Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the Luna…

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Integrate static security testing with HCL AppScan CodeSweep with Github.

Maltego Transform library for Python

OWASP Cloud Security - Enabling conversations through threat and control stories

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Advanced cross-platform logging library for C/C++

An open source, self-hosted implementation of the Tailscale control server

Netfilter NFQUEUE high-level bindings (rust)

A JavaScript library aimed at visualizing graphs of thousands of nodes and edges

🐶 Kubernetes CLI To Manage Your Clusters In Style!

API Support for your favorite torrent trackers

3D printed silicon ear plugs case

Soot - A Java optimization framework

Public Zone Database

Fast passive subdomain enumeration tool.

Adversary Emulation Framework

The robots.txt exclusion protocol implementation for Go language

A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.

An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector

Peirates - Kubernetes Penetration Testing tool

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

nextnet is a pivot point discovery tool written in Go.

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application