#1 Locally hosted web application that allows you to perform various operations on PDF files

The ZAP by Checkmarx Core project

A vulnerability scanner for container images and filesystems

Dradis Framework: Collaboration and reporting for IT Security teams

📱 objection - runtime mobile exploration

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

Huly — All-in-One Project Management Platform (alternative to Linear, Jira, Slack, Notion, Motion)

MagicMirror² is an open source modular smart mirror platform. With a growing list of installable modules, the MagicMirror² allows you to convert your hallway or bathroom mirror into your personal a…

Official OWASP Top 10 Document Repository

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

Web Attack Cheat Sheet

Clone this repo to build Frida

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

Interactive roadmaps, guides and other educational content to help developers grow in their careers.

Vulnerability Static Analysis for Containers

📚 Freely available programming books

Ultimate Python study guide 🐍 🐍 🐍

Web app for First Contributions

12 Weeks, 24 Lessons, AI for All!

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…

12 Weeks, 24 Lessons, IoT for All!

Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods

Drop in a screenshot and convert it to clean code (HTML/Tailwind/React/Vue)

An opinionated list of awesome Python frameworks, libraries, software and resources.

ALL IN ONE Hacking Tool For Hackers

The best IP Toolbox. Easy to check what's your IPs, IP geolocation, check for DNS leaks, examine WebRTC connections, speed test, ping test, MTR test, check website availability, whois search and mo…

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Collection of USB hacking links and materials for my talk on the topic

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.