A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Free hands-on digital forensics labs for students and faculty

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

DFIRTrack - The Incident Response Tracking Application

mmdb-server is an open source fast API server to lookup IP addresses for their geographic location.

OSWE, OSEP, OSED, OSEE

Course Repository for University of Cincinnati Malware Analysis Class (CS[567]038)

MITRE Caldera™ for OT Plugins & Capabilities

MultiPlatform HTTP Reverse Shell

Web Application Firewall (WAF) for PHP.

Kumpulan Tools untuk Incident Response

Reverse Engineer's Toolkit

Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.

simple YARA-based IOC scanner

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

A rewrite of YARA in Rust.

AIMSICD • Fight IMSI-Catcher, StingRay and silent SMS!

Python/Bash automation customization script designed to automate the reconnaissance process

Collection of templates from various resources

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

YARA signature and IOC database for my scanners and tools

Awesome Security lists for SOC/CERT/CTI

Self-deployed Straight-forward hacking lab machine which designed for new comer who want to learn Penetration Testing field that running inside Docker for easy setup.

Dork-Me, Saves you time going through google dorks

Most advanced XSS scanner.

John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

ClamAV - Documentation is here: https://docs.clamav.net

Clamav integration into Wazuh