SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

List of Github repositories and articles with list of dorks for different search engines

Firefox privacy, security and anti-tracking: a comprehensive user.js template for configuration and hardening

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders

Thunderbird privacy, security and anti-fingerprinting: a comprehensive user.js template for configuration and hardening

Script for fix Windows path enumerate vulnerability

The popular NoScript Security Suite browser extension.

Loki - Simple IOC and YARA Scanner

yarGen is a generator for YARA rules

🎖safely* install packages with npm or yarn by auditing them as part of your install process

Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.

Resources for uBlock Origin, uMatrix: static filter lists, ready-to-use rulesets, etc.

YARA signature and IOC database for my scanners and tools

DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, fi…

Dragodis is a Python framework which allows for the creation of universal disassembler scripts.

A curated list of KAPE-related resources

Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE

A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities

Sandboxie Plus & Classic

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…

Trail of Bits Testing Handbook

A Python pickling decompiler and static analyzer

A tool to download all Pwned Passwords hash ranges and save them offline so they can be used without a dependency on the k-anonymity API

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…

Detection and sanitization for Acropalypse Now - CVE-2023-21036

A Firefox extension

Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS

Glances an Eye on your system. A top/htop alternative for GNU/Linux, BSD, Mac OS and Windows operating systems.