Stars
Automatically audit your Keycloak configuration for security issues
Snippet CLI manager for quickly generating and executing shell snippets without leaving the terminal.
Vane is an AI-powered answering engine.
High performance self-hosted photo and video management solution.
ESPHome is a system to control your ESP32, ESP8266, BK72xx, RP2040 by simple yet powerful configuration files and control them remotely through Home Automation systems.
SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
🕷️ A `.git` folder exploiting tool that is able to restore the entire Git repository, including stash, common branches and common tags.
Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Extract uncompiled, uncompressed SPA code from Webpack source maps.
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
secureCodeBox (SCB) - continuous secure delivery out of the box
Vulnerable app with examples showing how to not use secrets
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
NMAP Vulnerability Scanning Scripts
Papers from the computer science community to read and discuss.
A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.
Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
LZR quickly detects and fingerprints unexpected services running on unexpected ports.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
Build your own 'AirTags' 🏷 today! Framework for tracking personal Bluetooth devices via Apple's massive Find My network.