information-security

There are 99 repositories under information-security topic.

• smicallef / spiderfoot

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

  footprintingosintthreatintelpythoninfosecintelligence-gatheringosint-reconnaissancepentestingthreat-intelligencesecurity-toolsinformation-gatheringcybersecurityctiosint-frameworkattacksurfaceosint-toolhackinginformation-securityrecon
  Language:Python 11789
• Scanners-Box

  We5ter / Scanners-Box

  A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

  pentesting-toolshacker-toolsvulnerability-scannersinformation-securityredteam-toolspenetration-testingdevsecopssecurity-automationsmart-contractsprivacy-complianceapk-analysisbinary-analysisexploitation-frameworkmalware-analysissecurity-auditcode-analyzerstatic-analysiswifi-hackingwifi-security
  7997

• rmusser01 / Infosec_Reference

  An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

  infosecinfosec-referencereverse-engineeringhackingpentestingpenetration-testingreferenceslinuxprivilege-escalationinformation-securityblueteamred-teamwindowsosxforensicshacking-simulatorprivilege-escalation-exploitshacktoberfesthacktoberfest2021
  Language:CSS 5362

• MISP / MISP

  MISP (core software) - Open Source Threat Intelligence and Sharing Platform

  mispthreat-sharingthreat-huntingthreatintelmalware-analysisstixinformation-exchangefraud-managementsecuritycticybersecurityfraud-detectionfraud-preventionthreat-analysisinformation-securityinformation-sharingthreat-intelligencethreat-intelligence-platformintelligencethreat-intel
  Language:PHP 5009
• Cheatsheet-God

  OlivierLaflamme / Cheatsheet-God

  Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

  awesomecheatsheetcheatsheet-godhackinghacking-codehacking-toolhowto-tutorialinformation-securityoscposcp-journeyoscp-toolsoscp5penetrationpenetration-testpenetration-testingpentestingrefreshersecuritysecurity-toolssecurity-vulnerability
  4729

• clong / DetectionLab

  Automate the creation of a lab environment complete with security tooling and logging best practices

  ansibledetectiondetectionlabdfirdfir-automationinformation-securitylab-environmentosquerypackerpowershellsysmonterraformvagrantvagrantfile
  Language:HTML 4511
• securityonion

  Security-Onion-Solutions / securityonion

  Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, and case management. It also includes other tools such as Playbook, osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

  case-managementcyber-securityendpoint-securityinformation-securityintrusion-detection-systemmonitoringnetwork-securitysecuritysecurity-toolsthreat-hunting
  Language:Shell 2876

• ComplianceAsCode / content

  Security automation content in SCAP, Bash, Ansible, and other formats

  securitycompliancescapxccdfovalcpecceusgcbpci-dssosppstigapplication-securitysecurity-toolssecurity-hardeningsecurity-automationsecurity-profilehardeninginformation-securitycybersecurityansible
  Language:Shell 2085

• lucasjacks0n / EggShell

  iOS/macOS/Linux Remote Administration Tool

  exploitationinformation-securityiosjailbreakmacosmetasploitmeterpreterpentest-scriptspentest-toolremote-admin-toolreverse-shell
  Language:Objective-C 1614

• tokyoneon / Chimera

  Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

  bypass-antivirusantivirus-evasionantivirusattackoffensive-securitykali-scriptskali-scriptkali-linuxkaliinformation-securityreverse-shellpayloadpayloadspenetration-testingpayload-generatorshellshell-scriptsamsi
  Language:PowerShell 1314

• konstruktoid / hardening

  Hardening Ubuntu. Systemd edition.

  hacktoberfesthardeninginformation-securitysecuritysecurity-automationsecurity-compliancesecurity-hardeningsecurity-toolsshellsystemdubuntuubuntu-server
  Language:Shell 1310

• Cyber-Guy1 / API-SecurityEmpire

  API Security Project aims to present unique attack & defense methods in API Security field

  cybersecuritypenetration-testingapisecurityinformation-securitybugbountyapibug-bountyinfoseccybersectipsbugbountytips
  1287

• CIRCL / AIL-framework

  AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project

  ail-frameworkinformation-leakinformation-securityanalysisdata-miningsecuritysecurity-incidentsleakprivacy
  Language:Python 1278

• jonluca / Anubis

  Subdomain enumeration and information gathering tool

  anubissubdomainkalinetworknetwork-securityinformation-securityinformation-gatheringanubis-dbsubdomainsdnsdumpsternetcrafthackertarget
  Language:Python 1155
• my-infosec-awesome

  pe3zx / my-infosec-awesome

  My curated list of awesome links, resources and tools on infosec related topics

  awesomeawesome-listinformation-securitylist
  1026

• payloadbox / xxe-injection-payload-list

  🎯 XML External Entity (XXE) Injection Payload List

  xxexxe-injectionxxe-payloadsxxe-examplexmlwebsecuritywebsecurity-referenceinfosecbugbountybug-bountyweb-application-securitycybersecuritycyber-securityinformation-securityxml-entitypayloadxxe-payloadxxe-payload-listpayloadshacking
  1019

• ansjdnakjdnajkd / iOS

  Most usable tools for iOS penetration testing

  applecheatsheetfridaghidrainformation-securityinformation-security-researchinfoseciosjailbreakkeychainmacosobjectionobjective-cpentestresearchsecuritysecurity-toolsslidesswifttools
  955
• Open-Source-Security-Guide

  mikeroyal / Open-Source-Security-Guide

  Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

  vulnerabilitiesvulnerability-detectionprivacy-protectionpentestersnetwork-analysisintrusion-detectioninfosecincident-managementmitre-attackdetection-engineeringkali-linuxoffensive-securityinformation-securitysiemcompliancecyber-securityscanning-toolincident-responseforensics-toolssurveillance
  Language:Go 855

• palantir / osquery-configuration

  A repository for using osquery for incident detection and response

  osqueryincident-responsedetectioninformation-securityocto-correct-managed
  805
• APKHunt

  Cyber-Buddy / APKHunt

  APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

  android-securityinformation-securityinfosecowasppenetration-testingpentestpentestingpentesting-toolssastsecure-codingsecurity-toolsstatic-analysisstatic-analyzercode-reviewmasvsmobile-sec-androidmstgowasp-mobile-topsecurityapkhunt
  Language:Go 693
• SSTImap

  vladko312 / SSTImap

  Automatic SSTI detection tool with interactive interface

  information-securitypenetration-testingpenetration-testing-toolspentestpentest-toolpentestingpentesting-toolspythonrcessti
  Language:Python 659

• p1r06u3 / opencanary_web

  The web management platform of honeypot

  honeypotopencanaryinformation-securityhacker
  Language:Python 656

• Lookyloo / lookyloo

  Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.

  capturedfirinformation-securitylookylooprivacyscrapingweb-security
  Language:Python 655

• repoog / GitPrey

  Searching sensitive files and contents in GitHub associated to company name or other key words

  githubhacking-toolinformation-security
  Language:Python 600

• msuiche / OPCDE

  OPCDE Cybersecurity Conference Materials

  cybersecurityincident-responsevulnerabilityinformation-security
  Language:C++ 592

• counteractive / incident-response-plan-template

  A concise, directive, specific, flexible, and free incident response plan template

  incident-responseincidentincident-managementinfosecinformation-securitycybersecurity
  Language:Makefile 576

• MahdiMashrur / Awesome-Application-Security-Checklist

  Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application

  apiawesomeawesome-listchecklistinformation-securitymobile-applicationsecuritysecurity-checklistweb-application
  575

• Funkmyster / awesome-cloud-security

  A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

  cloud-securityawssecurityinformation-securitywafdlploggingcloudelasticsearchawesomeawesome-listaws-securitydata-loss-preventionsecurity-standardsnistgoogle-cloud-securityhacktoberfesthacktoberfest2023oracle-cloud-securityhacktoberfestcebu
  562

• wongzeon / ICP-Checker

  ICP备案查询，可查询企业或域名的ICP备案信息，自动完成滑动验证，保存结果到Excel表格，适用于新版的工信部备案管理系统网站，告别频繁拖动验证，以及某站*工具要开通VIP才可查看备案信息的坑

  beianicpinformation-gatheringinformation-securityosint-toolpythonpython3spider
  Language:Python 511

• ail-project / ail-framework

  AIL framework - Analysis Information Leak framework

  ail-frameworkinformation-extractioninformation-securitydata-miningleak
  Language:Python 501

• konstruktoid / ansible-role-hardening

  Ansible role to apply a security baseline. Systemd edition.

  ansiblesystemdauditdubuntucentoshardeningsecuritysecurity-hardeningvagrantopenscapinformation-securitysecurity-toolssecurity-compliancedebianalmalinuxhacktoberfestamazon-linux
  Language:Jinja 499

• Jieyab89 / OSINT-Cheat-sheet

  OSINT cheat sheet, list OSINT tools, dataset, article, book and OSINT tips

  cheatsheethackinginformation-gatheringinformation-securityosintreconnaissancesocmint
  440

• vlsergey / infosec

  Учебное пособие по защите информации кафедры радиотехники и систем управления МФТИ

  bookcryptographyinformation-securitymactexmiptsecuritytextutorial
  Language:TeX 435

• gh0x0st / Buffer_Overflow

  Don't let buffer overflows overflow your mind

  brainpanbrainpan-vmbuffer-overflowcyber-securityhackinginformation-securityoffensive-securityoscposcp-guideoscp-journeyoscp-preppenetration-testing
  Language:Python 426
• obfus.h

  DosX-dev / obfus.h

  Macro-header for compile-time C obfuscation (tcc, win x86/x64)

  cconfuseeasy-to-useinformation-securitymacronativeobfuscationobfuscatorprotectiontcctinywindowsantidebugcompile-timetinyccmsvcobfuscatelow-levelctf
  Language:C 425

• virajkulkarni14 / WebDeveloperSecurityChecklist

  A checklist of important security issues you should consider when creating a web application.

  checklistinformation-securityweb-development
  410