rawfilejson
awesome-osint-arsenalA curated meta-repository that aggregates 751+ OSINT, penetration testing, forensics, and security tools across 50 categories with automated...
109 repositories found
rawfilejson
awesome-osint-arsenalA curated meta-repository that aggregates 751+ OSINT, penetration testing, forensics, and security tools across 50 categories with automated...
Unclecheng-li
VulnClawVulnClaw is an AI-driven penetration testing CLI tool that automates the full attack lifecycle—reconnaissance, vulnerability discovery, exploitation,...
vernu
vps-auditVPS Audit is a lightweight, dependency-free Bash script for security and performance auditing of Linux servers, specifically targeting Debian/Ubuntu...
CyberStrikeus
CyberStrikeCyberStrike is an open-source AI-powered offensive security agent that automates penetration testing by integrating with LLMs (Claude, GPT, etc.) to...
vxcontrol
pentagiPentAGI is a fully autonomous AI-powered penetration testing platform that orchestrates multi-agent systems to conduct complex security assessments...
betterleaks
betterleaksBetterleaks is a configurable secrets scanner for detecting exposed credentials across Git repositories, cloud storage, and collaboration platforms....
j3ssie
metabigorMetabigor is an OSINT reconnaissance tool written in Go that performs network discovery, certificate transparency searches, IP enrichment, and...
elementalsouls
Claude-BugHunterClaude-BugHunter is a specialized skill bundle for the Claude Code system that transforms Claude into a bug-hunting and red-team operator, bundling...
undergroundwires
privacy.sexyprivacy.sexy is an open-source desktop tool for enforcing privacy and security hardening configurations on Windows, macOS, and Linux through...
0xSteph
pentest-ai-agentspentest-ai-agents is a collection of 50 Claude Code subagents that extend Claude into an offensive security research assistant, covering recon, web...
larlarua
AutoCVEAutoCVE is an agent-driven automated platform for CVE discovery through source code auditing, vulnerability verification, and report generation. It...
oritera
CairnCairn is a state-space search engine designed for AI-driven autonomous penetration testing and vulnerability discovery. It uses a blackboard...
A-poc
RedTeam-ToolsThis repository is a curated collection of 150+ red teaming tools and techniques designed for penetration testers and security professionals...
BLE-Research-Group
MetaRadarMetaRadar is an Android application for scanning, analyzing, and tracking Bluetooth Low Energy (BLE) devices in your environment, with capabilities...
onecli
onecliOneCLI is an open-source credential gateway that acts as a proxy between AI agents and external services, storing secrets centrally and injecting...
project-copacetic
copaceticProject Copacetic (copa) is a CLI tool for patching container image vulnerabilities directly without full image rebuilds, using vulnerability...
Security-Onion-Solutions
securityonionSecurity Onion is a free, open Linux distribution for threat hunting, network security monitoring, and log management that bundles IDS, PCAP...
Tencent
AI-Infra-GuardAI-Infra-Guard is a comprehensive red teaming platform by Tencent's Zhuque Lab designed to identify security vulnerabilities in AI systems through...
pglombardo
PasswordPusherPassword Pusher is a self-hosted web application for securely sharing passwords, text, files, and URLs via auto-expiring links with full audit...
OSV.dev is Google's open-source vulnerability database and triage service that aggregates security vulnerabilities across ecosystems and provides an...
six2dez
reconftwreconFTW is an automated reconnaissance framework designed for bug bounty hunters and penetration testers to enumerate subdomains, perform security...
ossf
cve-bin-toolCVE Binary Tool is a free, open-source security scanner that identifies known vulnerabilities in binaries and software components by matching against...
zizmorcore
zizmorZizmor is a static analysis tool for GitHub Actions written in Rust that identifies common security vulnerabilities in CI/CD workflows, including...
danielrobbins
keychainKeychain 3 is a Python rewrite of a classic shell tool that manages SSH and GPG agent lifecycle across login shells, cron jobs, and remote sessions....
SanMuzZzZz
LuaN1aoAgentLuaN1aoAgent is an autonomous penetration testing agent powered by large language models that uses a Plan-Execute-Reflect framework combined with...
Astrosp
Awesome-OSINT-ListThis is a curated index of OSINT (Open Source Intelligence) tools and resources organized by category—covering areas like breach databases, social...
Infisical
infisicalInfisical is an open-source secrets and certificate management platform designed for teams to centralize, sync, and rotate secrets across...
gabrie30
ghorgghorg is a CLI tool that rapidly clones or backs up all repositories from an organization or user across multiple Git providers (GitHub, GitLab,...
dotenvx
dotenvxdotenvx is a secure, multi-environment configuration manager that extends the original dotenv library with encryption and cross-platform CLI...
aquasecurity
trivyTrivy is a comprehensive security scanner for finding vulnerabilities, misconfigurations, secrets, and software licenses across container images,...
Showing 30 of 109
Weekly newsletter
Every Monday: the repos worth your attention, anomaly signals and deep AI analysis. No fluff, unsubscribe any time.