Repositories list

• trufflehog

  Public
  Find, verify, and analyze leaked credentials

  Go

  •

  GNU Affero General Public License v3.0

  •2.3k2.3k forks•00 stars•00 issues•1111 pull requests•Updated Apr 17, 2026Apr 17, 2026

• PASTA-Threat-Modeling-Resources

  Public
  11 fork•22 stars•00 issues•00 pull requests•Updated Mar 1, 2026Mar 1, 2026

• steampipe-mod-kubernetes-compliance

  Public
  Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters using Powerpipe and Stea…

  Pascal

  •

  Apache License 2.0

  •77 forks•00 stars•00 issues•00 pull requests•Updated Jan 16, 2026Jan 16, 2026

• steampipe-mod-gcp-compliance

  Public
  Run individual configuration, compliance and security controls or full compliance benchmarks for CIS across all of your GCP projects using Powerpipe and Steampi…

  Puppet

  •

  Apache License 2.0

  •1414 forks•00 stars•00 issues•00 pull requests•Updated Jan 16, 2026Jan 16, 2026

• steampipe-mod-azure-compliance

  Public
  Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, and more across all of your Azure sub…

  Puppet

  •

  Apache License 2.0

  •1919 forks•00 stars•00 issues•00 pull requests•Updated Jan 16, 2026Jan 16, 2026

• steampipe-mod-aws-compliance

  Public
  Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.

  Puppet

  •

  Apache License 2.0

  •7070 forks•00 stars•00 issues•00 pull requests•Updated Jan 16, 2026Jan 16, 2026

• fork-community

  Public
  Fork Threat Modeling Platform - Community

  threat-modelingthreatmodelingthreatmodelling

  threat-modelingthreatmodelingthreatmodelling

  MIT License

  •88 forks•2828 stars•00 issues•11 pull request•Updated Oct 10, 2025Oct 10, 2025

• helm-charts

  Public
  devops-ia/helm-charts

  Smarty

  •

  MIT License

  •33 forks•00 stars•00 issues•00 pull requests•Updated Apr 8, 2024Apr 8, 2024

• research

  Public
  VerSprite Security Research

  androidmacosreverse-engineering+ 2

  androidmacosreverse-engineeringexploit-developmentvulnerability-research

  JavaScript

  •4040 forks•172172 stars•00 issues•00 pull requests•Updated Feb 2, 2023Feb 2, 2023

• alpnpass

  Public
  This tool will listen on a given port, strip SSL encryption, forward traffic through a plain TCP proxy, then encrypt the returning traffic again and send it to …

  tlssslsecurity+ 4

  tlssslsecuritymitmmitmproxyalpnsecurity-tools

  Go

  •

  The Unlicense

  •77 forks•3131 stars•00 issues•00 pull requests•Updated Oct 18, 2021Oct 18, 2021

• NotQuite0DayFriday

  Public
  This is a repo which documents real bugs in real software to illustrate trends, learn how to prevent or find them more quickly.

  Python

  •

  Other

  •168168 forks•11 star•00 issues•00 pull requests•Updated Mar 12, 2021Mar 12, 2021

• opensoc

  Public
  Shell

  •00 forks•00 stars•00 issues•00 pull requests•Updated Sep 25, 2020Sep 25, 2020

• engage

  Public
  Tools and Materials for the Frida Engage Blog Series

  androidshelltcp+ 3

  androidshelltcpreverse-engineeringfridaelf-parser

  JavaScript

  •1717 forks•4545 stars•00 issues•00 pull requests•Updated Mar 28, 2018Mar 28, 2018

• sleepy-puppy

  Public
  Blind Cross-site Scripting Collector and Manager

  HTML

  •2424 forks•11 star•00 issues•00 pull requests•Updated Jul 10, 2015Jul 10, 2015

• flask-json-pickle

  Public
  Vulnerable Flask Web Application

  Python

  •55 forks•99 stars•00 issues•00 pull requests•Updated Apr 27, 2015Apr 27, 2015

• BSidesSF-2015

  Public
  Introduction to Reverse Engineering Training

  Java

  •33 forks•1111 stars•00 issues•00 pull requests•Updated Apr 22, 2015Apr 22, 2015

• exploit-exercises-arm

  Public
  I have taken all of the challenges from Protostar - https://exploit-exercises.com/protostar/- and compiled them for the ARM architecture.

  C

  •3939 forks•2525 stars•00 issues•00 pull requests•Updated Apr 7, 2015Apr 7, 2015

• tweepy

  Public
  Twitter for Python!

  Python

  •

  MIT License

  •4.6k4.6k forks•00 stars•00 issues•00 pull requests•Updated Apr 4, 2015Apr 4, 2015

• python-stix

  Public
  A Python library for parsing, manipulating, and generating STIX content.

  Python

  •

  BSD 3-Clause "New" or "Revised" License

  •8989 forks•11 star•00 issues•00 pull requests•Updated Dec 23, 2014Dec 23, 2014

• profile-builder

  Public
  Demo application for json-io research

  Java

  •00 forks•00 stars•00 issues•00 pull requests•Updated Aug 15, 2014Aug 15, 2014

• exifphp

  Public
  A vulnerable application to demonstrate smuggling PHP code through EXIF data

  PHP

  •

  GNU General Public License v3.0

  •33 forks•22 stars•00 issues•00 pull requests•Updated Jul 29, 2014Jul 29, 2014

• PCredz

  Public
  This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc fr…

  Python

  •450450 forks•11 star•00 issues•00 pull requests•Updated Jun 25, 2014Jun 25, 2014

• liffy

  Public
  Local File Inclusion Exploitation Tool

  Python

  •

  GNU General Public License v2.0

  •2020 forks•33 stars•00 issues•00 pull requests•Updated Jun 16, 2014Jun 16, 2014