moeinfatehi

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Retrieval-based-Voice-Conversion-WebUI

Easily train a good VC model with voice data <= 10 mins!

cilium

eBPF-based Networking, Security, and Observability

kubescape

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

engineering-management

A collection of inspiring resources related to engineering management and tech leadership

wstg

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

slither

Static Analyzer for Solidity and Vyper

ThreatMapper

Open Source Cloud Native Application Protection Platform (CNAPP)

echidna

Ethereum smart contract fuzzer

Damn-Vulnerable-GraphQL-Application

Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.

publications

Publications from Trail of Bits

solidity-security-blog

Comprehensive list of known attack vectors and common anti-patterns

panoramix

Ethereum decompiler

Smart-Contract-Security-Audits

Certified Smart Contract Audits for Ethereum, Solana, Near, Cardano, Aptos, Sui, Binance Smart Chain, Fantom, EOS, Tezos by softstack (formerly Chainsulting)

verified-smart-contracts

Smart contracts which are formally verified

Awesome-Smart-Contract-Security

A curated list of Smart Contract Security materials and resources For Researchers

SCSVS

Smart Contract Security Verification Standard

securify2

Securify v2.0

smartbugs

SmartBugs: A Framework to Analyze Ethereum Smart Contracts

balancer-v2-monorepo

Balancer V2 Monorepo

abci

DEPRECATED: Merged into https://github.com/tendermint/tendermint under `abci`

blockchains-security-toolkit

ongoing catalog with tools, resources, notes on blockchain security

PublicReports

public-audits

Collection of public security reviews

audit-reports

acunetix-api

acunetix

cosmwasm-ctf

awesome-chatgpt-plugins

An awesome & curated list of best plugins for ChatGPT

audits

Security Audits by Informal Systems

backup-finder

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP OTG-CONFIG-004)