Repository History
Explore all analyzed open source repositories
Fix Inventory: Open-Source Cloud Security Posture Management for Multi-Cloud
Fix Inventory is an open-source tool for cloud and security engineers, designed to identify and remediate critical risks across AWS, GCP, Azure, and Kubernetes. It provides a graph-based data model to collect, normalize, and triage security risks in multi-cloud infrastructure, offering a powerful alternative to proprietary cloud security solutions. Written in Python, it supports over 300 cloud services and various security use cases.
Citadel: A Binary Static Analysis Framework for Malware Research
Citadel is a robust binary static analysis framework tailored for payload analysis and malware research. It provides comprehensive PE parsing, capability detection, and similarity analysis through a modern web interface, helping researchers understand why implants are detected statically.
Malwoverview: A Comprehensive Tool for Malware Analysis and Threat Intelligence
Malwoverview is a powerful rapid response tool designed for cybersecurity professionals, efficiently gathering intelligence from numerous sources like VirusTotal, Hybrid Analysis, and Malpedia. It provides a holistic view of malware samples, URLs, and IP addresses. Additionally, the tool includes robust features for checking Android device vulnerabilities and retrieving vulnerability records from NIST, making it an indispensable asset for threat hunting and incident response.
Azure-Sentinel: Cloud-Native SIEM for Intelligent Security Analytics
Azure-Sentinel is a powerful cloud-native SIEM solution designed for intelligent security analytics across your entire enterprise. This GitHub repository serves as a comprehensive resource, providing out-of-the-box detections, exploration queries, hunting queries, workbooks, and playbooks. It helps security teams quickly ramp up with Microsoft Sentinel and Microsoft 365 Defender, enhancing threat detection and hunting capabilities.
awesome-osint: A Curated List of Open Source Intelligence Tools and Resources
The `awesome-osint` repository is a comprehensive, curated list of tools and resources for Open Source Intelligence (OSINT). It serves as an invaluable guide for anyone involved in Cyber Threat Intelligence (CTI), threat hunting, or general OSINT practices. From beginners to advanced practitioners, this list provides a wide array of resources to aid in gathering publicly available information.
Mitaka: A Browser Extension for Streamlined OSINT Search
Mitaka is a powerful browser extension designed to simplify Open Source Intelligence (OSINT) searches. It automates the selection of Indicators of Compromise (IoCs) and supports over 65 services for comprehensive threat intelligence gathering. This tool is essential for security professionals and researchers looking to enhance their investigative workflows directly from their browser.
vuln-bank: A Deliberately Vulnerable Banking App for Security Testing
vuln-bank is a Python-based banking application intentionally built with a wide array of security vulnerabilities. It serves as an excellent hands-on platform for security professionals, developers, and enthusiasts to practice web, API, and AI application security testing. This project is ideal for learning about common exploits, secure coding practices, and DevSecOps implementation in a controlled environment.
QDoctor: Comprehensive ARK Tool for Windows Emergency Response
QDoctor is an advanced Anti-Rootkit (ARK) tool designed for Windows emergency response, offering both traditional ARK functionalities and features for efficient incident handling. It helps users quickly identify potential malicious items and extract comprehensive system information for analysis. This tool is particularly useful for young professionals entering the cybersecurity field.
VulnAPI: An Open-Source API Security Vulnerability Scanner
VulnAPI is an open-source DAST tool designed to help developers and security professionals identify common security vulnerabilities and weaknesses in their APIs. By leveraging its powerful scanning capabilities, users can proactively detect and mitigate potential threats, ensuring their APIs remain secure against exploitation. It supports various scanning methods, including Curl-like commands and OpenAPI contracts, making it versatile for different API testing scenarios.
SWE-agent: Automating Software Engineering with Language Models
SWE-agent is an innovative GitHub repository that empowers language models to autonomously fix issues in real-world software projects. This powerful tool can also be employed for offensive cybersecurity and competitive coding challenges, representing a significant advancement in automated software engineering. Developed by researchers from Princeton and Stanford, it was featured at NeurIPS 2024.
Red-Team-Playbooks: Comprehensive Open-Source Security Notes and Tools
The `Red-Team-Playbooks` repository by 0xsyr0 is an invaluable open-source resource for cybersecurity professionals. It provides a comprehensive collection of cutting-edge security notes, tools, techniques, and procedures specifically designed to aid in Red Team assessments. This repository serves as a practical guide, covering various stages of offensive operations.
awesome-list: A Curated Collection of Cybersecurity Resources
The 0xor0ne/awesome-list repository is a comprehensive, cybersecurity-oriented collection of valuable resources. It features an extensive compilation of blog posts, write-ups, and papers, meticulously organized by year. This list serves as an excellent starting point for anyone looking to delve deeper into various aspects of cybersecurity, from exploitation to reverse engineering.