Security Research
CVE repos and security research
Showing 61-80 of 1,841 projects
owasp-modsecurity/ModSecurity
ModSecurity is an open-source web application firewall (WAF) engine for Apache, IIS, and Nginx that provides protection from web attacks.
malwaredllc/byob
An open-source post-exploitation framework for students, researchers and developers.
toniblyx/my-arsenal-of-aws-security-tools
A comprehensive list of open-source tools for AWS security, including defensive, offensive, auditing, and incident response capabilities.
juliocesarfort/public-pentesting-reports
A collection of public penetration test reports for security research and learning.
zardus/ctf-tools
A collection of setup scripts for security research tools, useful for penetration testing and ctf challenges.
github/codeql
CodeQL is a code analysis platform that powers security research and code scanning for GitHub Advanced Security.
ashishb/android-security-awesome
A comprehensive collection of Android security-related resources for developers.
ctf-wiki/ctf-wiki
This is a wiki for Capture the Flag (CTF) challenges, covering various topics like crypto, web, reverse engineering, and more.
jgamblin/Mirai-Source-Code
Leaked source code for the Mirai botnet, for research and indicator of compromise (IoC) development purposes.
evil-huawei/evil-huawei
An open-source project focused on tracking and exposing Huawei's alleged misdeeds.
thewhiteh4t/seeker
This is a reconnaissance tool for locating smartphones using social engineering techniques.
kylemanna/docker-openvpn
OpenVPN server in a Docker container complete with an EasyRSA PKI CA for secure VPN connectivity.
WebGoat/WebGoat
WebGoat is a deliberately insecure web application for security training and testing.
evilsocket/pwnagotchi
A deep reinforcement learning tool that instrumentizes bettercap for WiFi pwning and handshake collection.
OpenCTI-Platform/opencti
Open Cyber Threat Intelligence Platform for security analysts and researchers
testssl/testssl.sh
A command-line tool for testing TLS/SSL encryption on any port, with support for various protocols and ciphers.
OWASP/wstg
The OWASP Web Security Testing Guide is a comprehensive open-source guide for security testing of web applications and services.
We5ter/Scanners-Box
A powerful toolkit for security professionals and hackers, offering a wide range of scanning and analysis tools.
meirwah/awesome-incident-response
A curated list of tools for incident response and digital forensics investigations.
fuzzdb-project/fuzzdb
A dictionary of attack patterns and primitives for application fault injection and resource discovery.
Stay in the loop
Get weekly updates on trending AI coding tools and projects.