reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A Modern Orchestration Engine for Security

Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, …

External monitoring for organization assets

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.

GreyOwl Security is an AI-powered cybersecurity platform offering real-time threat detection and automated responses. Through advanced analytics and collaborative threat intelligence, it safeguards…

A web scraping mini project for cybersecurity analysis using Python performed under the guidance of RHYM technologies

This directory contains PDFs to train both humans & models in discussing cyber threats and threat landscapes.

A collection of reports and case studies to understand the threat landscape for UK critical infrastructure

A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.

Debug, evaluate, and monitor your LLM applications, RAG systems, and agentic workflows with comprehensive tracing, automated evaluations, and production-ready dashboards.

SOCFortress CoPilot

This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with …

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Automation for javascript recon in bug bounty.

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Taranis

Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3

Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

My experiments in weaponizing Nim (https://nim-lang.org/)