A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

A collection of various awesome lists for hackers, pentesters and security researchers

An open-source x64/x32 debugger for windows.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

List of Computer Science courses with video lectures.

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Security Guide for Developers (实用性开发人员安全须知)

🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Guide to securing and improving privacy on macOS

SQL powered operating system instrumentation, monitoring, and analytics.

Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

Checklist of the most important security countermeasures when designing, testing, and releasing your API

Liberating Web Analytics. Star us on Github? +1. Matomo is the leading open alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. We love Pull Requests!

⚙️ NGINX config generator on steroids 💉

OpenZeppelin Contracts is a library for secure smart contract development.

How to improve NGINX performance, security, and other important things.

Source code for Hacker101.com - a free online web and mobile security class.

An evolving how-to guide for securing a Linux server.

Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.

KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.

DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Free cross-platform password manager compatible with KeePass

Certificate authority and access plane for SSH, Kubernetes, web applications, and databases