Stars
practice made claude perfect
ChaoSlingr: Introducing Security into Chaos Testing
by ex-googlers, for ex-googlers - a lookup table of similar tech & services
noDRM / DeDRM_tools
Forked from apprenticeharper/DeDRM_toolsDeDRM tools for ebooks
Blackbox Protobuf is a set of tools for working with encoded Protocol Buffers (protobuf) without the matching protobuf definition.
OpenObserve is an open-source observability platform for logs, metrics, traces, and frontend monitoring. A cost-effective alternative to Datadog, Splunk, and Elasticsearch with 140x lower storage c…
Mobile Application Security Design Guide
Japanese translation of "The Elevation of Privilege Threat Modeling Game"
PortSwigger / headless-burp
Forked from NetsOSS/headless-burpProvides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Interactor provides a common interface for performing complex user interactions.
A simple tool for interacting with OWASP ZAP from the commandline.
Modern authentication, on your terms. Open source alternative to Auth0, Clerk, WorkOS, Stytch.
Automation engine to build, test and ship any codebase. Runs locally, in CI, or directly in the cloud
Pluggable linting tool to prevent committing credential.
An end-to-end scenario testing tool for HTTP/gRPC server.
A suite of gRPC debugging tools. Like Fiddler/Charles but for gRPC.