Automated All-in-One OS Command Injection Exploitation Tool.

Node is running but you don't know why? why-is-node-running is here to help you.

A collective list of free APIs

A simple touchID prompt'er for use in shell scripts.

Entropy is a CLI tool that will scan your codebase for high entropy lines, which are often secrets.

Cloud Commotion intends to cause chaos to simulate security incidents

Explore and optimize any database

OpenRecall is a fully open-source, privacy-first alternative to proprietary solutions like Microsoft's Windows Recall. With OpenRecall, you can easily access your digital history, enhancing your me…

Burp Plugin to Bypass WAFs through the insertion of Junk Data

🛡️ ⚛️ A simple, scalable, and powerful architecture for building production ready React applications.

Le docker français 🐳 🇫🇷

Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3

The commitizen command line utility. #BlackLivesMatter

A GitHub App that acts like a Security Token Service (STS) for the Github API

binary releases of VS Code without MS branding/telemetry/licensing

Anvilogic Forge

Nikto web server scanner

Awesome secure by default libraries to help you eliminate bug classes!

🌸 A command-line fuzzy finder

A tiling window manager for macOS based on binary space partitioning

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Access, a centralized portal for employees to transparently discover, request, and manage their access for all internal systems needed to do their jobs

Check if importing a given ES module has side effects, and where they come from.

Utility to craft HTML or SVG smuggled files for Red Team engagements

Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd-party git …

Documenting your Threat Models with HCL

container image to single executable compiler