Awesome Security

HonSSH is designed to log all SSH communications between a client and server.

Mirror of Apache Spot

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.

Universal web application security sensor intended for real-time monitoring and defense.

Aggregates security advisories from 10 international CERTs daily and provides an AI skill that cross-references alerts against your project's tech stack.

Incident Response - Fast suspicious file finder

DEPRECATED - USE v3 (bearded-avenger)

Secure shell history commands by finding sensitive data

Open Source SIEM (Security Information and Event Management system).

🔓 CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI.

Hadoop library to read packet capture (PCAP) files

SQL Firewall Extension for PostgreSQL

A secure and easy-to-use store for your production secrets

CLI utility and Python module for analyzing log files and other data.

:shower: Sanitising your documents, one threat at a time. — Content Disarm & Reconstruction Software

preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.

Scalable Binary Data Extraction in Hadoop

Cyclops 是一款具有 XSS 检测功能的浏览器

A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation

Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.

Amun Honeypot

No description.

Intrusion Prevention System (IPS) for Secure Shell (SSH)

CLI program for automating the setup, configuration, and use of cybersecurity solutions

Curated list of Cyber Security acronyms & abbreviations

A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for further processing!

Android Malware Behavior Deleter

🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️

:dizzy: A coroutines-driven Low & Slow traffic sender, written in Rust

A tool to extract local data storage of an Android application in one click.

No description.

Markdown version of OWASP Testing Checklist v4

No description.

A CVE scanner which can process a pkglist.

Sigma Queries turned into KQL for Defender using pysigma - Automated

TerraSigma - Modern Detection Engineering for the Cloud-Native SIEM Microsoft Sentinel

Detect the Shai Hulud 2.0 npm supply chain attack (796+ packages). Scans for malicious files, hashes, and compromised ecosystems. Fast, accurate scanner.

Is this app legit? Check before you connect. Free URL security scanner for indie developers and AI builders. Live at trustscanpro.com

Detect CVE-2025-55182 (React2Shell) RCE vulnerability in React Server Components. Fast, accurate scanner with zero false positives.

Sigma Queries turned into SPL for Splunk Enterprise and Enterprise Security using pysigma - Automated