Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

A collection of Linux Sysadmin Test Questions and Answers. Test your knowledge and skills in different fields with these Q/A.

A curated list of tools for incident response

MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)

Git All the Payloads! A collection of web attack payloads.

Open Cyber Threat Intelligence Platform

VirusTotal Wanna Be - Now with 100% more Hipster

A list of resources in different fields of Computer Science (multiple languages)

Awesome Node.js Security resources

🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2020

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues involving the implementation of deprecated libraries.

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing them down. #nsacyber

Web app that provides basic navigation and annotation of ATT&CK matrices

Sample queries for Advanced hunting in Microsoft Threat Protection

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.

The all-in-one Red Team extension for Web Pentester 🛠

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Educational, CTF-styled labs for individuals interested in Memory Forensics

OPCDE Cybersecurity Conference Materials

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources