A new bootable USB solution.

SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.

Open-source Windows and Office activator featuring HWID, Ohook, KMS38, and Online KMS activation methods, along with advanced troubleshooting.

Delving into the Realm of LLM Security: An Exploration of Offensive and Defensive Tools, Unveiling Their Present Capabilities.

🌊 一款 Material Design 风格的 Hexo 主题 / An elegant Material-Design theme for Hexo

应急响应实战笔记，一个安全工程师的自我修养。

Top 100 Hacking & Security E-Books (Free Download)

OWASP Web Application Security Testing Checklist

Top disclosed reports from HackerOne

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Collection of methodology and test case for various web vulnerabilities.

Malware sample library.

A fork and successor of the Sulley Fuzzing Framework

SPIKE is a protocol fuzzer creation kit. It provides an API that allows a user to create their own fuzzers for network based protocols using the C++ programming language. The tool defines a number …

大宝剑-边界资产梳理工具（红队、蓝队、企业组织架构、子域名、Web资产梳理、Web指纹识别、ICON_Hash资产匹配）

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

🔥 Web-application firewalls (WAFs) from security standpoint.

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…

Swaks - Swiss Army Knife for SMTP

Xshell Xftp password decrypt

A little tool to play with Windows security

CMS漏洞测试用例集合

Code developed to steal certain browser config files (history, preferences, etc)

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a rang…