Fast and efficient osquery management

Golang terminal dashboard

An SSHCA that uses a standard Yubikey to issue new host and user certificates.

Watches for trigger packets, runs commands or spawns a shell

Provide a shell like interface by utilizing osquery's distributed API

Modern. Native. Delightful Web Debugging Proxy for macOS, iOS, and Android ⚡️

OSQuery tables, but structured for Golang!

osquery extensions by Trail of Bits

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

newly registered domain name/brand infringement detector

checks site content against known good ssdeep hash, identifies matches

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Pop shells like a master.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

A collection of various awesome lists for hackers, pentesters and security researchers

A collection of small bash scripts for heavy terminal users

This project has been moved to:

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

A pure Unix shell script implementing ACME client protocol

Find, verify, and analyze leaked credentials

Some setup scripts for security research tools.

Community guide to securing and improving privacy on macOS.

Yet another CTF platform

match command-line arguments to their help text

Enabling 2fac confirmation for newly connected USB devices

Here comes the paintrain!

Vagrant Box that will deploy a bare ubuntu box (vmware or virtualbox) and install MSF on top.

Platform to host Capture the Flag competitions

A collection of PHP backdoors. For educational or testing purposes only.