline toolkits inspired by Awesome Sysadmin
[2619星][2m] [Swift] zhuhaow/nekit A toolkit for Network Extension Framework
[2615星][1m] [JS] knownsec/kcon KCon is a famous Hacker Con powered by Knownsec Team.
[2612星][3y] [Ruby] arachni/arachni Web Application Security Scanner Framework
[2459星][3d] [PHP] misp/misp MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
[2402星][11m] [C] haad/proxychains a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" for SOCKS4/5, "basic" for HTTP.
[2401星][4d] [Go] xtaci/kcp-go provide a smooth, resilient, ordered, error-checked and anonymous delivery of streams over UDP packets,
[2391星][12d] [Java] mock-server/mockserver MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied traffic including encrypted SSL traffic and supports Port Forwarding, Web Proxying (i.e. HTTP proxy), HTTPS Tunneling Proxying (using HTTP CONNECT) and…
[2374星][2m] [TeX] crypto101/book Crypto 101, the introductory book on cryptography.
[2364星][2d] [C] domoticz/domoticz monitor and configure various devices like: Lights, Switches, various sensors/meters like Temperature, Rain, Wind, UV, Electra, Gas, Water and much more
[2345星][3m] [Go] vuvuzela/vuvuzela Private messaging system that hides metadata
[2345星][6y] [C] stefanesser/dumpdecrypted Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. This tool is necessary for security researchers to be able to look under the hood of encryption.
[2344星][8d] [C] tsl0922/ttyd Share your terminal over the web
[2343星][26d] [HTML] tikam02/devops-guide DevOps Guide from basic to advanced with Interview Questions and Notes
[2340星][2m] [JS] pa11y/pa11y Pa11y is your automated accessibility testing pal
[2321星][5y] [C] abrasive/shairport Airtunes emulator! Shairport is no longer maintained.
[2262星][3m] [Py] novnc/websockify Websockify is a WebSocket to TCP proxy/bridge. This allows a browser to connect to any application/server/service. Implementations in Python, C, Node.js and Ruby.
[2238星][3d] [Go] aquasecurity/kube-bench Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
[2230星][1m] [Rust] cloudflare/boringtun an implementation of the WireGuard® protocol designed for portability and speed.
[2153星][6y] [Ruby] plamoni/siriproxy A (tampering) proxy server for Apple's Siri
[2151星][5d] [Java] google/wycheproof Project Wycheproof tests crypto libraries against known attacks.
[2140星][2m] [Py] jonathansalwan/ropgadget This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectures.
[2137星][11d] [Assembly] pret/pokered disassembly of Pokémon Red/Blue
[2133星][2y] [Py] rub-nds/pret Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
[2132星][12d] goq/telegram-list List of telegram groups, channels & bots // Список интересных групп, каналов и ботов телеграма // Список чатов для программистов
[2067星][2d] tanprathan/mobileapp-pentest-cheatsheet The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
[2033星][4d] [Java] jeremylong/dependencycheck OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
[2030星][4d] [HTML] gtfobins/gtfobins.github.io Curated list of Unix binaries that can be exploited to bypass system security restrictions
[2028星][8d] [Go] projectdiscovery/subfinder Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
[2028星][8d] [Go] projectdiscovery/subfinder 使用Passive Sources, Search Engines, Pastebins, Internet Archives等查找子域名
[1986星][22d] [Go] ullaakut/cameradar Cameradar hacks its way into RTSP videosurveillance cameras
[1982星][1y] [BitBake] 1n3/intruderpayloads A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
[1976星][] [Java] kyson/androidgodeye AndroidGodEye:A performance monitor tool , like "Android Studio profiler" for Android , you can easily monitor the performance of your app real time in pc browser
[1970星][11d] [Py] cea-sec/miasm Reverse engineering framework in Python
[1966星][2d] [C] meituan-dianping/logan Logan is a lightweight case logging system based on mobile platform.
[1956星][1m] [Py] nixawk/pentest-wiki PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
[1955星][3d] [Go] solo-io/gloo An Envoy-Powered API Gateway
[1944星][3y] [Py] aoncyberlabs/windows-exploit-suggester This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
[1944星][3y] [C#] lazocoder/windows-hacks Creative and unusual things that can be done with the Windows API.
[1921星][6m] [Py] scrapy/scrapyd A service daemon to run Scrapy spiders
[1919星][4d] [C] ntop/ndpi Open Source Deep Packet Inspection Software Toolkit
[1912星][6d] [Shell] toniblyx/prowler AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark and DOZENS of additional checks including GDPR and HIPAA (+100). Official CIS for AWS guide:
[1877星][17d] [Java] adoptopenjdk/jitwatch Log analyser / visualiser for Java HotSpot JIT compiler. Inspect inlining decisions, hot methods, bytecode, and assembly. View results in the JavaFX user interface.
[1873星][1m] [C] tinyproxy/tinyproxy a light-weight HTTP/HTTPS proxy daemon for POSIX operating systems
[1872星][10d] [TS] rangle/augury Angular Debugging and Visualization Tools
[1855星][4d] [Py] hunters-forge/threathunter-playbook A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
[1854星][11d] [C] github/glb-director GitHub Load Balancer Director and supporting tooling.
[1852星][1y] [Py] jinnlynn/genpac PAC/Dnsmasq/Wingy file Generator, working with gfwlist, support custom rules.
[1851星][1y] [Java] yeriomin/yalpstore Download apks from Google Play Store
[1851星][6m] [Assembly] pooler/cpuminer cpuminer:莱特币和比特币的多线程 CPU 矿机
[1848星][9m] [Py] netflix-skunkworks/stethoscope Personalized, user-focused recommendations for employee information security.
[1803星][1y] [Go] intelsdi-x/snap an open telemetry framework designed to simplify the collection, processing and publishing of system data through a single API.
[1801星][12m] [Py] ctfs/write-ups-2017 Wiki-like CTF write-ups repository, maintained by the community. 2017
[1735星][4m] [Py] lgandx/responder Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
[1731星][3y] [Go] s-rah/onionscan OnionScan is a free and open source tool for investigating the Dark Web.
[1727星][3d] [C] google/honggfuzz Security oriented fuzzer with powerful analysis options. Supports evolutionary, feedback-driven fuzzing based on code coverage (software- and hardware-based)
[1727星][t] [TSQL] brentozarultd/sql-server-first-responder-kit sp_Blitz, sp_BlitzCache, sp_BlitzFirst, sp_BlitzIndex, and other SQL Server scripts for health checks and performance tuning.
[1726星][1y] [Java] ac-pm/inspeckage Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)
[1714星][27d] [Go] hashicorp/memberlist Golang package for gossip based membership and failure detection
[1709星][9d] [Go] hunterlong/statping Status Page for monitoring your websites and applications with beautiful graphs, analytics, and plugins. Run on any type of environment.
[1708星][4y] [C] signal11/hidapi A Simple library for communicating with USB and Bluetooth HID devices on Linux, Mac, and Windows.
[1705星][10m] [CSS] bagder/http2-explained A detailed document explaining and documenting HTTP/2, the successor to the widely popular HTTP/1.1 protocol
[1701星][1y] [Swift] haxpor/potatso Potatso is an iOS client that implements Shadowsocks proxy with the leverage of NetworkExtension framework. ***This project is unmaintained, try taking a look at this fork
[1699星][3m] [PHP] xtr4nge/fruitywifi FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system (Jessie) adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM (Raspberry Pi), Raspbian (Raspberry Pi), Pwnpi (Raspberry Pi), Bugtraq, NetHunter.
[1698星][13d] [C++] microsoft/detours Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
[1695星][6m] [Py] yelp/osxcollector A forensic evidence collection & analysis toolkit for OS X
[1694星][3y] [CoffeeScript] okturtles/dnschain A blockchain-based DNS + HTTP server that fixes HTTPS security, and more!
[1672星][7m] [C] easyhook/easyhook The reinvention of Windows API Hooking
[1670星][] [JS] ghacksuserjs/ghacks-user.js An ongoing comprehensive user.js template for configuring and hardening Firefox privacy, security and anti-fingerprinting
[1668星][3m] [Py] boppreh/keyboard Hook and simulate global keyboard events on Windows and Linux.
[1644星][11m] [C] dlundquist/sniproxy Proxies incoming HTTP and TLS connections based on the hostname contained in the initial request of the TCP session.
[1642星][6m] [Objective-C++] tencent/oomdetector OOMDetector is a memory monitoring component for iOS which provides you with OOM monitoring, memory allocation monitoring, memory leak detection and other functions.
[1640星][4y] [Py] ctfs/write-ups-2014 Wiki-like CTF write-ups repository, maintained by the community. 2014
[1640星][4y] [Py] ctfs/write-ups-2014 Wiki-like CTF write-ups repository, maintained by the community. 2014
[1637星][4d] [JS] efforg/privacybadger Privacy Badger is a browser extension that automatically learns to block invisible trackers.
[1636星][2y] jhaddix/tbhm The Bug Hunters Methodology
[1594星][2y] [JS] keraf/nocoin No Coin is a tiny browser extension aiming to block coin miners such as Coinhive.
[1593星][4y] [Go] hu17889/go_spider [爬虫框架 (golang)] An awesome Go concurrent Crawler(spider) framework. The crawler is flexible and modular. It can be expanded to an Individualized crawler easily or you can use the default crawl components only.
[1592星][3y] [C] jech/polipo The Polipo caching HTTP proxy
[1592星][2m] [ObjC] ealeksandrov/provisionql Quick Look plugin for apps and provisioning profile files
[1590星][26d] [Go] eolinker/goku-api-gateway A Powerful HTTP API Gateway in pure golang!Goku API Gateway (中文名:悟空 API 网关)是一个基于 Golang开发的微服务网关,能够实现高性能 HTTP API 转发、服务编排、多租户管理、API 访问权限控制等目的,拥有强大的自定义插件系统可以自行扩展,并且提供友好的图形化配置界面,能够快速帮助企业进行 API 服务治理、提高 API 服务的稳定性和安全性。
[1578星][2y] [C] samyk/pwnat The only tool and technique to punch holes through firewalls/NATs where both clients and server can be behind separate NATs without any 3rd party involvement. Pwnat uses a newly developed technique, exploiting a property of NAT translation tables, with no 3rd party, port forwarding, DMZ, router administrative requirements, STUN/TURN/UPnP/ICE, or…
[1572星][25d] [C] codahale/bcrypt-ruby Ruby binding for the OpenBSD bcrypt() password hashing algorithm, allowing you to easily store a secure hash of your users' passwords.
[1562星][11d] [Java] gchq/gaffer A large-scale entity and relation database supporting aggregation of properties
[1562星][29d] [C] p-gen/smenu Terminal utility that reads words from standard input or from a file and creates an interactive selection window just below the cursor. The selected word(s) are sent to standard output for further processing.
[1522星][4m] [TS] spring-guides/tut-spring-security-and-angular-js Spring Security and Angular:: A tutorial on how to use Spring Security with a single page application with various backend architectures, ranging from a simple single server to an API gateway with OAuth2 authentication.
[1489星][8m] [C++] wangyu-/tinyfecvpn A VPN Designed for Lossy Links, with Build-in Forward Error Correction(FEC) Support. Improves your Network Quality on a High-latency Lossy Link.
[1489星][t] [Shell] blackarch/blackarch BlackArch Linux is an Arch Linux-based distribution for penetration testers and security researchers.
[1489星][11d] [Py] bitsadmin/wesng Windows Exploit Suggester - Next Generation
[1486星][6m] [Py] oros42/imsi-catcher This program show you IMSI numbers of cellphones around you.
[1484星][25d] [C++] microsoft/seal Microsoft SEAL is an easy-to-use and powerful homomorphic encryption library.
[1482星][4d] [C] sleuthkit/sleuthkit The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
[1481星][1m] minimaxir/hacker-news-undocumented Some of the hidden norms about Hacker News not otherwise covered in the Guidelines and the FAQ.
[1480星][6y] [C] alibaba/lvs A distribution of Linux Virtual Server with some advanced features. It introduces a new packet forwarding method - FULLNAT other than NAT/Tunneling/DirectRouting, and defense mechanism against synflooding attack - SYNPROXY.
[1479星][20d] edoverflow/can-i-take-over-xyz "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
[1442星][20d] [ObjC] nabla-c0d3/ssl-kill-switch2 Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and OS X Apps
[1441星][6m] [JS] krasimir/deb.js Minimalistic JavaScript library for debugging in the browser
[1437星][6m] gitguardian/apisecuritybestpractices Resources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.
[1436星][4y] [C++] aappleby/smhasher Automatically exported from code.google.com/p/smhasher
[1434星][11m] [C] tpruvot/ccminer CUDA Open Source miner project, for most nvidia cards
[1417星][6m] [PHP] s4n7h0/xvwa XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
[1417星][3m] [HTML] owasp/top10 Official OWASP Top 10 Document Repository
[1417星][3m] [Go] hellogcc/100-gdb-tips A collection of gdb tips. 100 maybe just mean many here.
[1417星][1m] [Java] chrisk44/hijacker Aircrack, Airodump, Aireplay, MDK3 and Reaver GUI Application for Android
[1413星][13d] [C++] google/nsjail A light-weight process isolation tool, making use of Linux namespaces and seccomp-bpf syscall filters (with help of the kafel bpf language)
[1413星][11d] [Go] cosmos72/gomacro Interactive Go interpreter and debugger with REPL, Eval, generics and Lisp-like macros
[1409星][27d] [Swift] johnno1962/injectioniii Re-write of Injection for Xcode in (mostly) Swift4
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent