information-security

There are 108 repositories under information-security topic.

• smicallef / spiderfoot

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

  attacksurfacecticybersecurityfootprintinghackinginformation-gatheringinformation-securityinfosecintelligence-gatheringosintosint-frameworkosint-reconnaissanceosint-toolpentestingpythonreconsecurity-toolsthreat-intelligencethreatintel
  Language:Python 12711
• Scanners-Box

  We5ter / Scanners-Box

  A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

  pentesting-toolshacker-toolsvulnerability-scannersinformation-securityredteam-toolspenetration-testingdevsecopssecurity-automationsmart-contractsprivacy-complianceapk-analysisbinary-analysisexploitation-frameworkmalware-analysissecurity-auditcode-analyzerstatic-analysiswifi-hackingwifi-security
  8196

• rmusser01 / Infosec_Reference

  An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

  blueteamforensicshackinghacking-simulatorhacktoberfesthacktoberfest2021information-securityinfosecinfosec-referencelinuxosxpenetration-testingpentestingprivilege-escalationprivilege-escalation-exploitsred-teamreferencesreverse-engineeringwindows
  Language:CSS 5527

• MISP / MISP

  MISP (core software) - Open Source Threat Intelligence and Sharing Platform

  mispthreat-sharingthreat-huntingthreatintelmalware-analysisstixinformation-exchangefraud-managementsecuritycticybersecurityfraud-detectionfraud-preventionthreat-analysisinformation-securityinformation-sharingthreat-intelligencethreat-intelligence-platformintelligencethreat-intel
  Language:PHP 5260
• Cheatsheet-God

  OlivierLaflamme / Cheatsheet-God

  Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

  awesomecheatsheetcheatsheet-godhackinghacking-codehacking-toolhowto-tutorialinformation-securityoscposcp-journeyoscp-toolsoscp5penetrationpenetration-testpenetration-testingpentestingrefreshersecuritysecurity-toolssecurity-vulnerability
  4854

• clong / DetectionLab

  Automate the creation of a lab environment complete with security tooling and logging best practices

  ansibledetectiondetectionlabdfirdfir-automationinformation-securitylab-environmentosquerypackerpowershellsysmonterraformvagrantvagrantfile
  Language:HTML 4601
• securityonion

  Security-Onion-Solutions / securityonion

  Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

  case-managementcyber-securityendpoint-securityinformation-securityintrusion-detection-systemmonitoringnetwork-securitysecuritysecurity-toolsthreat-hunting
  Language:Shell 3154

• ComplianceAsCode / content

  Security automation content in SCAP, Bash, Ansible, and other formats

  ansibleapplication-securityccecompliancecpecybersecurityhardeninginformation-securityosppovalpci-dssscapsecuritysecurity-automationsecurity-hardeningsecurity-profilesecurity-toolsstigusgcbxccdf
  Language:Shell 2166

• lucasjacks0n / EggShell

  iOS/macOS/Linux Remote Administration Tool

  exploitationinformation-securityiosjailbreakmacosmetasploitmeterpreterpentest-scriptspentest-toolremote-admin-toolreverse-shell
  Language:Objective-C 1647

• tokyoneon / Chimera

  Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

  amsiantivirusantivirus-evasionattackbypass-antivirusinformation-securitykalikali-linuxkali-scriptkali-scriptsoffensive-securitypayloadpayload-generatorpayloadspenetration-testingreverse-shellshellshell-scripts
  Language:PowerShell 1396

• konstruktoid / hardening

  Hardening Ubuntu. Systemd edition.

  hacktoberfesthardeninginformation-securitysecuritysecurity-automationsecurity-compliancesecurity-hardeningsecurity-toolsshellsystemdubuntuubuntu-server
  Language:Shell 1360

• Cyber-Guy1 / API-SecurityEmpire

  API Security Project aims to present unique attack & defense methods in API Security field

  cybersecuritypenetration-testingapisecurityinformation-securitybugbountyapibug-bountyinfoseccybersectipsbugbountytips
  1335

• CIRCL / AIL-framework

  AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project

  ail-frameworkanalysisdata-mininginformation-leakinformation-securityleakprivacysecuritysecurity-incidents
  Language:Python 1300

• jonluca / Anubis

  Subdomain enumeration and information gathering tool

  anubisanubis-dbdnsdumpsterhackertargetinformation-gatheringinformation-securitykalinetcraftnetworknetwork-securitysubdomainsubdomains
  Language:Python 1190

• payloadbox / xxe-injection-payload-list

  🎯 XML External Entity (XXE) Injection Payload List

  xxexxe-injectionxxe-payloadsxxe-examplexmlwebsecuritywebsecurity-referenceinfosecbugbountybug-bountyweb-application-securitycybersecuritycyber-securityinformation-securityxml-entitypayloadxxe-payloadxxe-payload-listpayloadshacking
  1066
• my-infosec-awesome

  pe3zx / my-infosec-awesome

  My curated list of awesome links, resources and tools on infosec related topics

  awesomeawesome-listinformation-securitylist
  1056

• ansjdnakjdnajkd / iOS

  Most usable tools for iOS penetration testing

  iosmacoscheatsheetsecuritypentesttoolssecurity-toolsjailbreakslidesresearchappleinfosecinformation-securityinformation-security-researchswiftobjective-cobjectionfridaghidrakeychain
  1012
• Open-Source-Security-Guide

  mikeroyal / Open-Source-Security-Guide

  Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

  vulnerabilitiesvulnerability-detectionprivacy-protectionpentestersnetwork-analysisintrusion-detectioninfosecincident-managementmitre-attackdetection-engineeringkali-linuxoffensive-securityinformation-securitysiemcompliancecyber-securityscanning-toolincident-responseforensics-toolssurveillance
  Language:Go 895

• palantir / osquery-configuration

  A repository for using osquery for incident detection and response

  detectionincident-responseinformation-securityocto-correct-managedosquery
  814
• SSTImap

  vladko312 / SSTImap

  Automatic SSTI detection tool with interactive interface

  information-securitypenetration-testingpenetration-testing-toolspentestpentest-toolpentestingpentesting-toolsrcesstipython
  Language:Python 765
• APKHunt

  Cyber-Buddy / APKHunt

  APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

  android-securityinformation-securityinfosecowasppenetration-testingpentestpentestingpentesting-toolssastsecure-codingsecurity-toolsstatic-analysisstatic-analyzercode-reviewmasvsmobile-sec-androidmstgowasp-mobile-topsecurityapkhunt
  Language:Go 731

• Lookyloo / lookyloo

  Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.

  capturedfirinformation-securitylookylooprivacyscrapingweb-security
  Language:Python 679

• p1r06u3 / opencanary_web

  The web management platform of honeypot

  hackerhoneypotinformation-securityopencanary
  Language:Python 662

• Jieyab89 / OSINT-Cheat-sheet

  OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips

  cheatsheetdatasetshackingimintinformation-gatheringinformation-securitymasintosintosintwikireconnaissancesocmintwiki
  642
• obfus.h

  DosX-dev / obfus.h

  Macro-header for compile-time C obfuscation (tcc, win x86/x64)

  antidebugccompile-timeconfusectfeasy-to-useinformation-securitylow-levelmacromsvcnativeobfuscateobfuscationobfuscatorprotectiontcctinytinyccwindows
  Language:C 637

• counteractive / incident-response-plan-template

  A concise, directive, specific, flexible, and free incident response plan template

  cybersecurityincidentincident-managementincident-responseinformation-securityinfosec
  Language:Makefile 629

• msuiche / OPCDE

  OPCDE Cybersecurity Conference Materials

  cybersecurityincident-responseinformation-securityvulnerability
  Language:C++ 606

• repoog / GitPrey

  Searching sensitive files and contents in GitHub associated to company name or other key words

  githubhacking-toolinformation-security
  Language:Python 600

• MahdiMashrur / Awesome-Application-Security-Checklist

  Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application

  apiawesomeawesome-listchecklistinformation-securitymobile-applicationsecuritysecurity-checklistweb-application
  588

• Funkmyster / awesome-cloud-security

  A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

  cloud-securityawssecurityinformation-securitywafdlploggingcloudelasticsearchawesomeawesome-listaws-securitydata-loss-preventionsecurity-standardsnistgoogle-cloud-securityhacktoberfesthacktoberfest2023oracle-cloud-securityhacktoberfestcebu
  574

• ail-project / ail-framework

  AIL framework - Analysis Information Leak framework

  ail-frameworkinformation-extractioninformation-securitydata-miningleak
  Language:Python 564

• wongzeon / ICP-Checker

  ICP备案查询，可查询企业或域名的ICP备案信息，自动完成滑动验证，保存结果到Excel表格，适用于新版的工信部备案管理系统网站，告别频繁拖动验证，以及某站*工具要开通VIP才可查看备案信息的坑

  icpinformation-gatheringinformation-securityosint-toolpythonpython3spiderbeian
  Language:Python 538

• konstruktoid / ansible-role-hardening

  Ansible role to apply a security baseline. Systemd edition.

  almalinuxamazon-linuxansibleauditdcentosdebianhacktoberfesthardeninginformation-securityopenscapsecuritysecurity-compliancesecurity-hardeningsecurity-toolssystemdubuntuvagrant
  Language:Jinja 526

• vlsergey / infosec

  Учебное пособие по защите информации кафедры радиотехники и систем управления МФТИ

  bookcryptographyinformation-securitymactexmiptsecuritytextutorial
  Language:TeX 437

• gh0x0st / Buffer_Overflow

  Don't let buffer overflows overflow your mind

  brainpanbrainpan-vmbuffer-overflowoscp-preposcpoffensive-securityoscp-journeyoscp-guidepenetration-testinginformation-securitycyber-securityhacking
  Language:Python 431

• 1in9e / gosint

  Gosint is a distributed asset information collection and vulnerability scanning platform

  osintinformation-securityinformation-gatheringbugbountysecurity-tools
  Language:JavaScript 420