The Book Of Secret Knowledge

:cherry_blossom: A command-line fuzzy finder

The Moby Project - a collaborative project for the container ecosystem to assemble container-based systems

A simple zero-config tool to make locally trusted development certificates with any names you'd like.

🦍 The API and AI Gateway

Making Docker and Kubernetes management easy.

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

A modern and intuitive terminal-based text editor

Complete container management platform

HTTP load testing tool and library. It's over 9000!

HTTP load generator, ApacheBench (ab) replacement

A fully-modern text-based browser, rendering to TTY and browsers

Application Kernel for Containers

Top-like interface for container metrics

In-depth attack surface mapping and asset discovery

Make JSON greppable!

Fast passive subdomain enumeration tool.

Directory/File, DNS and VHost busting tool written in Go

dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Interactive cli tool for HTTP inspection

🛡️ Open-source and cloud-native Web Application Firewall (WAF)

Universal command-line interface for SQL databases

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

Fast cross-platform HTTP benchmarking tool written in Go

A Modern Orchestration Engine for Security

syzkaller is an unsupervised coverage-guided kernel fuzzer

Ethr is a Comprehensive Network Measurement Tool for TCP, UDP & ICMP.

DEPRECATED. Please use mholt/archives instead.

A simple IP address lookup service.

The interactive web server

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Network Diagnostic Tool

Tools to bootstrap CAs, certificate requests, and signed certificates.

the scott CPU from "But How Do It Know?" by J. Clark Scott

:zap: fast dns proxy that can run anywhere, built to black-hole internet advertisements and malware servers

Binary editor written in Go

A laboratory for learning secure web and mobile development in a practical manner.

A conformance testing tool for HTTP/2 implementation.

My CTF journey since 2015. Stats, writeups, code snippets, notes, challenges.

tcpterm is a packet visualizer in TUI.

Host and manage multiple Juice Shop instances for security trainings and Capture The Flags

Insert trace-points into the running configuration to observe the path of packets through the iptables chains.