WAFW00F allows one to identify and fingerprint Web App Firewall
Server for security audits supporting public key authentication
GRR Rapid Response, remote live forensics for incident response
Modular OSINT framework for automated open-source intelligence gatheri
Real-time GitHub monitor that detects leaked API keys and secrets
AWS Encryption SDK
All-in-one command-line toolkit for security testing and OSINT tools
Utility for sending notifications, on demand and when commands finish
Skills for threat modeling, scanning, triage, patching, etc.
A single archive of public exploit PoCs and vulnerability research
Daily updated lists of cloud, bot, and service IP ranges
Multi-cloud OSINT tool for discovering public cloud resources
OSS-Fuzz - continuous fuzzing for open source software
macOS Security Compliance Project
Automate search engine dorking across hundreds of websites
CTFs as you need them
OAuth2 goodies for the Djangonauts!
A generic, spec-compliant, thorough implementation of the OAuth
Command line OSINT and threat intelligence automation tool
Bleeding edge django template focused on code quality and security
Rules engine for cloud security, cost optimization, and governance
Automation framework for reconnaissance and penetration testing tasks
The recursive internet scanner for hackers
GTFOBins is a curated list of Unix binaries
Check breached emails and find exposed passwords from public dumps