Arsenal is just a quick inventory and launcher for hacking programs

Linker/Compiler/Tool detector for Windows, Linux and MacOS.

Visualize network topologies and collect graph statistics based on pcap files

A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.

Metasploit Framework

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

A Toolkit for Industrial Topic Modeling

Baidu's open-source Sentiment Analysis System.

DevSecOps Automation and Orchestration Project

List of XSS Vectors/Payloads

Image optimization microservice for web request.

A Go port of the awesome jsbeautifier tool

Devops examples for Pyhton, Flask, Stacker, AWS, Kubernetes, Helm, Docker

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

A Go OpenID Connect client.

MinIO is a high-performance, S3 compatible object store, open sourced under GNU AGPLv3 license.

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernet…

Sign and verify ZIP archives

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

OWASP API Security Project

Open Security Controls Assessment Language (OSCAL)

API Standards for 18F

API Standards for GSA

secureCodeBox (SCB) - continuous secure delivery out of the box

Deployment checklist for securely deploying Docker

NCSC Guidance for secure development and deployment

collection of helper tools for fuzzing