🎓 Path to a free self-taught education in Computer Science!

The most advanced responsive front-end framework in the world. Quickly create prototypes and production code for sites that work on any kind of device.

A list of public penetration test reports published by several consulting firms and academic security groups.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

At LinkedIn, we are using this curriculum for onboarding our entry-level talents into the SRE role.

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Official OWASP Top 10 Document Repository

Open source courseware for Git and GitHub

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

A Security Tool for Bug Bounty, Pentest and Red Teaming.

A jazzy skin for the Django Admin-Interface (official repository).

Application Security Verification Standard

Windows Events Attack Samples

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.

Kickstart is a CSS library designed for modularity and fast page performance

A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Security Knowledge Framework (SKF) Python Flask / Angular project

Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑end engagement management, from reconnaissance through execution and reporting. With buil…

A wiki focusing on aggregating and documenting various SQL injection methods

i2pd browser bundle

Vocabulary for Event Recording and Incident Sharing (VERIS)

Android application fuzzing framework with fuzzers and crash monitor.

Official FEND style guides

Complex OSINT Search Tools 🕵️‍♂️🔥