Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.

Run macOS on QEMU/KVM. With OpenCore + Monterey + Ventura + Sonoma support now! Only commercial (paid) support is available now to avoid spammy issues. No Mac system is required.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

💥 A curated list of Terminal frameworks, plugins & resources for CLI lovers.

🎬 A curated list of movies every hacker & cyberpunk must watch.

Some setup scripts for security research tools.

A collection of android security related resources

Testing TLS/SSL encryption anywhere on any port

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A raspberrypi distro to display a full page browser on boot

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

Rockyou for web fuzzing

A script that you can run in the background!

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widesprea…

OSX and iOS related security tools

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way …

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

Explore guides

The main SamuraiWTF collaborative distro repo.

Reconnaissance Real IP address for Cloudflare Bypass

The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

Guia completo para preparação da certificação LPI Essentials (LPI LE-1)! 🐧

parse nmap files

Script to monitor pastebin.com's public pastes for sensitive data leakage