Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.

📖 A collection of pure bash alternatives to external processes.

📙 Amazon Web Services — a practical guide

A docker-powered PaaS that helps you build and manage the lifecycle of applications

🖼️ A command-line system information tool written in bash 3.2+

A curated list for awesome kubernetes sources 🚢🎉

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

How to improve NGINX performance, security, and other important things.

Prevents you from committing secrets and credentials into git repositories

OSS-Fuzz - continuous fuzzing for open source software.

Hackintosh long-term maintenance model EFI and installation tutorial

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Attack Surface Management Platform

A collection of android security related resources

Testing TLS/SSL encryption anywhere on any port

DEPRECATED; see https://github.com/boot2docker/boot2docker/pull/1408

A delightful community-driven framework for managing your bash configuration, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Linux privilege escalation auditing tool

Run GUI applications and desktops in docker and podman containers. Focus on security.

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

Git All the Payloads! A collection of web attack payloads.

My simple Swiss Army knife for http/https troubleshooting and profiling.

快速搭建各种漏洞环境(Various vulnerability environment)

An ArchLinux based distribution for penetration testers and security researchers.

Rockyou for web fuzzing

Docker Official Image packaging for MySQL Community Server

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。