rawfilejson
awesome-osint-arsenalA curated meta-repository that aggregates 751+ OSINT, penetration testing, forensics, and security tools across 50 categories with automated...
44 repositories found
rawfilejson
awesome-osint-arsenalA curated meta-repository that aggregates 751+ OSINT, penetration testing, forensics, and security tools across 50 categories with automated...
mukul975
Anthropic-Cybersecurity-SkillsThis is a curated library of 817 structured cybersecurity skills mapped to six industry frameworks (MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND,...
j3ssie
metabigorMetabigor is an OSINT reconnaissance tool written in Go that performs network discovery, certificate transparency searches, IP enrichment, and...
0xSteph
pentest-ai-agentspentest-ai-agents is a collection of 50 Claude Code subagents that extend Claude into an offensive security research assistant, covering recon, web...
wgpsec
AboutSecurityAboutSecurity is a structured penetration testing knowledge base organized into 200+ skill methodologies, attack payloads, vulnerability data, and...
soxoj
maigretMaigret is a Python CLI tool for username-based reconnaissance that checks 3000+ websites for accounts and aggregates publicly available information...
decalage2
awesome-security-hardeningawesome-security-hardening is a curated collection of security hardening guides, best practices, benchmarks, tools, and resources organized by...
Autumn-27
ScopeSentryScopeSentry is a distributed security scanning platform designed for asset reconnaissance, subdomain enumeration, vulnerability detection, and...
Idov31
NidhoggNidhogg is a Windows kernel rootkit for x64 systems that demonstrates 25+ rootkit techniques including process hiding, privilege escalation, memory...
Pennyw0rth
NetExecNetExec is a network execution and reconnaissance tool for penetration testing and red-team operations, primarily targeting Active Directory and...
dstotijn
hettyHetty is an HTTP toolkit for security research that functions as an open-source alternative to Burp Suite Pro, featuring a MITM proxy with request...
wazuh
wazuhWazuh is a free, open-source security platform providing unified XDR and SIEM capabilities for threat prevention, detection, and response across...
sherlock-project
sherlockSherlock is a CLI tool for OSINT (open-source intelligence) that searches 400+ social networks to find accounts registered under a given username. It...
Ullaakut
cameradarCameradar is a specialized penetration-testing tool for discovering and accessing RTSP-based security cameras through port scanning, device...
e-m-b-a
embaEMBA is a specialized firmware security analysis tool designed for penetration testers, product security teams, and developers to identify...
opencve
opencveOpenCVE is a vulnerability intelligence platform that aggregates CVE data from multiple sources (MITRE, NVD, RedHat, etc.) and provides filtering,...
trickest
cveCVE PoC is an automated aggregation repository that collects and organizes publicly available proof-of-concept exploits for CVEs, organized by year...
pwndoc
pwndocPwnDoc is a collaborative pentest reporting platform that streamlines the generation of customizable Word documents from security audit findings....
onlurking
awesome-infosecA curated index of infosec courses, labs, and training resources (MOOCs, academic programs, CTF platforms, security books) designed for cybersecurity...
GamehunterKaan
AutoPWN-SuiteAutoPWN Suite is an automated penetration testing framework that scans networks for vulnerabilities and attempts exploitation using nmap, version...
ihebski
DefaultCreds-cheat-sheetA curated reference database of default credentials for 3,711+ product/vendor combinations, designed for both red teamers (penetration testing) and...
infobyte
faradayFaraday is an open-source vulnerability management platform designed to centralize, aggregate, and normalize security scan data from multiple tools...
maurosoria
dirsearchdirsearch is a web path brute-forcer tool for discovering hidden directories and files on web servers during penetration testing and bug bounty work....
Roave
SecurityAdvisoriesRoave Security Advisories is a Composer package that prevents installation of PHP dependencies with known security vulnerabilities by maintaining an...
smicallef
spiderfootSpiderFoot is an open-source OSINT automation platform that aggregates data from 200+ modules to map attack surfaces and conduct threat intelligence...
sandialabs
wiretapWiretap is a transparent proxy server that tunnels traffic via WireGuard without requiring special privileges, enabling users to access remote...
xchwarze
wifi-pineapple-clonerWiFi Pineapple Cloner ports the WiFi Pineapple NANO/TETRA platform to generic OpenWrt-compatible hardware, enabling security researchers and red...
yeti-platform
yetiYeti is a forensics intelligence platform that bridges CTI and DFIR by enabling bulk searching of observables, threat-focused artifact lookup, and...
x90skysn3k
brutesprayBrutespray is a high-performance credential brute-forcer written in Go that automates testing of default and custom credentials across 40+ protocols....
edoardottt
cariddiCariddi is a Go-based web crawler and security scanner designed for reconnaissance during bug bounty hunts and penetration testing. It crawls URLs...
Showing 30 of 44
Weekly newsletter
Every Monday: the repos worth your attention, anomaly signals and deep AI analysis. No fluff, unsubscribe any time.