Open highlighted repo slot
Put your repository first
Promote a GitHub repo at the top of Awesome repository list views for 7 days.
GitHub projects from awesome lists
Search names, descriptions, topics, tags, and stacks, then tune results by ecosystem, freshness, health, and cross-list signal.
Open highlighted repo slot
Promote a GitHub repo at the top of Awesome repository list views for 7 days.
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
Shannon is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities before they reach production.
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
🕵️♂️ All-in-one OSINT tool for analysing any website
Infisical is the open-source platform for secrets, certificates, and privileged access management.
Find, verify, and analyze leaked credentials
🤖 The Modern Port Scanner 🤖
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Daemon to ban hosts that cause multiple authentication errors
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。(An intranet comprehensive scanning tool, enabling one-click automated, all-round vulnerability scanning)
Scapy: the Python-based interactive packet manipulation program & library.
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
The best IP Toolbox. Check your IP address & geolocation, test IP for WebRTC and DNS IP leaks, run an IP quality check, browser fingerprint check, website availability check, network speed test, global latency test, MTR test, Whois search, and more.
Automated penetration testing & attack surface management platform. Recon, scan, exploit, report — 600+ exploits, 90+ integrations, 10K+ detections.
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Bandit is a tool designed to find common security issues in Python code.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
A static analysis security vulnerability scanner for Ruby on Rails applications
Infection Monkey - An open-source adversary emulation platform
A Modern Orchestration Engine for Security
syzkaller is an unsupervised coverage-guided kernel fuzzer
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Open Source Cloud Native Application Protection Platform (CNAPP)
Automated Mass Exploiter
IntelOwl: manage your Threat Intelligence at scale
A full-stack AI Red Teaming platform securing AI ecosystems via OpenClaw Security Scan, Agent Scan, Skills Scan, MCP scan, AI Infra scan and LLM jailbreak evaluation.
State-of-the-art native debugging tools
My simple Swiss Army knife for http/https troubleshooting and profiling.