infosec
There are 184 repositories under infosec topic.
threat9 / routersploit
Exploitation Framework for Embedded Devices
Language:Python 10298maurosoria / dirsearch
Web path scanner
Language:Python 8122- spiderfoot
smicallef / spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Language:Python 8084 - Language:Go 7124
samratashok / nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Language:PowerShell 6570- Language:PHP 6241
infosecn1nja / Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
- traitor
liamg / traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
Language:Go 5229 rmusser01 / Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Language:CSS 4409- hettyLanguage:Go 4374
- rengine
yogeshojha / rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Language:JavaScript 4245 EdOverflow / bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
onlurking / awesome-infosec
A curated list of awesome infosec courses and training resources.
PaulSec / awesome-sec-talks
A collected list of awesome security talks
- Language:Python 3360
- 1earn
ffffffff0x / 1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Language:C++ 3299 - Language:Python 3249
- awesome-shodan-queries
jakejarvis / awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
- can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
- cve
- Language:Go 2943
- reconftw
six2dez / reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Language:Shell 2785 ignis-sec / Pwdb-Public
A collection of all the data i could extract from 1 billion leaked credentials from internet.
KuroLabs / stegcloak
Hide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐
Language:JavaScript 2552- Language:Python 2541
fabacab / awesome-cybersecurity-blueteam
:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
ihebski / DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Language:Jupyter Notebook 2511Roave / SecurityAdvisories
:closed_lock_with_key: Security advisories as a simple composer exclusion list, updated daily
decalage2 / awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
- awesome-nodejs-security
lirantal / awesome-nodejs-security
Awesome Node.js Security resources
- Language:Python 1817
skerkour / black-hat-rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Language:Rust 1764inonshk / 31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
- security-txt
securitytxt / security-txt
A proposed standard that allows websites to define security policies.
Language:HTML 1575 jaeles-project / jaeles
The Swiss Army knife for automated Web Application Testing
Language:Go 1559- Language:Python 1548
