Awesome

GitHub projects from awesome lists

Search awesome repositories

Search names, descriptions, topics, tags, and stacks, then tune results by ecosystem, freshness, health, and cross-list signal.

Repos indexed
17,373
Awesome lists tracked
125
Current results
41

Find repositories

Start broad, then narrow by ecosystem, freshness, health, and growth.

Clear 1 refinement
Search mode
Tune results
More filters Topics, generated tags, stack, files, age, archive status, and growth.
Ecosystem
Files

Choose a suggestion or use commas to require multiple files.

Health

Uses known first-commit dates.

Momentum
Filters by observed commit-count growth over the repository's latest 7-day capture window. Repositories without a recent baseline are excluded.
Filters by observed GitHub star growth over the repository's latest 7-day capture window. Repositories without a recent baseline are excluded.
Reset filters
41 repos shown
Highlighted

Open highlighted repo slot

Put your repository first

Promote a GitHub repo at the top of Awesome repository list views for 7 days.

KeygraphHQ/shannon

Shannon is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities before they reach production.

AI dev
Updated
2026-07-16
Lists
0 list mentions
First commit
2025-10-04
History
46 history points
License
AGPL-3.0
Issues
24 open
Forks
5,308
Commits
261 commits
Star growth, last 7 days
+169 +0.4%
Commit velocity, last 7 days
+2 +0.8%
soxoj/maigret

🕵️‍♂️ Collect a dossier on a person by username from 3000+ sites

Updated
2026-07-06
Lists
3 list mentions
First commit
2020-01-08
History
3 history points
License
MIT
Issues
37 open
Forks
2,651
Commits
1,432 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
promptfoo/promptfoo

Test your prompts, agents, and RAGs. Red teaming/pentesting/vulnerability scanning for AI. Compare performance of GPT, Claude, Gemini, DeepSeek, and more. Simple declarative configs with command line and CI/CD integration. Used by OpenAI and Anthropic.

AI dev
Updated
2026-07-07
Lists
7 list mentions
First commit
2023-03-31
History
8 history points
License
MIT
Issues
397 open
Forks
2,049
Commits
9,142 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
bee-san/Ciphey

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Updated
2026-07-03
Lists
1 list mention
First commit
2019-07-18
History
2 history points
License
MIT
Issues
1 open
Forks
1,441
Commits
2,965 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
smicallef/spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Updated
2026-04-13
Lists
3 list mentions
First commit
2012-04-28
History
3 history points
License
MIT
Issues
269 open
Forks
3,174
Commits
3,742 commits
Star growth, last 7 days
0 0.0%
Commit velocity, last 7 days
0 0.0%
OJ/gobuster

Directory/File, DNS and VHost busting tool written in Go

Stack
GitHub topics
Updated
2026-07-09
Lists
1 list mention
First commit
2014-11-14
History
2 history points
License
Apache-2.0
Issues
22 open
Forks
1,595
Commits
607 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
juice-shop/juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

AI dev
Updated
2026-07-05
Lists
2 list mentions
First commit
2014-09-19
History
3 history points
License
MIT
Issues
3 open
Forks
18,576
Commits
23,171 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
OWASP/mastg

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

AI dev
Updated
2026-07-05
Lists
2 list mentions
First commit
2016-10-01
History
3 history points
License
CC-BY-SA-4.0
Issues
225 open
Forks
2,770
Commits
10,718 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
infosecn1nja/Red-Teaming-Toolkit

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Updated
2026-05-07
Lists
2 list mentions
First commit
2018-04-26
History
2 history points
License
GPL-3.0
Issues
8 open
Forks
2,363
Commits
221 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
1N3/Sn1per

Automated penetration testing & attack surface management platform. Recon, scan, exploit, report — 600+ exploits, 90+ integrations, 10K+ detections.

Updated
2026-07-04
Lists
1 list mention
First commit
2015-09-06
History
2 history points
License
NOASSERTION
Issues
7 open
Forks
2,105
Commits
722 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
OWASP/wstg

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Updated
2026-06-30
Lists
1 list mention
First commit
2017-05-14
History
2 history points
License
CC-BY-SA-4.0
Issues
41 open
Forks
1,641
Commits
1,241 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
aliasrobotics/cai

Cybersecurity AI (CAI), the framework for AI Security

AI dev
Updated
2026-07-14
Lists
2 list mentions
First commit
2025-03-11
History
6 history points
License
NOASSERTION
Issues
8 open
Forks
1,389
Commits
1,078 commits
Star growth, last 7 days
0 0.0%
Commit velocity, last 7 days
0 0.0%
n1nj4sec/pupy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

Archived
Updated
2024-03-22
Lists
1 list mention
First commit
2015-09-21
History
2 history points
License
NOASSERTION
Issues
Disabled
Forks
1,856
Commits
3,542 commits
Star growth, last 7 days
0 0.0%
Commit velocity, last 7 days
0 0.0%
six2dez/reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

AI dev
Updated
2026-06-29
Lists
2 list mentions
First commit
2020-12-30
History
2 history points
License
MIT
Issues
2 open
Forks
1,197
Commits
2,363 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
evyatarmeged/Raccoon

A high performance offensive security tool for reconnaissance and vulnerability scanning

Updated
2026-04-21
Lists
1 list mention
First commit
2018-05-15
History
2 history points
License
MIT
Issues
14 open
Forks
473
Commits
190 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
archerysec/archerysec

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

Updated
2025-06-11
Lists
1 list mention
First commit
2017-12-04
History
2 history points
License
GPL-3.0
Issues
40 open
Forks
523
Commits
1,455 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
aress31/burpgpt

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

Updated
2024-06-09
Lists
1 list mention
First commit
2023-04-08
History
4 history points
License
Apache-2.0
Issues
Disabled
Forks
284
Commits
79 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
sleventyeleven/linuxprivchecker

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

Updated
2022-01-31
Lists
1 list mention
First commit
2016-03-02
History
2 history points
License
MIT
Issues
Disabled
Forks
538
Commits
37 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
PabloLec/RecoverPy

Interactively find and recover deleted or :point_right: overwritten :point_left: files from your terminal

Updated
2026-06-30
Lists
1 list mention
First commit
2021-02-24
History
5 history points
License
GPL-3.0
Issues
0 open
Forks
88
Commits
1,448 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history
CERT-Polska/Artemis

A modular vulnerability scanner with automatic report generation capabilities.

Updated
2026-07-06
Lists
1 list mention
First commit
2020-11-06
History
2 history points
License
BSD-3-Clause
Issues
53 open
Forks
140
Commits
2,400 commits
Star growth, last 7 days
No 7-day history
Commit velocity, last 7 days
No 7-day history