All Resource Collection Projects

PS

中文版本
Because Github can not show all lines, this page only show the first 1000 tools sorted by star count. Read Full Version Here

Tool List

[70102Star][10d] [JS] trekhleb/javascript-algorithms JavaScript算法和数据结构
[66889Star][3m] [Py] thealgorithms/python All Algorithms implemented in Python
[61315Star][10d] [JS] puppeteer/puppeteer Headless Chrome Node.js API
[49304Star][10d] [C#] shadowsocks/shadowsocks-windows If you want to keep a secret, you must also hide it from yourself.
[37096Star][10d] [Py] scrapy/scrapy Scrapy, a fast high-level web crawling & scraping framework for Python.
[35937Star][10d] [Py] minimaxir/big-list-of-naughty-strings The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
[35780Star][10d] [Go] fatedier/frp A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
[35435Star][8m] hack-with-github/awesome-hacking A collection of various awesome lists for hackers, pentesters and security researchers
[35073Star][7d] [C++] x64dbg/x64dbg An open-source x64/x32 debugger for windows.
[32627Star][10d] [Py] shadowsocks/shadowsocks shadowsocks
[32301Star][10d] trimstray/the-book-of-secret-knowledge A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
[31373Star][7d] [Go] v2ray/v2ray-core A platform for building proxies to bypass network restrictions.
[29641Star][10d] [Kotlin] shadowsocks/shadowsocks-android A shadowsocks client for Android
[28802Star][2m] [JS] algorithm-visualizer/algorithm-visualizer an interactive online platform that visualizes algorithms from code.
[26685Star][10d] [Py] certbot/certbot Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
[26685Star][10d] [Py] certbot/certbot Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
[26594Star][1y] [Py] imhuay/algorithm_interview_notes-chinese 2018/2019/校招/春招/秋招/算法/机器学习(Machine Learning)/深度学习(Deep Learning)/自然语言处理(NLP)/C/C++/Python/面试笔记
[26576Star][6m] [Swift] shadowsocks/shadowsocksx-ng Next Generation of ShadowsocksX
[26238Star][10d] xitu/gold-miner 翻译优质互联网技术文章的社区
[24073Star][10d] [Go] filosottile/mkcert A simple zero-config tool to make locally trusted development certificates with any names you'd like.
[23690Star][10d] alvin9999/new-pac 科学上网/自由上网/翻墙/软件/方法，免费shadowsocks/ss/ssr/v2ray/goflyway账号，vps一键搭建脚本/教程
[22908Star][4m] [PHP] danielmiessler/seclists SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
[22862Star][10d] [Swift] raywenderlich/swift-algorithm-club Algorithms and data structures in Swift, with explanations!
[22521Star][10d] [Rust] alacritty/alacritty A cross-platform, GPU-accelerated terminal emulator
[22161Star][10d] [Java] skylot/jadx Dex to Java decompiler
[21446Star][3m] [Java] thealgorithms/java All Algorithms implemented in Java
[21055Star][10d] [Java] alibaba/arthas Alibaba Java Diagnostic Tool Arthas
[21039Star][10d] [Shell] streisandeffect/streisand Streisand sets up a new server running your choice of WireGuard, OpenConnect, OpenSSH, OpenVPN, Shadowsocks, sslh, Stunnel, or a Tor bridge. It also generates custom instructions for all of these services. At the end of the run you are given an HTML file with instructions that can be shared with friends, family members, and fellow activists.
[20823Star][10d] [C++] cmderdev/cmder Lovely console emulator package for Windows
[20797Star][10d] [Java] nationalsecurityagency/ghidra Ghidra is a software reverse engineering (SRE) framework
[20360Star][3m] [Jupyter Notebook] camdavidsonpilon/probabilistic-programming-and-bayesian-methods-for-hackers An introduction to Bayesian methods + probabilistic programming with a computation/understanding-first, mathematics-second point of view. All in pure Python ;)
[19944Star][10d] [Haskell] koalaman/shellcheck ShellCheck, a static analysis tool for shell scripts
[19824Star][10d] [Py] donnemartin/interactive-coding-challenges 120+ interactive Python coding interview challenges (algorithms and data structures). Includes Anki flashcards.
[19635Star][10d] [TS] railsware/upterm A terminal emulator for the 21st century.
[19574Star][4m] [Ruby] rapid7/metasploit-framework Metasploit Framework
[19324Star][10d] [Vue] liyasthomas/postwoman A free, fast, and beautiful alternative to Postman
[19002Star][10d] fallibleinc/security-guide-for-developers Security Guide for Developers (实用性开发人员安全须知)
[18747Star][10d] [Py] mitmproxy/mitmproxy An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
[18582Star][10d] [Go] inconshreveable/ngrok Introspected tunnels to localhost
[18223Star][10d] [Py] trailofbits/algo Set up a personal VPN in the cloud
[17366Star][7d] [Py] corentinj/real-time-voice-cloning Clone a voice in 5 seconds to generate arbitrary speech in real-time
[17309Star][10d] [Py] keon/algorithms Minimal examples of data structures and algorithms in Python
[17131Star][10d] [Py] sqlmapproject/sqlmap Automatic SQL injection and database takeover tool
[17119Star][10d] [C] curl/curl A command line tool and library for transferring data with URL syntax, supporting HTTP, HTTPS, FTP, FTPS, GOPHER, TFTP, SCP, SFTP, SMB, TELNET, DICT, LDAP, LDAPS, MQTT, FILE, IMAP, SMTP, POP3, RTSP and RTMP. libcurl offers a myriad of powerful features
[16898Star][10d] [C] bannedbook/fanqiang 翻墙-科学上网
[16311Star][10d] gfwlist/gfwlist gfwlist
[15960Star][3m] micropoor/micro8 Gitbook
[15811Star][10d] [Py] drduh/macos-security-and-privacy-guide Guide to securing and improving privacy on macOS
[15415Star][7m] [Py] eriklindernoren/ml-from-scratch Machine Learning From Scratch. Bare bones NumPy implementations of machine learning models and algorithms with a focus on accessibility. Aims to cover everything from linear regression to deep learning.
[15003Star][10d] [Java] tencent/tinker Tinker is a hot-fix solution library for Android, it supports dex, library and resources update without reinstall apk.
[14431Star][10d] [C#] 0xd4d/dnspy .NET debugger and assembly editor
[14062Star][6m] [Py] binux/pyspider A Powerful Spider(Web Crawler) System in Python.
[13549Star][10d] [Shell] hwdsl2/setup-ipsec-vpn Scripts to build your own IPsec VPN server, with IPsec/L2TP and Cisco IPsec on Ubuntu, Debian and CentOS
[13544Star][10d] getlantern/download Lantern官方版本下载蓝灯翻墙代理科学上网外网加速器梯子路由 proxy vpn circumvention gfw
[13193Star][3m] [Py] cool-rr/pysnooper Never use print for debugging again
[13072Star][7d] [Java] signalapp/signal-android A private messenger for Android.
[13063Star][10d] [Java] signalapp/signal-android A private messenger for Android.
[13030Star][4m] [C] shadowsocks/shadowsocks-libev libev port of shadowsocks
[12973Star][10d] facert/awesome-spider 爬虫集合
[12948Star][10d] [C] openssl/openssl TLS/SSL and crypto library
[12802Star][10d] [JS] gitsquared/edex-ui A cross-platform, customizable science fiction terminal emulator with advanced monitoring & touchscreen support.
[12754Star][10d] [Go] buger/goreplay capturing and replaying live HTTP traffic into a test environment in order to continuously test your system with real data. It can be used to increase confidence in code deployments, configuration changes and infrastructure changes.
[12689Star][7d] ruanyf/weekly 科技爱好者周刊，每周五发布
[12561Star][10d] [QML] swordfish90/cool-retro-term A good looking terminal emulator which mimics the old cathode display...
[12481Star][10d] [C] radareorg/radare2 UNIX-like reverse engineering framework and command-line toolset
[12456Star][10d] [Java] oracle/graal Run Programs Faster Anywhere
[12414Star][11d] [Ruby] diaspora/diaspora A privacy-aware, distributed, open source social network.
[12244Star][4m] [Py] swisskyrepo/payloadsallthethings A list of useful payloads and bypass for Web Application Security and Pentest/CTF
[12083Star][10d] [Go] ehang-io/nps 一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发，可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面，内网dns解析、内网socks5代理等等……，并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal.
[12036Star][10d] enaqx/awesome-pentest A collection of awesome penetration testing resources, tools and other shiny things
[12020Star][10d] [C++] opengenus/cosmos Algorithms that run our universe | Your personal library of every algorithm and data structure code that you will ever encounter | Ask us anything at our forum |
[12002Star][4m] [Py] owasp/cheatsheetseries The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
[11999Star][7d] [C] facebook/zstd Zstandard - Fast real-time compression algorithm
[11865Star][8m] [C] robertdavidgraham/masscan TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
[11814Star][10d] [Go] xtaci/kcptun A Stable & Secure Tunnel based on KCP with N:M multiplexing and FEC. Available for ARM, MIPS, 386 and AMD64
[11782Star][7d] [Shell] 233boy/v2ray 最好用的 V2Ray 一键安装脚本 & 管理脚本
[11728Star][10d] [Go] goharbor/harbor An open source trusted cloud native registry project that stores, signs, and scans content.
[11516Star][10d] [Shell] nyr/openvpn-install OpenVPN road warrior installer for Ubuntu, Debian, CentOS and Fedora
[11427Star][10d] [Go] txthinking/brook Brook is a cross-platform strong encryption and not detectable proxy. Zero-Configuration.
[11265Star][10d] [CSS] hacker0x01/hacker101 Source code for Hacker101.com - a free online web and mobile security class.
[11183Star][10d] [Java] konloch/bytecode-viewer A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
[11135Star][10d] [JS] http-party/node-http-proxy A full-featured http proxy for node.js
[11094Star][10d] [C++] trojan-gfw/trojan An unidentifiable mechanism that helps you bypass GFW.
[11075Star][5m] [ObjC] flipboard/flex An in-app debugging and exploration tool for iOS
[11059Star][2y] [ObjC] bang590/jspatch JSPatch bridge Objective-C and Javascript using the Objective-C runtime. You can call any Objective-C class and method in JavaScript by just including a small engine. JSPatch is generally used to hotfix iOS App.
[10931Star][3y] [CoffeeScript] dropbox/zxcvbn Low-Budget Password Strength Estimation
[10845Star][10d] [Go] gocolly/colly Elegant Scraper and Crawler Framework for Golang
[10755Star][10d] [Ruby] rubocop-hq/rubocop A Ruby static code analyzer and formatter, based on the community Ruby style guide.
[10603Star][7d] [JS] matt-esch/virtual-dom A Virtual DOM and diffing algorithm
[10564Star][3m] [Go] ehang-io/nps 一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发，可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面，内网dns解析、内网socks5代理等等……，并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal.
[10532Star][10d] [JS] valve/fingerprintjs2 Modern & flexible browser fingerprinting library
[10448Star][3m] [C++] microsoft/lightgbm A fast, distributed, high performance gradient boosting (GBT, GBDT, GBRT, GBM or MART) framework based on decision tree algorithms, used for ranking, classification and many other machine learning tasks.
[10267Star][4m] [Py] sherlock-project/sherlock Find Usernames Across Social Networks
[10266Star][3m] [C++] valvesoftware/proton Compatibility tool for Steam Play based on Wine and additional components
[10156Star][11d] [Py] apachecn/awesome-algorithm 项目永久冻结，迁移至新地址：
[10040Star][10d] [Shell] alex000kim/nsfw_data_scraper Collection of scripts to aggregate image data for the purposes of training an NSFW Image Classifier
[10034Star][10d] [Shell] xdissent/ievms Automated installation of the Microsoft IE App Compat virtual machines
[10030Star][3m] imthenachoman/how-to-secure-a-linux-server An evolving how-to guide for securing a Linux server.
[9894Star][10d] [JS] localtunnel/localtunnel expose yourself
[9795Star][10d] [C] gentilkiwi/mimikatz A little tool to play with Windows security
[9781Star][10d] [Py] openai/baselines OpenAI Baselines: high-quality implementations of reinforcement learning algorithms
[9716Star][10d] [Py] jhao104/proxy_pool proxy pool
[9682Star][10d] [Py] sovereign/sovereign A set of Ansible playbooks to build and maintain your own private cloud: email, calendar, contacts, file sync, IRC bouncer, VPN, and more.
[9657Star][4m] [ObjC] gnachman/iterm2 iTerm2 is a terminal emulator for Mac OS X that does amazing things.
[9649Star][3m] [C++] arendst/tasmota Alternative firmware for ESP8266 with easy configuration using webUI, OTA updates, automation using timers or rules, expandability and entirely local control over MQTT, HTTP, Serial or KNX. Full documentation at
[9553Star][3m] [PS] lukesampson/scoop A command-line installer for Windows.
[9536Star][4m] [Java] ibotpeaches/apktool A tool for reverse engineering Android apk files
[9536Star][10d] [C++] google/tink tink：轻量级加密库，能够安全、简单、简洁、快速的完成一些普通加密任务
[9528Star][4m] [C#] icsharpcode/ilspy .NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
[9434Star][4m] [C++] yuzu-emu/yuzu Nintendo Switch Emulator
[9397Star][10d] [C++] shiqiyu/libfacedetection An open source library for face detection in images. The face detection speed can reach 1000FPS.
[9355Star][10d] [JS] qrohlf/trianglify Algorithmically generated triangle art
[9323Star][10d] [Py] waditu/tushare TuShare is a utility for crawling historical data of China stocks
[9293Star][7d] microsoft/wsl Issues found on WSL
[9168Star][8m] vitalysim/awesome-hacking-resources A collection of hacking / penetration testing resources to make you better!
[9071Star][4m] [Java] android-hacker/virtualxposed A simple app to use Xposed without root, unlock the bootloader or modify system image, etc.
[8948Star][7d] [Java] code4craft/webmagic A scalable web crawler framework for Java.
[8885Star][8d] [Py] wifiphisher/wifiphisher 流氓AP框架, 用于RedTeam和Wi-Fi安全测试
[8884Star][10d] [Go] rkt/rkt [Project ended] rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.
[8763Star][10d] [Go] snail007/goproxy Proxy is a high performance HTTP(S) proxies, SOCKS5 proxies,WEBSOCKET, TCP, UDP proxy server implemented by golang. Now, it supports chain-style proxies,nat forwarding in different lan,TCP/UDP port forwarding, SSH forwarding.
[8739Star][2m] [Jupyter Notebook] google/dopamine Dopamine is a research framework for fast prototyping of reinforcement learning algorithms.
[8725Star][7d] brannondorsey/wifi-cracking Crack WPA/WPA2 Wi-Fi Routers with Airodump-ng and Aircrack-ng/Hashcat
[8634Star][7d] [Swift] yanue/v2rayu V2rayU,基于v2ray核心的mac版客户端,用于科学上网,使用swift编写,支持vmess,shadowsocks,socks5等服务协议,支持订阅, 支持二维码,剪贴板导入,手动配置,二维码分享等
[8606Star][10d] [C] irungentoo/toxcore The future of online communications.
[8500Star][10d] [Java] java-decompiler/jd-gui A standalone Java Decompiler GUI
[8454Star][10d] [JS] netflix/pollyjs Record, Replay, and Stub HTTP Interactions.
[8394Star][10d] [Py] shengqiangzhang/examples-of-web-crawlers Some interesting examples of python crawlers that are friendly to beginners
[8265Star][3m] [Shell] retropie/retropie-setup Shell script to set up a Raspberry Pi/Odroid/PC with RetroArch emulator and various cores
[8203Star][10d] [Py] facebook/chisel Chisel is a collection of LLDB commands to assist debugging iOS apps.
[8159Star][3m] [Jupyter Notebook] atsushisakai/pythonrobotics Python sample codes for robotics algorithms.
[8143Star][5m] [JS] gchq/cyberchef The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
[8123Star][3m] trimstray/the-practical-linux-hardening-guide This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
[8097Star][5m] [JS] microsoft/chakracore ChakraCore is the core part of the Chakra JavaScript engine that powers Microsoft Edge
[8074Star][10d] [ObjC] shadowsocks/shadowsocks-ios Removed according to regulations.
[8064Star][10d] [Go] cyfdecyf/cow HTTP proxy written in Go. COW can automatically identify blocked sites and use parent proxies to access.
[8053Star][5m] [Py] mailpile/mailpile A free & open modern, fast email client with user-friendly encryption and privacy features
[7973Star][10d] [Go] sqshq/sampler Tool for shell commands execution, visualization and alerting. Configured with a simple YAML file.
[7967Star][10d] [Py] threat9/routersploit Exploitation Framework for Embedded Devices
[7900Star][11d] [PHP] friendsofphp/goutte Goutte, a simple PHP Web Scraper
[7899Star][10d] acdlite/react-fiber-architecture A description of React's new core algorithm, React Fiber
[7886Star][4m] [Go] git-lfs/git-lfs Git extension for versioning large files
[7760Star][1y] [Java] didi/virtualapk A powerful and lightweight plugin framework for Android
[7718Star][11d] [Py] scrapinghub/portia Visual scraping for Scrapy
[7714Star][10d] [C] hashcat/hashcat World's fastest and most advanced password recovery utility
[7673Star][10d] [C++] keepassxreboot/keepassxc KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
[7667Star][10d] [Go] nats-io/nats-server High-Performance server for NATS, the cloud native messaging system.
[7608Star][5m] [Py] s0md3v/xsstrike Most advanced XSS scanner.
[7601Star][10d] [Shell] etherdream/jsproxy 一个基于浏览器端 JS 实现的在线代理
[7577Star][4m] [Swift] krzyzanowskim/cryptoswift CryptoSwift is a growing collection of standard and secure cryptographic algorithms implemented in Swift
[7573Star][10d] [Shell] awslabs/git-secrets Prevents you from committing secrets and credentials into git repositories
[7546Star][7m] [C++] shadowsocks/shadowsocks-qt5 A cross-platform shadowsocks GUI client
[7484Star][11d] [Java] pxb1988/dex2jar Tools to work with android .dex and java .class files
[7461Star][7d] [Go] future-architect/vuls Agent-less vulnerability scanner for Linux, FreeBSD, Container Image, Running Container, WordPress, Programming language libraries, Network devices
[7434Star][5m] [Java] lionsoul2014/ip2region a offline IP location library with accuracy rate of 99.9% and 0.0x millseconds searching performance. DB file is less then 5Mb with all ip address stored
[7419Star][3m] [C++] coatisoftware/sourcetrail Sourcetrail - free and open-source interactive source explorer
[7408Star][10d] [Py] clips/pattern Web mining module for Python, with tools for scraping, natural language processing, machine learning, network analysis and visualization.
[7401Star][10d] [Shell] teddysun/shadowsocks_install Auto Install Shadowsocks Server for CentOS/Debian/Ubuntu
[7368Star][7m] [Shell] kholia/osx-kvm Run macOS on QEMU/KVM. No support is provided at the moment.
[7335Star][8d] [Java] zaproxy/zaproxy The OWASP ZAP core project
[7319Star][10d] [JS] cs01/gdbgui Browser-based frontend to gdb (gnu debugger). Add breakpoints, view the stack, visualize data structures, and more in C, C++, Go, Rust, and Fortran. Run gdbgui from the terminal and a new tab will open in your browser.
[7305Star][11d] tayllan/awesome-algorithms A curated list of awesome places to learn and/or practice algorithms.
[7294Star][10d] [Py] networkx/networkx a Python package for the creation, manipulation, and study of the structure, dynamics, and functions of complex networks.
[7249Star][10d] [TS] peers/peerjs Simple peer-to-peer with WebRTC
[7240Star][10d] [Go] bettercap/bettercap The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.
[7203Star][10d] [Rust] denisidoro/navi An interactive cheatsheet tool for the command-line and application launchers
[7095Star][10d] [Shell] cisofy/lynis Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
[7075Star][8d] greatfire/wiki 自由浏览
[7053Star][4m] [Py] h2y/shadowrocket-adblock-rules 提供多款 Shadowrocket 规则，带广告过滤功能。用于 iOS 未越狱设备选择性地自动翻墙。
[7004Star][10d] [C++] radareorg/cutter Reverse Engineering Platform powered by radare2
[6973Star][7d] [JS] avwo/whistle HTTP, HTTP2, HTTPS, Websocket debugging proxy
[6904Star][1y] [Java] amitshekhariitbhu/android-debug-database A library for debugging android databases and shared preferences - Make Debugging Great Again
[6897Star][7d] [PS] powershellmafia/powersploit PowerSploit - A PowerShell Post-Exploitation Framework
[6891Star][10d] [Py] seatgeek/fuzzywuzzy Fuzzy String Matching in Python
[6868Star][10d] [PHP] guyueyingmu/avbook Japanese Adult Video Library,Adult Video Magnet Links - Japanese Adult Video Database
[6733Star][10d] [Go] casbin/casbin An authorization library that supports access control models like ACL, RBAC, ABAC in Golang
[6730Star][3m] [C++] marlinfirmware/marlin Optimized firmware for RepRap 3D printers based on the Arduino platform.
[6701Star][3y] [C++] alibaba/andfix AndFix is a library that offer hot-fix for Android App.
[6655Star][10d] [Go] shadowsocks/shadowsocks-go go port of shadowsocks (Deprecated)
[6605Star][2y] [Jupyter Notebook] coells/100days 100 days of algorithms
[6596Star][10d] [Go] quay/clair Vulnerability Static Analysis for Containers
[6596Star][10d] [Go] quay/clair Vulnerability Static Analysis for Containers
[6589Star][10d] [C] qmk/qmk_firmware Open-source keyboard firmware for Atmel AVR and Arm USB families
[6581Star][10d] shadowsocksrr/shadowsocksr-android A ShadowsocksR client for Android
[6572Star][10d] [C] spacehuhntech/esp8266_deauther Cheap WiFi hacks
[6555Star][10d] jeffgerickson/algorithms Bug-tracking for Jeff's algorithms book, notes, etc.
[6533Star][10d] [Py] gallopsled/pwntools CTF framework and exploit development library
[6523Star][10d] [Roff] max2max/freess 免费ss账号免费shadowsocks账号免费v2ray账号 (长期更新)
[6507Star][7d] [HTML] open-power-workgroup/hospital OpenPower工作组收集汇总的医院开放数据
[6469Star][10d] [Py] mlflow/mlflow Open source platform for the machine learning lifecycle
[6468Star][3m] [C] softethervpn/softethervpn Cross-platform multi-protocol VPN software. Pull requests are welcome. The stable version is available at
[6461Star][10d] [Go] usefathom/fathom Fathom Lite. Simple, privacy-focused website analytics. Built with Golang & Preact.
[6453Star][10d] [ASP] hq450/fancyss fancyss is a project providing tools to across the GFW on asuswrt/merlin based router.
[6451Star][10d] [Py] asciimoo/searx Privacy-respecting metasearch engine
[6433Star][10d] [Py] cyrus-and/gdb-dashboard Modular visual interface for GDB in Python
[6407Star][1y] stascorp/rdpwrap RDP Wrapper Library
[6398Star][12d] [Go] henrylee2cn/pholcus a distributed, high concurrency and powerful web crawler software.
[6397Star][11d] rmerl/asuswrt-merlin Enhanced version of Asus's router firmware (Asuswrt) (legacy code base)
[6393Star][10d] [Py] yandex/gixy Nginx configuration static analyzer
[6365Star][10d] [Py] the-art-of-hacking/h4cker thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
[6364Star][12m] [JS] haotian-wang/google-access-helper 谷歌访问助手破解版
[6357Star][2m] [JS] alibaba/anyproxy A fully configurable http/https proxy in NodeJS
[6352Star][4m] [TS] chimurai/http-proxy-middleware js代理变得很简单。轻松配置代理中间件，支持连接、表达、浏览器同步等功能
[6340Star][11d] [Java] google/android-classyshark Analyze any Android/Java based app or game
[6298Star][10d] [Java] qihoo360/replugin RePlugin - A flexible, stable, easy-to-use Android Plug-in Framework
[6284Star][4m] [C#] unity-technologies/unitycsreference Unity C# reference source code
[6265Star][5m] [Java] droidpluginteam/droidplugin A plugin framework on android,Run any third-party apk without installation, modification or repackage
[6262Star][10d] [C++] dolphin-emu/dolphin Dolphin is a GameCube / Wii emulator, allowing you to play games for these two platforms on PC with improvements.
[6260Star][10d] [ObjC] johnno1962/injectionforxcode Runtime Code Injection for Objective-C & Swift
[6252Star][6m] [Py] s0md3v/photon Incredibly fast crawler designed for OSINT.
[6246Star][10d] [Py] schollz/howmanypeoplearearound Count the number of people around you
[6244Star][10d] [JS] mgechev/javascript-algorithms
[6239Star][10d] [Go] inlets/inlets Cloud Native Tunnel for APIs
[6189Star][2y] [Hack] facebook/fbctf Platform to host Capture the Flag competitions
[6171Star][6m] berzerk0/probable-wordlists Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
[6155Star][10d] [C] rofl0r/proxychains-ng proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained proxychains project. the sf.net page is currently not updated, use releases from github release page instead.
[6146Star][10d] [Go] crawlab-team/crawlab Distributed web crawler admin platform for spiders management regardless of languages and frameworks. 分布式爬虫管理平台，支持任何语言和框架
[6144Star][10d] [JS] swagger-api/swagger-editor Swagger Editor
[6142Star][3y] [C] jgamblin/mirai-source-code Leaked Mirai Source Code for Research/IoC Development Purposes
[6103Star][10d] [Py] refirmlabs/binwalk a fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images.
- IDA插件
- binwalk
[6100Star][10d] rshipp/awesome-malware-analysis A curated list of awesome malware analysis tools and resources.
[6088Star][10d] [JS] sindresorhus/fkill-cli Fabulously kill processes. Cross-platform.
[6083Star][10d] [C] xoreaxeaxeax/movfuscator The single instruction C compiler
[6034Star][10d] [Gnuplot] nasa-jpl/open-source-rover A build-it-yourself, 6-wheel rover based on the rovers on Mars!
[6027Star][10d] [C] nodemcu/nodemcu-firmware Lua based interactive firmware for ESP8266, ESP8285 and ESP32
[6008Star][7d] [Py] mobsf/mobile-security-framework-mobsf Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
[5998Star][10d] [Py] mobsf/mobile-security-framework-mobsf Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
[5987Star][2y] qinyuhang/shadowsocksx-ng-r Next Generation of ShadowsocksX
[5966Star][8m] [Py] luyishisi/anti-anti-spider 越来越多的网站具有反爬虫特性，有的用图片隐藏关键数据，有的使用反人类的验证码，建立反反爬虫的代码仓库，通过与不同特性的网站做斗争（无恶意）提高技术。
[5961Star][7d] [Shell] vulhub/vulhub Pre-Built Vulnerable Environments Based on Docker-Compose
[5956Star][10d] [Py] kivy/python-for-android Turn your Python application into an Android APK
[5950Star][10d] [Go] dnscrypt/dnscrypt-proxy dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.
[5911Star][4m] [JS] wix/detox Gray box end-to-end testing and automation framework for mobile apps
[5848Star][11d] [Py] newsapps/beeswithmachineguns A utility for arming (creating) many bees (micro EC2 instances) to attack (load test) targets (web applications).
[5825Star][2m] carpedm20/awesome-hacking A curated list of awesome Hacking tutorials, tools and resources
[5814Star][10d] [HTML] owasp/owasp-mstg The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.
[5785Star][8m] [ObjC] square/ponydebugger Remote network and data debugging for your native iOS app using Chrome Developer Tools
[5784Star][10d] [Java] guardianproject/haven Haven is for people who need a way to protect their personal spaces and possessions without compromising their own privacy, through an Android app and on-device sensors
[5758Star][10d] [Py] ytisf/thezoo A repository of LIVE malwares for your own joy and pleasure.
[5742Star][11d] [Ruby] presidentbeef/brakeman A static analysis security vulnerability scanner for Ruby on Rails applications
[5738Star][10d] [Py] axi0mx/ipwndfu open-source jailbreaking tool for many iOS devices
[5702Star][2y] [JS] liftoff/gateone Gate One is an HTML5-powered terminal emulator and SSH client
[5627Star][10d] [Go] ginuerzh/gost GO Simple Tunnel - a simple tunnel written in golang
[5624Star][10d] [Java] thingsboard/thingsboard Open-source IoT Platform - Device management, data collection, processing and visualization.
[5624Star][10d] hq450/fancyss_history_package 科学上网插件的离线安装包储存在这里
[5613Star][10d] sbilly/awesome-security A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
[5604Star][10d] [Shell] kylemanna/docker-openvpn 一个带有EasyRSA PKI CA的Docker容器
[5582Star][10d] [Go] jetstack/cert-manager Automatically provision and manage TLS certificates in Kubernetes
[5545Star][10d] [Py] awslabs/aws-shell An integrated shell for working with the AWS CLI.
[5524Star][10d] [Shell] foxlet/macos-simple-kvm Tools to set up a quick macOS VM in QEMU, accelerated by KVM.
[5523Star][4m] [Go] zricethezav/gitleaks Audit git repos for secrets
[5504Star][11d] [TS] jigsaw-code/outline-client Outline clients, developed by Jigsaw. The Outline clients use the popular Shadowsocks protocol, and lean on the Cordova and Electron frameworks to support Windows, Android / ChromeOS, Linux, iOS and macOS.
[5443Star][10d] [Go] slackhq/nebula A scalable overlay networking tool with a focus on performance, simplicity and security
[5439Star][11m] [C] pwn20wndstuff/undecimus unc0ver jailbreak for iOS 11.0 - 12.4
[5424Star][10d] [Rust] autumnai/leaf Open Machine Intelligence Framework for Hackers. (GPU/CPU)
[5415Star][10d] [C] upx/upx UPX - the Ultimate Packer for eXecutables
[5405Star][10d] [Py] shadowsocksr-backup/shadowsocksr Python port of ShadowsocksR
[5380Star][10d] [Py] bregman-arie/devops-exercises Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization
[5378Star][7d] [Java] meituan-dianping/walle Android Signature V2 Scheme签名下的新一代渠道包打包神器
[5377Star][7d] [PS] empireproject/empire a PowerShell and Python post-exploitation agent.
[5376Star][10d] [JS] bda-research/node-crawler Web Crawler/Spider for NodeJS + server-side jQuery ;-)
[5374Star][10d] [Py] manisso/fsociety fsociety Hacking Tools Pack – A Penetration Testing Framework
[5366Star][10d] [Makefile] frida/frida Clone this repo to build Frida
[5346Star][2y] [Py] xiyoumc/webhubbot Python + Scrapy + MongoDB . 5 million data per day !!!
[5321Star][10d] [Py] sshuttle/sshuttle Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
[5299Star][4m] [PHP] tennc/webshell This is a webshell open source project
[5273Star][10d] [Py] evilsocket/opensnitch a GNU/Linux port of the Little Snitch application firewall
[5266Star][10d] [Shell] stackexchange/blackbox Safely store secrets in Git/Mercurial/Subversion
[5265Star][4m] [Py] n1nj4sec/pupy Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
[5263Star][4m] [ObjC] macpass/macpass A native OS X KeePass client
[5249Star][10d] [C] offensive-security/exploitdb The official Exploit Database repository
[5236Star][7d] [Py] injetlee/python Python脚本。模拟登录知乎，爬虫，操作excel，微信公众号，远程开机
[5229Star][10d] [Go] cloudflare/cfssl CFSSL: Cloudflare's PKI and TLS toolkit
[5227Star][4m] [Py] usarmyresearchlab/dshell Dshell is a network forensic analysis framework.
[5224Star][11d] [Rust] sharkdp/hexyl A command-line hex viewer
[5224Star][1y] [JS] samyk/poisontap Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.
[5209Star][3m] [C++] avast/retdec RetDec is a retargetable machine-code decompiler based on LLVM.
[5209Star][10d] [Go] gcla/termshark A terminal UI for tshark, inspired by Wireshark
[5201Star][10d] [Py] secdev/scapy Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.
[5142Star][7m] [Lua] alexazhou/verynginx A very powerful and friendly nginx base on lua-nginx-module( openresty ) which provide WAF, Control Panel, and Dashboards.
[5140Star][8d] [Py] snare/voltron A hacky debugger UI for hackers
[5136Star][10d] [Shell] nginx-proxy/docker-letsencrypt-nginx-proxy-companion LetsEncrypt companion container for nginx-proxy
[5094Star][4m] [Py] trustedsec/social-engineer-toolkit The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
[4999Star][10d] [Py] twintproject/twint An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
[4998Star][10d] [TS] apis-guru/graphql-voyager 将任何GraphQL API表示为交互式图形。
[4992Star][11d] [Go] yinghuocho/firefly-proxy A proxy software to help circumventing the Great Firewall.
[4987Star][10d] [JS] beefproject/beef The Browser Exploitation Framework Project
[4982Star][7d] [C++] thealgorithms/c-plus-plus All Algorithms implemented in C++
[4979Star][5m] [Py] alessandroz/lazagne Credentials recovery project
[4967Star][3m] [C] google/oss-fuzz OSS-Fuzz - continuous fuzzing of open source software.
[4957Star][10d] [C] lz4/lz4 Extremely Fast Compression algorithm
[4952Star][10d] [C++] facebook/redex A bytecode optimizer for Android apps
[4949Star][11d] [Go] bitly/oauth2_proxy A reverse proxy that provides authentication with Google, Github or other provider
[4948Star][7d] [C++] paddlepaddle/paddle-lite Multi-platform high performance deep learning inference engine (『飞桨』多平台高性能深度学习预测引擎）
[4945Star][11d] [Py] worldveil/dejavu Audio fingerprinting and recognition in Python
[4940Star][10d] [JS] wuchangming/spy-debugger 微信调试，各种WebView样式调试、手机浏览器的页面真机调试。便捷的远程调试手机页面、抓包工具，支持：HTTP/HTTPS，无需USB连接设备。
[4931Star][4m] [C++] hrydgard/ppsspp A PSP emulator for Android, Windows, Mac and Linux, written in C++. Want to contribute? Join us on Discord at
[4928Star][10d] [Py] jopohl/urh Universal Radio Hacker: Investigate Wireless Protocols Like A Boss
[4906Star][8d] [Ruby] wpscanteam/wpscan WPScan is a free, for non-commercial use, black box WordPress security scanner written for security professionals and blog maintainers to test the security of their WordPress websites.
[4906Star][10d] [C++] mozilla/rr Record and Replay Framework
[4893Star][10d] [C] openvpn/openvpn OpenVPN is an open source VPN daemon
[4891Star][3m] [Py] openmined/pysyft A library for encrypted, privacy preserving machine learning
[4890Star][11d] [Go] ponzu-cms/ponzu Headless CMS with automatic JSON API. Featuring auto-HTTPS from Let's Encrypt, HTTP/2 Server Push, and flexible server framework written in Go.
[4868Star][1y] [Py] 10se1ucgo/disablewintracking Uses some known methods that attempt to minimize tracking in Windows 10
[4850Star][10d] qazbnm456/awesome-web-security Curated list of Web Security materials and resources
[4817Star][10d] [Py] jofpin/trape People tracker on the Internet: OSINT analysis and research tool by Jose Pino
[4806Star][10d] [Shell] zardus/ctf-tools Some setup scripts for security research tools.
[4793Star][7d] [Swift] signalapp/signal-ios A private messenger for iOS.
[4781Star][7d] [Ruby] vcr/vcr Record your test suite's HTTP interactions and replay them during future test runs for fast, deterministic, accurate tests.
[4760Star][10d] [Java] spring-projects/spring-security Spring Security
[4753Star][10d] [Shell] dehydrated-io/dehydrated letsencrypt/acme client implemented as a shell-script – just add water
[4748Star][4m] [PHP] phan/phan Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
[4730Star][5m] powershell/win32-openssh Win32 port of OpenSSH
[4722Star][6m] [C] google/ios-webkit-debug-proxy A DevTools proxy (Chrome Remote Debugging Protocol) for iOS devices (Safari Remote Web Inspector).
[4716Star][10d] [Py] dxa4481/trufflehog Searches through git repositories for high entropy strings and secrets, digging deep into commit history
[4711Star][10d] [Py] secureauthcorp/impacket Impacket is a collection of Python classes for working with network protocols.
[4701Star][10d] [Rust] timvisee/ffsend Easily and securely share files from the command line
[4687Star][11d] [Go] davecheney/httpstat It's like curl -v, with colours.
[4669Star][4m] [Shell] dehydrated-io/dehydrated letsencrypt/acme client implemented as a shell-script – just add water
[4660Star][11d] [JS] bfirsh/jsnes A JavaScript NES emulator.
[4659Star][10d] [Jupyter Notebook] aimacode/aima-python Python implementation of algorithms from Russell And Norvig's "Artificial Intelligence - A Modern Approach"
[4655Star][11d] [C] jedisct1/dsvpn A Dead Simple VPN.
[4653Star][1y] [Py] ecthros/uncaptcha2 defeating the latest version of ReCaptcha with 91% accuracy
[4607Star][4m] [JS] cure53/dompurify a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
[4598Star][10d] [Shell] ashishb/android-security-awesome A collection of android security related resources
[4590Star][10d] [Go] gophish/gophish Open-Source Phishing Toolkit
[4588Star][11d] [Go] wallix/awless A Mighty CLI for AWS
[4544Star][11d] jivoi/awesome-osint A curated list of amazingly awesome open source intelligence tools and resources
[4535Star][2y] [Py] lining0806/pythonspidernotes Python入门网络爬虫之精华版
[4534Star][11d] [Py] tensorflow/cleverhans An adversarial example library for constructing attacks, building defenses, and benchmarking both
[4527Star][7d] [Py] chyroc/wechatsogou 基于搜狗微信搜索的微信公众号爬虫接口
[4524Star][10d] [Go] shopify/toxiproxy 用于模拟网络条件的框架，用测试来证明您的应用程序没有单点故障吗
[4519Star][10d] [JS] apsdehal/awesome-ctf A curated list of CTF frameworks, libraries, resources and softwares
[4519Star][10d] [JS] apsdehal/awesome-ctf A curated list of CTF frameworks, libraries, resources and softwares
[4517Star][11d] [Go] michenriksen/gitrob Reconnaissance tool for GitHub organizations
[4489Star][10d] [Go] dexidp/dex OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors
[4454Star][11d] [Java] mcxiaoke/packer-ng-plugin 下一代Android打包工具，100个渠道包只需要10秒钟
[4444Star][10d] [Py] smicallef/spiderfoot SpiderFoot automates OSINT collection so that you can focus on analysis.
[4442Star][10d] [PHP] fuzzdb-project/fuzzdb Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
[4436Star][2y] [JS] yujiosaka/headless-chrome-crawler Distributed crawler powered by Headless Chrome
[4398Star][3m] [C#] xupefei/locale-emulator Yet Another System Region and Language Simulator
[4395Star][10d] [Py] spiderclub/haipproxy
[4393Star][11d] [TS] javascript-obfuscator/javascript-obfuscator A powerful obfuscator for JavaScript and Node.js
[4377Star][10d] [JS] travist/jsencrypt A Javascript library to perform OpenSSL RSA Encryption, Decryption, and Key Generation.
[4376Star][10d] [C++] anbox/anbox a container-based approach to boot a full Android system on a regular GNU/Linux system
[4372Star][10d] [LLVM] llvm-mirror/llvm Project moved to:
[4370Star][1y] [Py] lennylxx/ipv6-hosts Fork of

[4361Star][5m] [Py] aboul3la/sublist3r Fast subdomains enumeration tool for penetration testers

View Details

  ## 存在问题
  - 代理集成
  - 翻墙
  - 结果的保存与查看, 是不是该有啥可视化工具???
  
  ## 使用OSINT的方式搜索子域名
  - 使用多个搜索引擎: Google, Yahoo, Bing, Baidu, Ask
  - 使用: Netcraft, Virustotal, ThreatCrowd, DNSdumpster, ReverseDNS.
  - 集成: subbrute(爆破)
  
  ## 安装
  - `git clone https://github.com/aboul3la/Sublist3r.git`
  - `sudo pip install -r requirements.txt`
  
  ## 使用
  Short Form    | Long Form     | Description
  ------------- | ------------- |-------------
  -d            | --domain      | Domain name to enumerate subdomains of
  -b            | --bruteforce  | Enable the subbrute bruteforce module
  -p            | --ports       | Scan the found subdomains against specific tcp ports
  -v            | --verbose     | Enable the verbose mode and display results in realtime
  -t            | --threads     | Number of threads to use for subbrute bruteforce
  -e            | --engines     | Specify a comma-separated list of search engines
  -o            | --output      | Save the results to text file
  -h            | --help        | show the help message and exit
  
  ## 作为模块使用
  ```python
  import sublist3r 
  subdomains = sublist3r.main(domain, no_threads, savefile, ports, silent, verbose, enable_bruteforce, engines)
  ```
  </details>

[4358Star][10d] [Java] jesusfreke/smali smali/baksmali
[4355Star][2m] [Py] diafygi/acme-tiny A tiny script to issue and renew TLS certs from Let's Encrypt
[4355Star][10d] [Assembly] cjdelisle/cjdns An encrypted IPv6 network using public-key cryptography for address allocation and a distributed hash table for routing.
[4353Star][10d] wtsxdev/reverse-engineering List of awesome reverse engineering resources
[4350Star][3m] [C] nonstriater/learn-algorithms 算法学习笔记
[4349Star][2y] [Py] rmax/scrapy-redis Redis-based components for Scrapy.
[4340Star][1y] [ObjC] alonemonkey/monkeydev CaptainHook Tweak、Logos Tweak and Command-line Tool、Patch iOS Apps, Without Jailbreak.
[4339Star][11d] imeiji/shadowsocks_install Auto install shadowsocks server，thanks 秋水逸冰
[4330Star][10d] [Pascal] cheat-engine/cheat-engine Cheat Engine. A development environment focused on modding
[4327Star][10d] [JS] butterproject/butter-desktop All the free parts of Popcorn Time
[4326Star][7d] [Py] spiderclub/weibospider
[4326Star][7d] [Py] spiderclub/weibospider 微博爬虫
[4309Star][4m] we5ter/scanners-box A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
[4297Star][10d] [Py] hypothesisworks/hypothesis Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
[4297Star][10d] [Py] hypothesisworks/hypothesis Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
[4261Star][10d] [Go] mozilla/sops Simple and flexible tool for managing secrets
[4257Star][11d] [JS] cuckoosandbox/cuckoo Cuckoo Sandbox is an automated dynamic malware analysis system
[4257Star][11d] [JS] cuckoosandbox/cuckoo Cuckoo Sandbox is an automated dynamic malware analysis system
[4255Star][10d] [C] tencent/tencentos-tiny 腾讯物联网终端操作系统
[4252Star][4m] [Shell] angristan/openvpn-install Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS or Arch Linux.
[4243Star][7d] [PS] bloodhoundad/bloodhound a single page Javascript web application, uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment.
[4235Star][10d] [JS] lesspass/lesspass 无状态密码管理器。
[4234Star][10d] [Py] euske/pdfminer Python PDF Parser (Not actively maintained). Check out pdfminer.six.
[4232Star][7m] [JS] sigalor/whatsapp-web-reveng Reverse engineering WhatsApp Web.
[4226Star][11d] forter/security-101-for-saas-startups security tips for startups
[4214Star][11d] [JS] kdzwinel/betwixt Betwixt will help you analyze web traffic outside the browser using familiar Chrome DevTools interface.
[4211Star][10d] [Py] angr/angr A powerful and user-friendly binary analysis platform!
[4208Star][4m] drduh/yubikey-guide Guide to using YubiKey for GPG and SSH
[4207Star][10d] [Py] google/clusterfuzz Scalable fuzzing infrastructure.
[4197Star][10d] [C] aol/moloch large scale, full packet capturing, indexing, and database system.
[4194Star][7d] [C] secwiki/windows-kernel-exploits windows-kernel-exploits Windows平台提权漏洞集合
[4186Star][7d] [PHP] ethicalhack3r/dvwa Damn Vulnerable Web Application (DVWA)
[4166Star][10d] [Py] xoreaxeaxeax/sandsifter The x86 processor fuzzer
[4166Star][10d] [Py] paralax/awesome-honeypots an awesome list of honeypot resources
[4139Star][10d] hakluke/how-to-exit-vim Below are some simple methods for exiting vim.
[4136Star][3m] [C#] microsoft/msbuild The Microsoft Build Engine (MSBuild) is the build platform for .NET and Visual Studio.
[4135Star][2m] [C] aquynh/capstone Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
[4127Star][10d] [Go] montferret/ferret Declarative web scraping
[4119Star][10d] [PHP] paragonie/awesome-appsec A curated list of resources for learning about application security
[4114Star][10d] [C#] 0xd4d/de4dot .NET deobfuscator and unpacker.
[4107Star][10d] [Rust] svenstaro/genact a nonsense activity generator
[4100Star][10d] [Shell] drwetter/testssl.sh Testing TLS/SSL encryption anywhere on any port
[4100Star][12d] brucedone/awesome-crawler A collection of awesome web crawler,spider in different languages
[4087Star][10d] [Py] reorx/httpstat curl statistics made simple
[4071Star][7m] [Swift] lexrus/vpnon Turn On your VPN like a hero.
[4054Star][10d] [Py] longld/peda Python Exploit Development Assistance for GDB
[4046Star][3y] [C#] shadowsocksr-backup/shadowsocksr-csharp shadowsocksr C#
[4040Star][7d] [C#] winsw/winsw A wrapper executable that can run any executable as an Windows service, in a liberal license
[4035Star][4m] [C++] baldurk/renderdoc a frame-capture based graphics debugger, currently available for Vulkan, D3D11, D3D12, OpenGL, and OpenGL ES development
[4025Star][9m] [Py] nullarray/autosploit Automated Mass Exploiter
[4025Star][3m] [Go] eranyanay/1m-go-websockets handling 1M websockets connections in Go
[4019Star][7d] [C] wind4/vlmcsd KMS Emulator in C (currently runs on Linux including Android, FreeBSD, Solaris, Minix, Mac OS, iOS, Windows with or without Cygwin)
[4002Star][10d] [C] nmap/nmap Nmap - the Network Mapper. Github mirror of official SVN repository.
[3994Star][10d] [Py] malwaredllc/byob BYOB (Build Your Own Botnet)
[3977Star][3m] acl4ssr/acl4ssr SSR 去广告ACL规则/SS完整GFWList规则/Clash规则碎片，Telegram频道订阅地址
[3974Star][3m] [C++] xenia-project/xenia Xbox 360 Emulator Research Project
[3970Star][5y] shadowsocksr-backup/shadowsocks-rss ShadowsocksR update rss, SSR organization
[3954Star][6m] jjqqkk/chromium Chromium browser with SSL VPN. Use this browser to unblock websites.
[3953Star][10d] [Java] ffay/lanproxy 将局域网个人电脑、服务器代理到公网的内网穿透工具，支持tcp流量转发，可支持任何tcp上层协议（访问内网网站、本地支付接口调试、ssh访问、远程桌面...）
[3953Star][4m] [C] atmosphere-nx/atmosphere Atmosphère is a work-in-progress customized firmware for the Nintendo Switch.
[3948Star][10d] [JS] shadowsocks/shadowsocks-manager A shadowsocks manager tool for multi user and traffic control.
[3938Star][10d] [D] gnunn1/tilix A tiling terminal emulator for Linux using GTK+ 3
[3935Star][10d] [Go] jpillora/chisel A fast TCP tunnel over HTTP
[3931Star][3m] blacckhathaceekr/pentesting-bible links reaches 10000 links & 10000 pdf files .Learn Ethical Hacking and penetration testing .hundreds of ethical hacking & penetration testing & red team & cyber security & computer science resources.
[3927Star][4m] [Shell] toniblyx/my-arsenal-of-aws-security-tools List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
[3909Star][10d] [Go] adguardteam/adguardhome Network-wide ads & trackers blocking DNS server
[3901Star][10d] [PS] samratashok/nishang Offensive PowerShell for red team, penetration testing and offensive security.
[3893Star][7d] [C] cyan4973/xxhash Extremely fast non-cryptographic hash algorithm
[3884Star][10d] [Py] micahflee/onionshare Securely and anonymously send and receive files, and publish onion sites
[3878Star][10d] [C] facebook/fishhook A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS.
[3871Star][4m] [ObjC] sveinbjornt/sloth Mac app that shows all open files, directories and sockets in use by all running processes. Nice GUI for lsof.
[3860Star][5y] iosre/iosappreverseengineering The world’s 1st book of very detailed iOS App reverse engineering skills :)
[3846Star][2m] [Go] hashicorp/consul-template Template rendering, notifier, and supervisor for
[3832Star][3m] [Go] go-acme/lego Let's Encrypt client and ACME library written in Go
[3831Star][3m] [C++] pcsx2/pcsx2 PCSX2 - The Playstation 2 Emulator
[3820Star][10d] [Py] maurosoria/dirsearch Web path scanner
[3816Star][10d] [Perl] sullo/nikto Nikto web server scanner
[3816Star][10d] [C] meetecho/janus-gateway Janus WebRTC Server
[3812Star][10d] [C] mikebrady/shairport-sync AirPlay audio player. Shairport Sync adds multi-room capability with Audio Synchronisation
[3807Star][11d] [JS] samyk/evercookie Produces persistent, respawning "super" cookies in a browser, abusing over a dozen techniques. Its goal is to identify users after they've removed standard cookies and other privacy data such as Flash cookies (LSOs), HTML5 storage, SilverLight storage, and others.
[3801Star][7m] [Go] microsoft/ethr Ethr is a Network Performance Measurement Tool for TCP, UDP & HTTP.
[3800Star][3m] [C] freerdp/freerdp FreeRDP is a free remote desktop protocol library and clients
[3794Star][10d] [C] iaik/meltdown This repository contains several applications, demonstrating the Meltdown bug.
[3769Star][10d] [Py] misterch0c/shadowbroker The Shadow Brokers "Lost In Translation" leak
[3754Star][10d] shadowsocksrr/shadowsocks-rss ShadowsocksR update rss, SSR organization

[3742Star][10d] [Py] laramies/theharvester E-mails, subdomains and names Harvester - OSINT

View Details

  ## 被动源:
  - baidu: Baidu search engine - www.baidu.com
  - bing: Microsoft search engine - www.bing.com
  - bingapi: Microsoft search engine, through the API (Requires an API key, see below.)
  - CertSpotter: Cert Spotter monitors Certificate Transparency logs - https://sslmate.com/certspotter/
  - crtsh: Comodo Certificate search - www.crt.sh
  - dnsdumpster: DNSdumpster search engine - dnsdumpster.com
  - dogpile: Dogpile search engine - www.dogpile.com
  - duckduckgo: DuckDuckGo search engine - www.duckduckgo.com
  - Exalead: a Meta search engine - https://www.exalead.com/search
  - github-code: Github code search engine (Requires a Github Personal Access Token, see below.) - www.github.com
  - google: Google search engine (Optional Google dorking.) - www.google.com
  - hunter: Hunter search engine (Requires an API key, see below.) - www.hunter.io
  - intelx: Intelx search engine (Requires an API key, see below.) - www.intelx.io
  - linkedin: Google search engine, specific search for LinkedIn users - www.linkedin.com
  - netcraft: Internet Security and Data Mining - www.netcraft.com
  - otx: AlienVault Open Threat Exchange - https://otx.alienvault.com
  - securityTrails: Security Trails search engine, the world's largest repository of historical DNS data (Requires an API key, see below.) - www.securitytrails.com
  - shodan: Shodan search engine, will search for ports and banners from discovered hosts - www.shodanhq.com
  - Spyse: Web research tools for professionals (Requires an API key.) - https://spyse.com/
  - Suip: Web research tools that can take over 10 minutes to run, but worth the wait. - https://suip.biz/
  - threatcrowd: Open source threat intelligence - www.threatcrowd.org
  - trello: Search trello boards (Uses Google search.)
  - twitter: Twitter accounts related to a specific domain (Uses Google search.)
  - vhost: Bing virtual hosts search
  - virustotal: virustotal.com domain search
  - yahoo: Yahoo search engine
  
  ## 主动源:
  - DNS爆破: 字典
  
  ## 需要API-key的
  - bing
  - github
  - hunter
  - intelx
  - securityTrails
  - shodan
  - spyse
  </details>

[3724Star][10d] [Go] elazarl/goproxy An HTTP proxy library for Go
[3709Star][10d] [Py] jrohy/multi-v2ray v2ray多用户管理部署程序
[3708Star][8d] [PHP] hanc00l/wooyun_public crawl and search for wooyun.org public bug(vulnerability) and drops
[3707Star][10d] [HTML] consensys/smart-contract-best-practices A guide to smart contract security best practices
[3693Star][12d] jivoi/awesome-ml-for-cybersecurity Awesome Machine Learning for Cyber Security
[3690Star][10d] [HTML] hamukazu/lets-get-arrested This project is intended to protest against the police in Japan
[3689Star][10d] [C] shellphish/how2heap A repository for learning various heap exploitation techniques.
[3682Star][10d] [C] awslabs/s2n an implementation of the TLS/SSL protocols
[3680Star][11d] [C++] mandliya/algorithms_and_data_structures 180+ Algorithm & Data Structure Problems using C++
[3680Star][2y] [Py] qiyeboy/ipproxypool IPProxyPool代理池项目，提供代理ip
[3672Star][8d] [Go] tophubs/toplist 今日热榜，一个获取各大热门网站热门头条的聚合网站，使用Go语言编写，多协程异步快速抓取信息，预览:
[3667Star][4m] [JS] koenkk/zigbee2mqtt Zigbee
[3664Star][3m] [Smarty] anankke/sspanel-uim Across the Great Wall we can reach every corner in the world
[3659Star][3m] [C] screetsec/thefatrat Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…
[3653Star][11d] [Shell] toyodadoubi/doubi 一个逗比写的各种逗比脚本~
[3645Star][6y] [C#] brandonlw/psychson Phison 2251-03 (2303) Custom Firmware & Existing Firmware Patches (BadUSB)
[3643Star][3y] [C] hak5darren/usb-rubber-ducky a Human Interface Device programmable with a simple scripting language allowing penetration testers to quickly and easily craft and deploy security auditing payloads that mimic human keyboard input.
[3627Star][10d] [C#] mathewsachin/captura Capture Screen, Audio, Cursor, Mouse Clicks and Keystrokes
[3627Star][8d] [C] virustotal/yara The pattern matching swiss knife
[3618Star][10d] teivah/algodeck An Open-Source Collection of +200 Algorithmic Flash Cards to Help you Preparing your Algorithm & Data Structure Interview
[3614Star][10d] [Py] rarcega/instagram-scraper Scrapes an instagram user's photos and videos
[3609Star][3y] [Perl] x0rz/eqgrp Decrypted content of eqgrp-auction-file.tar.xz
[3597Star][2y] [C#] nummer/destroy-windows-10-spying Destroy Windows Spying tool
[3592Star][1y] [C] rpisec/mbe Course materials for Modern Binary Exploitation by RPISEC
[3589Star][11d] [Go] fanpei91/torsniff a sniffer that sniffs torrents from BitTorrent network
[3589Star][11d] [Go] fanpei91/torsniff a sniffer that sniffs torrents from BitTorrent network
[3584Star][11d] [Py] stamparm/maltrail Malicious traffic detection system
[3582Star][10d] [C] betaflight/betaflight Open Source Flight Controller Firmware
[3579Star][7d] [C#] win-acme/win-acme A simple ACME client for Windows (for use with Let's Encrypt et al.)
[3579Star][10d] [HTML] goproxy/goproxy.cn The most trusted Go module proxy in China.
[3576Star][10d] [C] qemu/qemu Official QEMU mirror. Please see
[3554Star][10d] [C] tmate-io/tmate Instant Terminal Sharing
[3551Star][10d] hslatman/awesome-threat-intelligence A curated list of Awesome Threat Intelligence resources
[3550Star][10d] [HTML] grangier/python-goose Html Content / Article Extractor, web scrapping lib in Python
[3549Star][4m] [Java] jasonchenlijian/fastble Android Bluetooth Low Energy (BLE) Fast Development Framework. It uses simple ways to filter, scan, connect, read ,write, notify, readRssi, setMTU, and multiConnection.
[3538Star][6y] [R] johnmyleswhite/ml_for_hackers Code accompanying the book "Machine Learning for Hackers"
[3538Star][10m] [Shell] chengr28/revokechinacerts Revoke Chinese certificates.
[3532Star][10d] sundowndev/hacker-roadmap an overview of what you need to learn penetration testing and a collection of hacking tools, resources and references to practice ethical hacking
[3523Star][10d] [CSS] juliocesarfort/public-pentesting-reports Curated list of public penetration test reports released by several consulting firms and academic security groups
[3510Star][10d] [JS] digitalbazaar/forge A native implementation of TLS in Javascript and tools to write crypto-based and network-heavy webapps
[3509Star][4m] [Java] meituan-dianping/robust Robust is an Android HotFix solution with high compatibility and high stability. Robust can fix bugs immediately without a reboot.
[3503Star][11m] [C] session-replay-tools/tcpcopy An online request replication tool, also a tcp stream replay tool, fit for real testing, performance testing, stability testing, stress testing, load testing, smoke testing, etc
[3494Star][12d] [JS] ionicabizau/scrape-it A Node.js scraper for humans.
[3486Star][11d] [JS] duo-labs/cloudmapper CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
[3477Star][11d] [HTML] leizongmin/js-xss Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
[3477Star][10d] [Shell] gfw-breaker/ssr-accounts 一键部署Shadowsocks服务；免费Shadowsocks账号分享；免费SS账号分享; 翻墙；无界，自由门，SquirrelVPN
[3476Star][11d] [Py] google/grr remote live forensics for incident response
[3475Star][10m] [C++] wangyu-/udp2raw-tunnel A Tunnel which Turns UDP Traffic into Encrypted UDP/FakeTCP/ICMP Traffic by using Raw Socket,helps you Bypass UDP FireWalls(or Unstable UDP Environment)
[3468Star][2m] [JS] mcollina/autocannon fast HTTP/1.1 benchmarking tool written in Node.js
[3458Star][11d] [Go] imgproxy/imgproxy Fast and secure standalone server for resizing and converting remote images
[3451Star][4m] [C] vanhauser-thc/thc-hydra hydra
[3448Star][10d] [C] raspberrypi/firmware This repository contains pre-compiled binaries of the current Raspberry Pi kernel and modules, userspace libraries, and bootloader/GPU firmware.
[3445Star][10d] [C] nbs-system/naxsi NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
[3443Star][4m] [Rust] canop/broot A new way to see and navigate directory trees :
[3440Star][10d] [C] unicorn-engine/unicorn Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, X86)
[3435Star][10d] [Makefile] lorien/awesome-web-scraping List of libraries, tools and APIs for web scraping and data processing.
[3432Star][10d] icodesign/potatso Potatso is an iOS client that implements different proxies with the leverage of NetworkExtension framework in iOS 10+.
[3432Star][10d] [Shell] softwaredownload/openwrt-fanqiang 最好的路由器翻墙、科学上网教程—OpenWrt—shadowsocks
[3428Star][10d] [Go] dvyukov/go-fuzz a coverage-guided fuzzing solution for testing of Go packages
[3425Star][11d] [Shell] hwdsl2/docker-ipsec-vpn-server Docker image to run an IPsec VPN server, with IPsec/L2TP and Cisco IPsec

[3422Star][10d] [Go] michenriksen/aquatone A Tool for Domain Flyovers

View Details

  ## Misc
  - 需要Google Chrome/Chromium浏览器
  - 下载编译好的二进制文件，或自己编译
  - 可以通过管道与现有工具集成
  </details>

[3420Star][12d] [Java] oldmanpushcart/greys-anatomy Java诊断工具
[3419Star][8m] [Py] volatilityfoundation/volatility An advanced memory forensics framework
[3418Star][6m] [ObjC] objective-see/lulu LuLu is the free macOS firewall
[3409Star][5m] [C] microsoft/windows-driver-samples This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.
[3405Star][4m] [Java] hustcc/js-sorting-algorithm 一本关于排序算法的 GitBook 在线书籍《十大经典排序算法》，多语言实现。
[3396Star][7d] [C] microsoft/wsl2-linux-kernel The source for the Linux kernel used in Windows Subsystem for Linux 2 (WSL2)
[3395Star][11d] meirwah/awesome-incident-response A curated list of tools for incident response
[3395Star][11d] [Haskell] input-output-hk/cardano-sl Cryptographic currency implementing Ouroboros PoS protocol
[3393Star][7d] [Vue] chaitin/xray 一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
[3391Star][10d] [Go] tencent/bk-cmdb 蓝鲸智云配置平台(BlueKing CMDB)
[3387Star][10d] [Rust] spacejam/sled the champagne of beta embedded databases
[3387Star][10d] [Go] getlantern/lantern lantern proxy vpn censorship-circumvention censorship gfw accelerator
[3384Star][10d] [JS] evilsocket/pwnagotchi Deep Reinforcement Learning instrumenting bettercap for WiFi pwning.
[3380Star][4m] [Swift] yagiz/bagel a little native network debugging tool for iOS
[3379Star][4m] [C] magnumripper/johntheripper This is the official repo for John the Ripper, "Jumbo" version. The "bleeding-jumbo" branch is based on 1.9.0-Jumbo-1 which was released on May 14, 2019. An import of the "core" version of john this jumbo was based on (or newer) is found in the "master" branch (CVS:
[3379Star][2m] [PS] fireeye/commando-vm Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com
[3378Star][10d] [Java] phishman3579/java-algorithms-implementation Algorithms and Data Structures implemented in Java
[3377Star][10d] [JS] minbrowser/min A fast, minimal browser that protects your privacy
[3369Star][10d] [Py] drivendata/cookiecutter-data-science A logical, reasonably standardized, but flexible project structure for doing and sharing data science work.
[3366Star][11d] [C] taviso/loadlibrary Porting Windows Dynamic Link Libraries to Linux
[3349Star][9d] [C++] fireice-uk/xmr-stak Free Monero RandomX Miner and unified CryptoNight miner
[3340Star][3m] [TS] jigsaw-code/outline-server Outline Manager, developed by Jigsaw. The Outline Manager application creates and manages Outline servers, powered by Shadowsocks. It uses the Electron framework to offer support for Windows, macOS and Linux.
[3327Star][10d] [JS] sindresorhus/speed-test Test your internet connection speed and ping using speedtest.net from the CLI
[3325Star][11d] [HTML] ctf-wiki/ctf-wiki CTF Wiki Online. Come and join us, we need you!
[3322Star][4m] scanate/ethlist The Comprehensive Ethereum Reading List
[3321Star][10d] [PS] redcanaryco/atomic-red-team Small and highly portable detection tests based on MITRE's ATT&CK.
[3317Star][10d] [Py] felixonmars/dnsmasq-china-list Chinese-specific configuration to improve your favorite DNS server. Best partner for chnroutes.
[3312Star][11d] [Py] pyca/cryptography cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.
[3310Star][4m] [C++] spiderlabs/modsecurity ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analys…
[3301Star][11d] [C] secwiki/linux-kernel-exploits linux-kernel-exploits
[3299Star][12d] [Dockerfile] thinkdevelop/free-ss-ssr SS账号、SSR账号、V2Ray账号
[3296Star][10d] [Java] calebfenton/simplify Android virtual machine and deobfuscator
[3293Star][3m] [Shell] 1n3/sn1per Automated pentest framework for offensive security experts
[3289Star][10d] [Lua] ntop/ntopng Web-based Traffic and Security Network Traffic Monitoring
[3288Star][3m] [C] valdikss/goodbyedpi bypass Deep Packet Inspection systems found in many Internet Service Providers which block access to certain websites.
[3282Star][10d] [Py] corna/me_cleaner Tool for partial deblobbing of Intel ME/TXE firmware images
[3278Star][4m] [C++] px4/firmware PX4 Autopilot Software
[3271Star][10d] [Go] meshbird/meshbird cloud-native multi-region multi-cloud decentralized private networking
[3269Star][15d] [C++] google/lmctfy lmctfy is the open source version of Google’s container stack, which provides Linux application containers.
[3265Star][10d] [C] processhacker/processhacker A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
[3262Star][10d] [TS] google/incremental-dom An in-place DOM diffing library
[3257Star][9m] [C] yarrick/iodine Official git repo for iodine dns tunnel
[3253Star][5y] [C] shadowsocks/chinadns Protect yourself against DNS poisoning in China.
[3250Star][10m] [ObjC] naituw/ipapatch Patch iOS Apps, The Easy Way, Without Jailbreak.
[3249Star][10d] [Go] gwuhaolin/lightsocks lightweight network obfuscate proxy, based on socks5, to replace shadowsocks
[3245Star][4m] [Py] byt3bl33d3r/crackmapexec A swiss army knife for pentesting networks
[3243Star][11d] [Shell] speed47/spectre-meltdown-checker Spectre, Meltdown, Foreshadow, Fallout, RIDL, ZombieLoad vulnerability/mitigation checker for Linux & BSD
[3239Star][10d] [Shell] pivpn/pivpn The Simplest VPN installer, designed for Raspberry Pi
[3236Star][2y] [CSS] jbtronics/crookedstylesheets Webpage tracking only using CSS (and no JS)
[3234Star][10d] [Py] stvir/pysot SenseTime Research platform for single object tracking, implementing algorithms like SiamRPN and SiamMask.
[3228Star][12d] [Shell] trimstray/htrace.sh My simple Swiss Army knife for http/https troubleshooting and profiling.
[3227Star][10d] [Py] kootenpv/whereami Uses WiFi signals and machine learning (sklearn's RandomForest) to predict where you are.
[3222Star][3m] [C++] 0xz0f/z0fcourse_reverseengineering Reverse engineering focusing on x64 Windows.
[3222Star][6m] [Py] mininet/mininet Emulator for rapid prototyping of Software Defined Networks
[3220Star][2m] [Go] 99designs/aws-vault A vault for securely storing and accessing AWS credentials in development environments
[3219Star][10d] [JS] bkimminich/juice-shop OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
[3217Star][10d] [C] libfuse/sshfs A network filesystem client to connect to SSH servers
[3213Star][6m] [Java] deathmarine/luyten An Open Source Java Decompiler Gui for Procyon
[3210Star][3y] shadowsocksr-backup/shadowsocksr-android A ShadowsocksR client for Android
[3209Star][10d] [Go] securego/gosec Golang security checker
[3204Star][3m] [C#] quantconnect/lean Lean Algorithmic Trading Engine by QuantConnect (C#, Python, F#)
[3202Star][10d] secwiki/sec-chart 安全思维导图集合
[3200Star][11d] [Shell] txthinking/google-hosts Google hosts generator
[3197Star][10d] [Py] tribler/tribler Privacy enhanced BitTorrent client with P2P content discovery
[3187Star][10d] [Go] dominikh/go-tools Staticcheck - The advanced Go linter
[3180Star][10d] [Py] gnemoug/distribute_crawler 使用scrapy,redis, mongodb,graphite实现的一个分布式网络爬虫,底层存储mongodb集群,分布式使用redis实现,爬虫状态显示使用graphite实现
[3179Star][3m] [CSS] readthedocs/sphinx_rtd_theme Sphinx theme for readthedocs.org
[3176Star][15d] [Ruby] sagivo/algorithms algorithms playground for common questions
[3174Star][10d] tycrek/degoogle A huge list of alternatives to Google products. Privacy tips, tricks, and links.
[3166Star][11d] [Py] guardicore/monkey Infection Monkey - An automated pentest tool
[3165Star][7d] [Py] andresriancho/w3af web application attack and audit framework, the open source web vulnerability scanner.
[3157Star][4m] [C] zmap/zmap ZMap is a fast single packet network scanner designed for Internet-wide network surveys.
[3150Star][10d] [Py] trustedsec/ptf a way for modular support for up-to-date tools.
[3138Star][4m] infosecn1nja/red-teaming-toolkit A collection of open source and commercial tools that aid in red team operations.
[3137Star][10d] [ObjC] google/santa A binary whitelisting/blacklisting system for macOS
[3133Star][3m] [C#] microsoft/applicationinspector A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'what's in it' using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
[3130Star][11d] [Py] cowrie/cowrie Cowrie SSH/Telnet Honeypot
[3125Star][10d] [Go] kgretzky/evilginx2 Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
[3123Star][3m] [Go] aquasecurity/trivy A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
[3123Star][3m] [Go] cookiey/yearning A most popular sql audit platform for mysql
[3120Star][10d] [C] p-h-c/phc-winner-argon2 The password hash Argon2, winner of PHC
[3120Star][10d] [ObjC] dantheman827/ios-app-signer This is an app for OS X that can (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device.
[3117Star][7d] [Java] frohoff/ysoserial A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
[3116Star][10d] [JS] ix64/unlock-music Unlock encrypted music file in browser. 在浏览器中解锁加密的音乐文件。
[3111Star][10d] [Py] espressif/esptool ESP8266 and ESP32 serial bootloader utility
[3106Star][7m] [JS] valve/fingerprintjs Anonymous browser fingerprint
[3106Star][10d] [PHP] owner888/phpspider 《我用爬虫一天时间“偷了”知乎一百万用户，只为证明PHP是世界上最好的语言》所使用的程序
[3105Star][10d] [Jupyter Notebook] zotroneneis/machine_learning_basics Plain python implementations of basic machine learning algorithms
[3105Star][10d] [C++] qv2ray/qv2ray
[3102Star][10d] [C++] google/robotstxt The repository contains Google's robots.txt parser and matcher as a C++ library (compliant to C++11).
[3097Star][9m] [Py] spiderlabs/responder a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
[3095Star][10d] [Go] oj/gobuster Directory/File, DNS and VHost busting tool written in Go
[3087Star][8d] [C++] xmrig/xmrig RandomX, CryptoNight, AstroBWT and Argon2 CPU/GPU miner
[3082Star][10d] [Py] lyst/lightfm A Python implementation of LightFM, a hybrid recommendation algorithm.
[3078Star][4m] [JS] webgoat/webgoat A deliberately insecure Web Application
[3077Star][1y] [JS] jipegit/osxauditor OS X Auditor is a free Mac OS X computer forensics tool
[3073Star][10d] [Swift] zhuhaow/spechtlite A rule-based proxy for macOS
[3069Star][10d] [Go] schollz/croc Easily and securely send things from one computer to another
[3061Star][10d] [Py] cloudflare/flan A pretty sweet vulnerability scanner
[3060Star][10d] [C++] qtox/qtox qTox is a chat, voice, video, and file transfer IM client using the encrypted peer-to-peer Tox protocol.
[3032Star][2y] phith0n/mind-map 各种安全相关思维导图整理收集
[3029Star][7d] [Py] danmcinerney/wifijammer Continuously jam all wifi clients/routers
[3027Star][10d] [Py] androguard/androguard Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
[3026Star][10d] [C] ossec/ossec-hids Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
[3025Star][3m] [Java] williamfiset/algorithms A collection of algorithms and data structures
[3022Star][10d] [C] lxc/lxc LXC - Linux Containers
[3016Star][3m] [Java] anuken/mindustry A sandbox tower defense game
[3013Star][4m] [C++] tensorflow/minigo An open-source implementation of the AlphaGoZero algorithm
[3003Star][11m] [C++] pytorch/elf a platform for game research with AlphaGoZero/AlphaZero reimplementation
[2994Star][8d] [Shell] mskyaxl/wsl-terminal Terminal emulator for Windows Subsystem for Linux (WSL)
[2991Star][10d] [ObjC] facebook/idb idb is a flexible command line interface for automating iOS simulators and devices
[2991Star][10d] [Go] statping/statping Status Page for monitoring your websites and applications with beautiful graphs, analytics, and plugins. Run on any type of environment.
[2986Star][3m] [C++] zeek/zeek Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
[2984Star][10d] [Lua] loveshell/ngx_lua_waf ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙
[2983Star][11d] pditommaso/awesome-pipeline A curated list of awesome pipeline toolkits inspired by Awesome Sysadmin
[2978Star][10d] [Py] liuxingming/sinaspider 新浪微博爬虫（Scrapy、Redis）
[2972Star][10d] [Py] billryan/algorithm-exercise Data Structure and Algorithm notes. 数据结构与算法/leetcode/lintcode题解/
[2969Star][5m] secfigo/awesome-fuzzing A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
[2967Star][11d] [ObjC] maciekish/iresign iReSign allows iDevice app bundles (.ipa) files to be signed or resigned with a digital certificate from Apple for distribution. This tool is aimed at enterprises users, for enterprise deployment, when the person signing the app is different than the person(s) developing it.
[2958Star][4m] [Shell] 91yun/serverspeeder 锐速破解版
[2953Star][10d] [Py] instantbox/instantbox Get a clean, ready-to-go Linux box in seconds.
[2947Star][1y] [C++] wangyu-/udpspeeder A Tunnel which Improves your Network Quality on a High-latency Lossy Link by using Forward Error Correction,for All Traffics(TCP/UDP/ICMP)
[2938Star][2y] [Py] byt3bl33d3r/mitmf Framework for Man-In-The-Middle attacks
[2932Star][1y] [C#] quasar/quasarrat Remote Administration Tool for Windows
[2930Star][10d] [Go] libp2p/go-libp2p libp2p implementation in Go
[2929Star][1y] [C++] chrisknott/algojammer An experimental code editor for writing algorithms
[2927Star][12d] [JS] laurentj/slimerjs A scriptable browser like PhantomJS, based on Firefox
[2926Star][10d] [Go] caddyserver/certmagic Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal
[2925Star][10d] valvesoftware/steam-for-linux Issue tracking for the Steam for Linux beta client
[2922Star][10d] [C] klange/toaruos A completely-from-scratch hobby operating system: bootloader, kernel, drivers, C library, and userspace including a composited graphical UI, dynamic linker, syntax-highlighting text editor, network stack, etc.
[2921Star][4m] [C++] tstack/lnav Log file navigator
[2920Star][11d] paulsec/awesome-sec-talks A collected list of awesome security talks
[2920Star][10d] [Go] google/syzkaller syzkaller is an unsupervised coverage-guided kernel fuzzer
[2918Star][5m] [C#] vsvim/vsvim Vim Emulator Plugin for Visual Studio 2015+
[2918Star][11d] [Makefile] theos/theos A cross-platform suite of tools for building and deploying software for iOS and other platforms.
[2916Star][10d] [TS] webhintio/hint
[2908Star][4m] [C#] netchx/netch Game accelerator. Support Socks5, Shadowsocks, ShadowsocksR, V2Ray protocol. UDP NAT FullCone
[2903Star][10d] [Swift] kasketis/netfox A lightweight, one line setup, iOS / OSX network debugging library!
[2895Star][4m] [Java] rovo89/xposedinstaller
[2894Star][11d] [Shell] teddysun/across This is a shell script for configure and start WireGuard VPN server
[2893Star][10d] [Py] shadowsocksrr/shadowsocksr Python port of ShadowsocksR
[2888Star][7m] [Assembly] cirosantilli/x86-bare-metal-examples Dozens of minimal operating systems to learn x86 system programming. Tested on Ubuntu 17.10 host in QEMU 2.10 and real hardware. Userland cheat at:
[2877Star][12d] [Py] nryoung/algorithms This repository is not maintained
[2875Star][4m] [C] tmk/tmk_keyboard Keyboard firmwares for Atmel AVR and Cortex-M
[2872Star][10d] [C] esnet/iperf A TCP, UDP, and SCTP network bandwidth measurement tool
[2865Star][10d] [Py] hugsy/gef GDB Enhanced Features for exploit devs & reversers
[2859Star][4m] [ObjC] chatsecure/chatsecure-ios ChatSecure is a free and open source encrypted chat client for iOS that supports OTR and OMEMO encryption over XMPP.
[2857Star][10d] [Py] rogandawes/p4wnp1 P4wnP1 is a highly customizable USB attack platform, based on a low cost Raspberry Pi Zero or Raspberry Pi Zero W.
[2853Star][2y] [CSS] maxchehab/css-keylogging Chrome extension and Express server that exploits keylogging abilities of CSS.
[2852Star][10d] [Py] plasma-disassembler/plasma Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
[2851Star][10d] [JS] noble/noble A Node.js BLE (Bluetooth Low Energy) central module
[2849Star][10d] [JS] trufflesuite/ganache-cli Fast Ethereum RPC client for testing and development
[2847Star][4m] [Makefile] shadowsocks/openwrt-shadowsocks Shadowsocks-libev for OpenWrt/LEDE
[2843Star][11d] [Go] anthonynsimon/bild A collection of parallel image processing algorithms in pure Go
[2842Star][17d] [TS] microsoftdx/vorlonjs A new, open source, extensible, platform-agnostic tool for remotely debugging and testing your JavaScript. Powered by node.js and socket.io
[2841Star][3m] [Py] kr1s77/python-crawler-tutorial-starts-from-zero python爬虫教程，带你从零到一，包含js逆向，selenium, tesseract OCR识别,mongodb的使用，以及scrapy框架
[2838Star][1y] [Py] p0cl4bs/wifi-pumpkin Framework for Rogue Wi-Fi Access Point Attack
[2832Star][1y] [HTML] ptwobrussell/mining-the-social-web-2nd-edition The official online compendium for Mining the Social Web, 2nd Edition (O'Reilly, 2013)
[2832Star][10d] [C++] danmar/cppcheck static analysis of C/C++ code
[2829Star][10d] [Java] pmd/pmd An extensible multilanguage static code analyzer.
[2823Star][4m] rmusser01/infosec_reference An Information Security Reference That Doesn't Suck
[2821Star][3m] taichi-framework/taichi A framework to use Xposed module with or without Root/Unlock bootloader, supportting Android 5.0 ~ 10.0
[2817Star][10d] [JS] cyu/rack-cors Rack Middleware for handling Cross-Origin Resource Sharing (CORS), which makes cross-origin AJAX possible.
[2813Star][6m] [JS] s0md3v/awesomexss Awesome XSS stuff
[2812Star][10d] [C] vanhoefm/krackattacks-scripts test if clients or access points (APs) are affected by the KRACK attack against WPA2
[2804Star][2y] [HTML] chybeta/web-security-learning Web-Security-Learning
[2800Star][10d] [C] meituan-dianping/logan Logan is a lightweight case logging system based on mobile platform.
[2794Star][12d] [Py] hephaest0s/usbkill an anti-forensic kill-switch that waits for a change on your USB ports and then immediately shuts down your computer.
[2789Star][10d] [Py] pwndbg/pwndbg Exploit Development and Reverse Engineering with GDB Made Easy
[2786Star][12d] [Py] qiwsir/algorithm
[2783Star][10d] atarity/deploy-your-own-saas List of "only yours" cloud services for everyday needs
[2782Star][2y] [C] seclab-ucr/intang research project for circumventing the "TCP reset attack" from the Great Firewall of China (GFW) by disrupting/desynchronizing the TCP Control Block (TCB) on the censorship devices.
[2777Star][7d] [Py] xmendez/wfuzz Web application fuzzer
[2775Star][10d] onlurking/awesome-infosec A curated list of awesome infosec courses and training resources.
[2772Star][7d] [HTML] tikam02/devops-guide DevOps Guide from basic to advanced with Interview Questions and Notes
[2770Star][11d] [C] geohot/qira QEMU Interactive Runtime Analyser
[2770Star][7m] [ObjC] kjcracks/clutch Fast iOS executable dumper
[2766Star][10d] [Eagle] samyk/magspoof A portable device that can spoof/emulate any magnetic stripe, credit card or hotel card "wirelessly", even on standard magstripe (non-NFC/RFID) readers. It can disable Chip&PIN and predict AMEX card numbers with 100% accuracy.
[2765Star][8d] [C++] google/zopfli Zopfli Compression Algorithm is a compression library programmed in C to perform very good, but slow, deflate or zlib compression.
[2764Star][10d] [Py] greenwolf/social_mapper A Social Media Enumeration & Correlation Tool by Jacob Wilkin(Greenwolf)
[2764Star][12d] leandromoreira/linux-network-performance-parameters Learn where some of the network sysctl variables fit into the Linux/Kernel network flow
[2733Star][4m] xairy/linux-kernel-exploitation A collection of links related to Linux kernel exploitation
[2729Star][10d] [Java] jboss-javassist/javassist Java bytecode engineering toolkit
[2725Star][4m] [Shell] wulabing/v2ray_ws-tls_bash_onekey V2Ray Nginx+vmess+ws+tls/ http2 over tls 一键安装脚本
[2724Star][4m] [JS] popcorn-official/popcorn-desktop Popcorn Time is a multi-platform, free software BitTorrent client that includes an integrated media player. Desktop ( Windows / Mac / Linux ) a Butter-Project Fork
[2724Star][10d] [PHP] audi-1/sqli-labs SQLI labs to test error based, Blind boolean based, Time based.
[2723Star][7d] [Py] ccostan/home-assistantconfig
[2716Star][11d] [Ruby] arachni/arachni Web Application Security Scanner Framework
[2715Star][10d] [Py] the0demiurge/shadowsocksshare Python爬虫/Flask网站/免费ShadowSocks账号/ssr订阅/json 订阅
[2713Star][10d] [Go] xiaoming2028/freepac 科学上网/梯子/自由上网/翻墙 SS/SSR/V2Ray/Brook 搭建教程
[2713Star][10d] [Go] xiaoming2028/freepac 科学上网/梯子/自由上网/翻墙 SS/SSR/V2Ray/Brook 搭建教程
[2709Star][5y] [Java] linyiqun/dataminingalgorithm 数据挖掘18大算法实现以及其他相关经典DM算法
[2703Star][14d] [C] ckolivas/cgminer ASIC and FPGA miner in c for bitcoin
[2696Star][10d] [Py] ab77/netflix-proxy Smart DNS proxy to watch Netflix
[2695Star][10d] [C] huntergregal/mimipenguin dump 当前Linux用户的登录密码
[2688Star][11d] [C++] fanout/pushpin a reverse proxy server written in C++ that makes it easy to implement WebSocket, HTTP streaming, and HTTP long-polling services
[2686Star][7d] [Py] ctfd/ctfd CTFs as you need them
[2685Star][10d] [Go] ne0nd0g/merlin Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
[2683Star][10d] [C] tsl0922/ttyd Share your terminal over the web
[2680Star][10d] [C] martin-ger/esp_wifi_repeater A full functional WiFi Repeater (correctly: a WiFi NAT Router)
[2677Star][10d] [C++] domoticz/domoticz monitor and configure various devices like: Lights, Switches, various sensors/meters like Temperature, Rain, Wind, UV, Electra, Gas, Water and much more
[2676Star][7d] [C] wireshark/wireshark Read-only mirror of Wireshark's Git repository. GitHub won't let us disable pull requests
[2662Star][9m] [Java] teevity/ice AWS Usage Tool
[2660Star][10d] [TSQL] rapid7/metasploitable3 Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
[2659Star][12d] facert/python-data-structure-cn problem-solving-with-algorithms-and-data-structure-using-python 中文版
[2655Star][5m] [Shell] medicean/vulapps 快速搭建各种漏洞环境(Various vulnerability environment)
[2653Star][10d] [Py] pritunl/pritunl Enterprise VPN server
[2653Star][10d] [Py] lionsec/katoolin Automatically install all Kali linux tools
[2651Star][4m] [Swift] zhuhaow/nekit A toolkit for Network Extension Framework
[2651Star][8y] [C] id-software/quake Quake GPL Source Release
[2647Star][6m] [Go] owasp/amass In-depth Attack Surface Mapping and Asset Discovery
[2647Star][10d] [C#] openhardwaremonitor/openhardwaremonitor Open Hardware Monitor
[2646Star][6m] [Go] drk1wi/modlishka a powerful and flexible HTTP reverse proxy
[2644Star][15d] [JS] h2non/toxy Hackable HTTP proxy for resiliency testing and simulated network conditions
[2640Star][5m] [Shell] rebootuser/linenum Scripted Local Linux Enumeration & Privilege Escalation Checks
[2637Star][6m] [JS] knownsec/kcon KCon is a famous Hacker Con powered by Knownsec Team.
[2629Star][11d] [Java] google/binnavi a binary analysis IDE that allows to inspect, navigate, edit and annotate control flow graphs and call graphs of disassembled code.
[2617Star][2y] [Py] ecthros/uncaptcha Defeating Google's audio reCaptcha with 85% accuracy.
[2612Star][1y] [JS] skidding/illustrated-algorithms Interactive algorithm visualizations
[2609Star][10d] [HTML] dirtycow/dirtycow.github.io Dirty COW
[2608Star][3m] [Py] 0xinfection/awesome-waf Everything awesome about web application firewalls (WAFs).
[2596Star][10d] offensive-security/kali-nethunter The Kali NetHunter Project
[2588Star][4m] [C] yrutschle/sslh Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port). accepts connections on specified ports, and forwards them further based on tests performed on the first data packet sent by the remote client.
[2585Star][10d] [Go] 42wim/matterbridge bridge between mattermost, IRC, gitter, xmpp, slack, discord, telegram, rocketchat, steam, twitch, ssh-chat, zulip, whatsapp, keybase, matrix, microsoft teams and more with REST API (mattermost not required!)
[2584Star][10d] [Shell] v1s1t0r1sh3r3/airgeddon This is a multi-use bash script for Linux systems to audit wireless networks.
[2584Star][10d] [Go] aquasecurity/kube-bench Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
[2579Star][12d] [Py] x0rz/tweets_analyzer Tweets metadata scraper & activity analyzer
[2579Star][1y] [ObjC] nygard/class-dump Generate Objective-C headers from Mach-O files.
[2577Star][11d] [Go] xtaci/kcp-go A Crypto-Secure, Production-Grade Reliable-UDP Library for golang with FEC
[2576Star][11d] [Py] google/nogotofail help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way
[2574Star][10d] nahamsec/resources-for-beginner-bug-bounty-hunters A list of resources for those interested in getting started in bug bounties
[2574Star][7d] [C] mintty/wsltty Mintty as a terminal for Bash on Ubuntu on Windows / WSL
[2573Star][6m] [Py] ysrc/xunfeng 巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。
[2564Star][11d] [JS] infobyte/faraday Collaborative Penetration Test and Vulnerability Management Platform
[2560Star][8m] kbandla/aptnotes Various public documents, whitepapers and articles about APT campaigns
[2560Star][11d] [Py] geekan/scrapy-examples Multifarious Scrapy examples. Spiders for alexa / amazon / douban / douyu / github / linkedin etc.
[2559Star][10d] [Py] arthepsy/ssh-audit SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
[2559Star][4m] [C#] stocksharp/stocksharp Algorithmic trading and quantitative trading open source platform to develop trading robots (stock markets, forex, crypto, bitcoins and options).
[2548Star][15d] evilsocket/bettercap DEPRECATED, bettercap developement moved here:
[2537Star][10d] [C] moby/hyperkit A toolkit for embedding hypervisor capabilities in your application
[2535Star][3m] [Java] m66b/netguard A simple way to block access to the internet per app
[2533Star][12d] [C++] pavel-odintsov/fastnetmon very fast DDoS analyzer with sflow/netflow/mirror support
[2526Star][1y] [C#] yck1509/confuserex An open-source, free protector for .NET applications
[2524Star][3m] [PHP] misp/misp MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
[2522Star][3y] [C] dhavalkapil/icmptunnel Transparently tunnel your IP traffic through ICMP echo and reply packets.
[2514Star][10d] [Rust] cloudflare/boringtun an implementation of the WireGuard® protocol designed for portability and speed.
[2513Star][10d] [JS] pa11y/pa11y Pa11y is your automated accessibility testing pal
[2505Star][4m] [JS] vitaly-t/pg-promise PostgreSQL interface for Node.js
[2505Star][10d] [JS] thlorenz/proxyquire 为了在测试过程中轻松地重写依赖项，同时保持完全不引人注目，nodejs的需求。
[2504Star][8d] [JS] weixin/miaow A set of plugins for Sketch include drawing links & marks, UI Kit & Color sync, font & text replacing.
[2503Star][1y] [C++] chengr28/pcap_dnsproxy Pcap_DNSProxy, a local DNS server based on packet capturing
[2502Star][2y] [Py] feross/spoofmac Spoof your MAC address
[2500Star][5m] [C] hfiref0x/uacme Defeating Windows User Account Control
[2494Star][3m] [Py] bowenpay/wechat-spider 微信公众号爬虫
[2490Star][12d] [Go] syncsynchalt/illustrated-tls The Illustrated TLS Connection: Every byte explained
[2490Star][11d] [C++] ggerganov/kbd-audio Tools for capturing and analysing keyboard input paired with microphone capture
[2488Star][6m] yeyintminthuhtut/awesome-red-teaming List of Awesome Red Teaming Resources
[2485Star][2m] [Py] google/enjarify a tool for translating Dalvik bytecode to equivalent Java bytecode.
[2482Star][5m] [C] haad/proxychains a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" for SOCKS4/5, "basic" for HTTP.
[2475Star][14d] [Py] secretsquirrel/the-backdoor-factory Patch PE, ELF, Mach-O binaries with shellcode (NOT Supported)
[2474Star][4m] [Py] wistbean/learn_python3_spider python爬虫教程系列、从0到1学习python爬虫，包括浏览器抓包，手机APP抓包，如 fiddler、mitmproxy，各种爬虫涉及的模块的使用
[2474Star][10d] [Java] genymobile/gnirehtet Gnirehtet provides reverse tethering for Android
[2468Star][10d] [Py] guohongze/adminset 自动化运维平台：CMDB、CD、DevOps、资产管理、任务编排、持续交付、系统监控、运维管理、配置管理
[2467Star][3y] rpisec/malware Course materials for Malware Analysis by RPISEC
[2458Star][3m] [PS] k8gege/k8tools K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
[2453Star][10d] [C++] google/bloaty Bloaty McBloatface: a size profiler for binaries
[2452Star][4m] [Java] mock-server/mockserver MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied traffic including encrypted SSL traffic and supports Port Forwarding, Web Proxying (i.e. HTTP proxy), HTTPS Tunneling Proxying (using HTTP CONNECT) and…
[2452Star][4m] [Java] mock-server/mockserver MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied traffic including encrypted SSL traffic and supports Port Forwarding, Web Proxying (i.e. HTTP proxy), HTTPS Tunneling Proxying (using HTTP CONNECT) and…
[2443Star][10d] [Java] csploit/android cSploit - The most complete and advanced IT security professional toolkit on Android.
[2440Star][10d] edoverflow/bugbounty-cheatsheet A list of interesting payloads, tips and tricks for bug bounty hunters.
[2434Star][4m] [Shell] eliaskotlyar/xiaomi-dafang-hacks Xiaomi DaFang Hacks / XiaoFang 1S / Wyzecam V2 / Wyzecam Pan / Other T20 Devices
[2432Star][11d] sobolevn/awesome-cryptography A curated list of cryptography resources and links.
[2432Star][10d] [JS] retirejs/retire.js scanner detecting the use of JavaScript libraries with known vulnerabilities
[2432Star][12d] [TeX] crypto101/book Crypto 101, the introductory book on cryptography.
[2431Star][4m] security-onion-solutions/security-onion Linux distro for threat hunting, enterprise security monitoring, and log management
[2431Star][3y] [Py] rootphantomer/blasting_dictionary 爆破字典
[2431Star][10d] goq/telegram-list List of telegram groups, channels & bots // Список интересных групп, каналов и ботов телеграма // Список чатов для программистов
[2431Star][10d] getlantern/lantern-binaries Lantern installers binary downloads.
[2427Star][7d] [Py] novnc/websockify Websockify is a WebSocket to TCP proxy/bridge. This allows a browser to connect to any application/server/service. Implementations in Python, C, Node.js and Ruby.
[2413Star][1y] hack-with-github/free-security-ebooks Free Security and Hacking eBooks
[2411Star][12d] [Lua] snabbco/snabb Simple and fast packet networking
[2407Star][1y] [ObjC] evgenykarkan/ekalgorithms EKAlgorithms contains some well known CS algorithms & data structures.
[2406Star][11d] [PHP] kint-php/kint a powerful and modern PHP debugging tool.
[2405Star][10d] [Shell] toniblyx/prowler Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here
[2405Star][14d] [OCaml] facebookarchive/pfff Tools for code analysis, visualizations, or style-preserving source transformation.
[2397Star][10d] [Py] therook/subbrute A DNS meta-query spider that enumerates DNS records, and subdomains.
[2396Star][10d] [Py] rll/rllab rllab is a framework for developing and evaluating reinforcement learning algorithms, fully compatible with OpenAI Gym.
[2396Star][10d] gbdev/awesome-gbdev A curated list of Game Boy development resources such as tools, docs, emulators, related projects and open-source ROMs.
[2395Star][10d] [C] stlink-org/stlink Open source STM32 MCU programming toolset
[2393Star][10d] [Go] google/mtail extract whitebox monitoring data from application logs for collection in a timeseries database
[2391Star][10m] [Go] mlabouardy/komiser ：通过发现隐藏的成本，监控支出的增加，并根据客户的建议做出有影响的改变，保持在预算之下。
[2389Star][10d] [Py] lmacken/pyrasite Inject code into running Python processes
[2388Star][2m] [C] stefanesser/dumpdecrypted Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. This tool is necessary for security researchers to be able to look under the hood of encryption.
[2388Star][10d] [C] armmbed/mbedtls An open source, portable, easy to use, readable and flexible SSL library
[2386Star][10d] [JS] dcodeio/bcrypt.js Optimized bcrypt in plain JavaScript with zero dependencies.
[2386Star][8d] [Shell] pirate/wireguard-docs 用于WireGuard的API参考指南，包括设置、配置和使用，以及示例。
[2386Star][2y] [Py] danmcinerney/lans.py Inject code and spy on wifi users
[2385Star][12d] [JS] pedant/safe-java-js-webview-bridge 为WebView中的Java与JavaScript提供【安全可靠】的多样互通方案
[2385Star][10d] [Go] projectdiscovery/subfinder Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
[2385Star][10d] [JS] talkingdata/inmap 大数据地理可视化
[2367Star][10d] tylerha97/awesome-reversing A curated list of awesome reversing resources
[2358Star][8d] [Go] vuvuzela/vuvuzela Private messaging system that hides metadata
[2357Star][10d] [Py] pycqa/bandit find common security issues in Python code.
[2356Star][1y] microsoftedge/msedge Microsoft Edge
[2348Star][11d] [Py] elceef/dnstwist Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
[2348Star][10d] [C] alexaltea/orbital Experimental PlayStation 4 emulator
[2341Star][10d] [Assembly] pret/pokered disassembly of Pokémon Red/Blue
[2340Star][3m] [C#] dotnetcore/dotnetspider DotnetSpider, a .NET Standard web crawling library. It is lightweight, efficient and fast high-level web crawling & scraping framework
[2335Star][13d] [C] abrasive/shairport Airtunes emulator! Shairport is no longer maintained.
[2333Star][10d] [Go] mmatczuk/go-http-tunnel Fast and secure tunnels over HTTP/2
[2331Star][11d] dumb-password-rules/dumb-password-rules Shaming sites with dumb password rules.
[2327Star][10d] [JS] jcubic/jquery.terminal jQuery Terminal Emulator - web based terminal
[2320Star][10d] [Go] solo-io/gloo The Feature-rich, Kubernetes-native, Next-Generation API Gateway Built on Envoy
[2317Star][3m] [C] aurorawright/luma3ds Noob-proof (N)3DS "Custom Firmware"
[2308Star][10d] swiftonsecurity/sysmon-config Sysmon configuration file template with default high-quality event tracing
[2299Star][3m] [C#] hmbsbige/shadowsocksr-windows ShadowsocksR for Windows
[2292Star][12d] [Py] commixproject/commix Automated All-in-One OS command injection and exploitation tool.
[2285Star][9m] [C#] microsoft/git-credential-manager-for-windows Secure Git credential storage for Windows with support for Visual Studio Team Services, GitHub, and Bitbucket multi-factor authentication.
[2280Star][10d] [Go] goodrain/rainbond Enterprise Application System
[2279Star][11d] [Py] datasploit/datasploit An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.
[2278Star][10d] [C++] weidai11/cryptopp free C++ class library of cryptographic schemes
[2275Star][11d] [PHP] antonioribeiro/tracker Tracker gathers a lot of information from your requests to identify and store
[2270Star][3y] [Go] mehrdadrad/mylg Network Diagnostic Tool
[2269Star][3y] [Java] jackpal/android-terminal-emulator A VT-100 terminal emulator for the Android OS
[2269Star][10d] [Py] whaleshark-team/cobra Source Code Security Audit (源代码安全审计)
[2266Star][10d] [Py] jinfagang/weibo_terminater Final Weibo Crawler Scrap Anything From Weibo, comments, weibo contents, followers, anything. The Terminator
[2266Star][12d] [Py] scrapy-plugins/scrapy-splash Scrapy+Splash for JavaScript integration
[2263Star][10d] qazbnm456/awesome-cve-poc A curated list of CVE PoCs.
[2262Star][10d] exakat/php-static-analysis-tools A reviewed list of useful PHP static analysis tools
[2262Star][5m] [JS] cure53/h5sc HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
[2261Star][10d] [Go] projectcontour/contour Contour is a Kubernetes ingress controller using Lyft's Envoy proxy.
[2260Star][3m] hmaverickadams/beginner-network-pentesting Notes for Beginner Network Pentesting Course
[2259Star][11d] [Rust] ebtech/rust-algorithms Common data structures and algorithms in Rust
[2259Star][3m] selierlin/share-ssr-v2ray 解决科学上网问题
[2245Star][11d] [C++] maestron/botnets This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY
[2244Star][12d] [HTML] kjur/jsrsasign The 'jsrsasign' (RSA-Sign JavaScript Library) is an opensource free cryptography library supporting RSA/RSAPSS/ECDSA/DSA signing/validation, ASN.1, PKCS#1/5/8 private/public key, X.509 certificate, CRL, OCSP, CMS SignedData, TimeStamp, CAdES JSON Web Signature/Token in pure JavaScript.
[2243Star][8d] [PHP] serghey-rodin/vesta VESTA Control Panel
[2242Star][4m] [HTML] gtfobins/gtfobins.github.io Curated list of Unix binaries that can be exploited to bypass system security restrictions
[2240Star][11d] [Go] shiyanhui/dht BitTorrent DHT Protocol && DHT Spider.
[2240Star][5y] [Go] filosottile/heartbleed A checker (site and tool) for CVE-2014-0160
[2240Star][10d] [Go] eth0izzle/shhgit Find GitHub secrets in real time
[2238Star][10d] [C] flatpak/flatpak Linux application sandboxing and distribution framework
[2236Star][3m] [Java] elderdrivers/edxposed Elder driver Xposed Framework.
[2231Star][12d] [JS] emadehsan/thal Getting started with Puppeteer and Chrome Headless for Web Scraping
[2230Star][12d] [PHP] jeremykenedy/laravel-auth Laravel 7 with user authentication, registration with email confirmation, social media authentication, password recovery, and captcha protection. Uses offical [Bootstrap 4](
[2230Star][5m] infoslack/awesome-web-hacking A list of web application security
[2228Star][10d] [Py] xuefenghuang/lianjia-scrawler 链家二手房租房在线数据，存量房交易服务平台数据，详细数据分析教程
[2220Star][4m] [Py] fortynorthsecurity/eyewitness EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
[2220Star][10d] [C++] codebutler/firesheep A Firefox extension that demonstrates HTTP session hijacking attacks.
[2218Star][11d] [ObjC] ios-control/ios-deploy Install and debug iPhone apps from the command line, without using Xcode
[2218Star][12d] [C] cleanflight/cleanflight Clean-code version of the baseflight flight controller firmware
[2215Star][12d] [Shell] foospidy/payloads Git All the Payloads! A collection of web attack payloads.
[2209Star][10d] [Py] bisguzar/twitter-scraper Scrape the Twitter Frontend API without authentication.
[2209Star][4m] [Py] trustedsec/unicorn Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
[2207Star][12d] [C] yarrick/pingfs Stores your data in ICMP ping packets
[2207Star][11d] [Go] theupdateframework/notary Notary is a project that allows anyone to have trust over arbitrary collections of data
[2207Star][7d] [Py] derv82/wifite2 Rewrite of the popular wireless network auditor, "wifite"
[2205Star][11d] [Go] ullaakut/cameradar Cameradar hacks its way into RTSP videosurveillance cameras
[2204Star][11d] [Java] alibaba/alink Alink is the Machine Learning algorithm platform based on Flink, developed by the PAI team of Alibaba computing platform.
[2203Star][4m] [Ruby] urbanadventurer/whatweb Next generation web scanner
[2201Star][10d] djadmin/awesome-bug-bounty A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
[2191Star][8d] [JS] secgroundzero/warberry WarBerryPi - Tactical Exploitation
[2190Star][2m] [C++] lordnoteworthy/al-khaser Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
[2189Star][1y] jermic/android-crack-tool Android-Crack-Tool For Mac
[2186Star][9d] [Py] aoncyberlabs/windows-exploit-suggester compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target
[2186Star][15d] [C] conorpp/u2f-zero U2F USB token optimized for physical security, affordability, and style
[2184Star][11d] [Java] google/wycheproof Project Wycheproof tests crypto libraries against known attacks.
[2184Star][3y] enddo/awesome-windows-exploitation A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom
[2182Star][4m] [Py] jonathansalwan/ropgadget search your gadgets on your binaries to facilitate your ROP exploitation. supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectures.
[2177Star][10d] [Shell] arismelachroinos/lscript The LAZY script will make your life easier, and of course faster.
[2176Star][3m] [Py] sensepost/objection runtimemobile exploration
[2176Star][2y] [Py] rub-nds/pret Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
[2174Star][3m] yeahhub/hacking-security-ebooks Top 100 Hacking & Security E-Books (Free Download)
[2174Star][10d] [Assembly] dwelch67/raspberrypi Raspberry Pi ARM based bare metal examples
[2173Star][11d] [Go] jetstack/kube-lego Automatically request certificates for Kubernetes Ingress resources from Let's Encrypt
[2172Star][10d] [Py] nabla-c0d3/sslyze Fast and powerful SSL/TLS scanning library.
[2172Star][4m] [JS] iam4x/pokemongo-webspoof Spoof your iOS device GPS location for Pokémon Go
[2170Star][11d] [Py] aquasecurity/kube-hunter Hunt for security weaknesses in Kubernetes clusters
[2169Star][11d] [Py] fsecurelabs/drozer The Leading Security Assessment Framework for Android.
[2167Star][10d] [C++] lloyd/node-memwatch A NodeJS library to keep an eye on your memory usage, and discover and isolate leaks.
[2164Star][1y] [Py] linkedin/qark Tool to look for several security related Android application vulnerabilities
[2157Star][10d] [Py] calebmadrigal/trackerjacker Like nmap for mapping wifi networks you're not connected to, plus device tracking
[2155Star][10d] [C] shadowsocks/simple-obfs A simple obfuscating tool (Deprecated)
[2154Star][10d] [C] merbanan/rtl_433 Program to decode radio transmissions from devices on the ISM bands (and other frequencies)
[2154Star][11d] [C++] asmjit/asmjit Complete x86/x64 JIT and AOT Assembler for C++
[2152Star][7y] [Ruby] plamoni/siriproxy A (tampering) proxy server for Apple's Siri
[2152Star][10d] [Java] andotp/andotp Open source two-factor authentication for Android
[2149Star][10d] [C++] openthread/openthread OpenThread released by Google is an open-source implementation of the Thread networking protocol
[2148Star][2y] bluscreenofjeff/red-team-infrastructure-wiki Wiki to collect Red Team infrastructure hardening resources
[2146Star][13d] [Ruby] mojombo/god Ruby process monitor
[2145Star][11d] [C] fragglet/c-algorithms A library of common data structures and algorithms written in C.
[2144Star][3m] [Rust] indygreg/pyoxidizer A modern Python application packaging and distribution tool
[2143Star][1y] [TS] loiane/javascript-datastructures-algorithms
[2142Star][10d] [C++] xoseperez/espurna Home automation firmware for ESP8266-based devices
[2138Star][11d] [Py] dlitz/pycrypto The Python Cryptography Toolkit
[2136Star][10d] [Py] thekingofduck/fuzzdicts Web Pentesting Fuzz 字典,一个就够了。
[2133Star][10d] [C++] pytorch/glow Compiler for Neural Network hardware accelerators
[2132Star][10d] [Go] mosn/mosn MOSN is a cloud native proxy for edge or service mesh.
[2132Star][6m] [C++] darthton/blackbone Windows memory hacking library
[2131Star][4m] [C] wireguard/wireguard-monolithic-historical fast, modern, secure kernel VPN tunnel
[2129Star][6m] [Swift] krzysztofzablocki/lifetimetracker Find retain cycles / memory leaks sooner.
[2129Star][10d] [Go] google/trillian A transparent, highly scalable and cryptographically verifiable data store.
[2128Star][11d] [Py] nixawk/pentest-wiki PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
[2128Star][2m] [Go] mpolden/echoip IP address lookup service
[2126Star][3m] [Java] jeremylong/dependencycheck OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
[2124Star][10d] [Py] momosecurity/aswan 陌陌风控系统静态规则引擎，零基础简易便捷的配置多种复杂规则，实时高效管控用户异常行为。
[2117Star][10d] [C] darkk/redsocks transparent TCP-to-proxy redirector
[2116Star][12d] [Java] tdebatty/java-string-similarity Implementation of various string similarity and distance algorithms: Levenshtein, Jaro-winkler, n-Gram, Q-Gram, Jaccard index, Longest Common Subsequence edit distance, cosine similarity ...
[2116Star][10d] [Go] gdamore/tcell Tcell is an alternate terminal package, similar in some ways to termbox, but better in others.
[2115Star][11d] [YARA] yara-rules/rules Repository of yara rules
[2113Star][11d] obfuscator-llvm/obfuscator Obfuscator-LLVM
[2112Star][4m] tanprathan/mobileapp-pentest-cheatsheet The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
[2112Star][10d] [Go] bitnami-labs/sealed-secrets A Kubernetes controller and tool for one-way encrypted Secrets
[2111Star][7d] [Go] maxmcd/webtty Share a terminal session over WebRTC
[2109Star][10d] [C] ralim/ts100 The Feature Packed Alternate Open Source firmware for the TS100 iron by miniware.

[2108Star][4m] [Go] projectdiscovery/subfinder a subdomain discovery tool that discovers valid subdomains for websites

View Details

  ## Misc
  - 纯被动
  - stdin/stdout，集成到工作流
  
  ## 安装
  - `go get -v github.com/projectdiscovery/subfinder/cmd/subfinder`
  - `go get -u -v github.com/projectdiscovery/subfinder/cmd/subfinder` : 更新
  </details>

[2107Star][9d] [TS] microsoft/vscode-react-native VSCode extension for React Native - supports debugging and editor integration
[2106Star][10d] [C] tinyproxy/tinyproxy a light-weight HTTP/HTTPS proxy daemon for POSIX operating systems
[2103Star][4m] [Py] welliamcao/opsmanage 自动化运维平台: 代码及应用部署CI/CD、资产管理CMDB、计划任务管理平台、SQL审核|回滚、任务调度、站内WIKI
[2103Star][11d] [Py] cea-sec/miasm Reverse engineering framework in Python
[2102Star][10d] [C] hashcat/hashcat-legacy Advanced CPU-based password recovery utility
[2100Star][10d] [Py] hunters-forge/threathunter-playbook A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
[2091Star][11d] [Java] jindrapetrik/jpexs-decompiler JPEXS Free Flash Decompiler
[2091Star][4m] [Py] j3ssie/osmedeus Fully automated offensive security framework for reconnaissance and vulnerability scanning
[2090Star][5m] [C] dekunukem/nintendo_switch_reverse_engineering A look at inner workings of Joycon and Nintendo Switch
[2086Star][5m] infosecn1nja/ad-attack-defense Attack and defend active directory using modern post exploitation adversary tradecraft activity
[2085Star][10d] [C] ntop/ndpi Open Source Deep Packet Inspection Software Toolkit
[2083Star][10d] [Go] ffuf/ffuf Fast web fuzzer written in Go
[2081Star][2y] [BitBake] 1n3/intruderpayloads A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
[2078Star][12d] toolswatch/blackhat-arsenal-tools Official Black Hat Arsenal Security Tools Repository
[2065Star][2y] [Py] derv82/wifite an automated wireless attack tool.
[2064Star][4m] [C#] lucasg/dependencies A rewrite of the old legacy software "depends.exe" in C# for Windows devs to troubleshoot dll load dependencies issues.
[2060Star][10d] [C++] wrbug/dumpdex Android unpack
[2058Star][11d] [C++] powerdns/pdns PowerDNS Authoritative, PowerDNS Recursor, dnsdist
[2057Star][9d] [C] minhaskamal/creepycodecollection A Nonsense Collection of Disgusting Codes (quine-polyglot-code-golf-obfuscated-signature-creepy-codes-mandelbrot-esoteric-language-esoteric-programming-strange-golfing-spooky-weird)
[2052Star][4m] [C++] mhammond/pywin32 Python for Windows (pywin32) Extensions
[2049Star][10d] [Py] scrapy/scrapyd A service daemon to run Scrapy spiders
[2049Star][10m] [HTML] nikolait/googlescraper A Python module to scrape several search engines (like Google, Yandex, Bing, Duckduckgo, ...). Including asynchronous networking support.
[2048Star][12d] [Go] floyernick/data-structures-and-algorithms Data Structures and Algorithms implementation in Go
[2048Star][10d] dloss/python-pentest-tools Python tools for penetration testers
[2047Star][12d] [C] xoreaxeaxeax/rosenbridge Hardware backdoors in some x86 CPUs
[2047Star][4m] [Jupyter Notebook] cyb3rward0g/helk The Hunting ELK
[2045Star][11d] [Java] adoptopenjdk/jitwatch Log analyser / visualiser for Java HotSpot JIT compiler. Inspect inlining decisions, hot methods, bytecode, and assembly. View results in the JavaFX user interface.
[2039Star][4m] [Go] xiaoming2028/freepac 科学上网/梯子/自由上网/翻墙 SS/SSR/V2Ray/Brook 搭建教程
[2038Star][11d] jadagates/shadowsocksbio 记录一下SS的前世今生，以及一个简单的教程总结
[2036Star][13d] [Go] skynetservices/skydns DNS service discovery for etcd
[2032Star][10d] [Lua] vulnerscom/nmap-vulners NSE script based on Vulners.com API
[2032Star][3y] [Swift] urinx/iosapphook 专注于非越狱环境下iOS应用逆向研究，从dylib注入，应用重签名到App Hook
[2029Star][5y] [CoffeeScript] shadowsocks/shadowsocks-gui Shadowsocks GUI client
[2028Star][10d] [JS] ghacksuserjs/ghacks-user.js An ongoing comprehensive user.js template for configuring and hardening Firefox privacy, security and anti-fingerprinting
[2024Star][11d] [PHP] symfony/panther A browser testing and web crawling library for PHP and Symfony
[2023Star][4m] [C] adaway/adaway AdAway is an open source ad blocker for Android using the hosts file.
[2022Star][6m] [Swift] github/softu2f Software U2F authenticator for macOS
[2021Star][3m] [Perl] spiderlabs/owasp-modsecurity-crs OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
[2021Star][10d] [C] kevinoconnor/klipper Klipper is a 3d-printer firmware
[2019Star][10d] [C] chipsec/chipsec Platform Security Assessment Framework
[2018Star][7d] [PHP] jae-jae/querylist
[2016Star][10d] [Go] yahoo/gryffin Gryffin is a large scale web security scanning platform.
[2016Star][11d] [C] mgba-emu/mgba mGBA Game Boy Advance Emulator
[2015Star][10d] [TS] snyk/snyk CLI and build-time tool to find & fix known vulnerabilities in open-source dependencies
[2014Star][10d] [Py] minimaxir/facebook-page-post-scraper Data scraper for Facebook Pages, and also code accompanying the blog post How to Scrape Data From Facebook Page Posts for Statistical Analysis
[2011Star][4m] [JS] thealgorithms/javascript A repository for All algorithms implemented in Javascript (for educational purposes only)
[2006Star][10d] [Go] minishift/minishift Run OpenShift 3.x locally
[2004Star][8d] [Py] gerapy/gerapy Distributed Crawler Management Framework Based on Scrapy, Scrapyd, Django and Vue.js
[2004Star][10d] [C] probablycorey/wax Wax is now being maintained by alibaba
[2003Star][6m] olivierlaflamme/cheatsheet-god Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
[2002Star][10d] ngalongc/bug-bounty-reference Inspired by
[2002Star][3m] [Java] kyson/androidgodeye A performance monitor tool , like "Android Studio profiler" for Android , you can easily monitor the performance of your app real time in pc browser
[1994Star][5m] [C++] acidanthera/lilu Arbitrary kext and process patching on macOS
[1992Star][10d] coreb1t/awesome-pentest-cheat-sheets Collection of the cheat sheets useful for pentesting
[1990Star][10d] [Java] tiann/epic Dynamic java method AOP hook for Android(continution of Dexposed on ART), Supporting 4.0~10.0
[1988Star][10d] [Py] lanbing510/doubanspider 豆瓣读书的爬虫
[1987Star][3m] [Go] zalando/skipper An HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress
[1987Star][12m] [Java] fuzion24/justtrustme An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning
[1987Star][11d] [C] cesanta/mongoose-os Mongoose OS - an IoT Firmware Development Framework. Supported microcontrollers: ESP32, ESP8266, CC3220, CC3200, STM32F4, STM32L4, STM32F7. Amazon AWS IoT, Microsoft Azure, Google IoT Core integrated. Code in C or JavaScript.
[1985Star][2y] [Py] dormymo/spiderkeeper admin ui for scrapy/open source scrapinghub
[1983Star][11d] [C++] tum-vision/lsd_slam LSD-SLAM
[1979Star][10d] 17mon/china_ip_list IPList for China by IPIP.NET
[1976Star][5y] [Py] ziggear/shadowsocks backup of https://github.com/shadowsocks/shadowsocks
[1976Star][6m] [Py] lanjelot/patator Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
[1975Star][10d] [JS] robinmoisson/staticrypt Password protect a static HTML page
[1975Star][10d] [Py] gaojiuli/gain Web crawling framework based on asyncio.
[1974Star][5m] [C] microsoft/procdump-for-linux A Linux version of the ProcDump Sysinternals tool
[1971Star][10d] [PS] fireeye/flare-vm FireEye Labs Advanced Reverse Engineering
[1969Star][10d] rmerl/asuswrt-merlin.ng Third party firmware for Asus routers (newer codebase)
[1967Star][3y] [C#] lazocoder/windows-hacks Creative and unusual things that can be done with the Windows API.
[1966Star][11d] [Go] hyperhq/hyperd HyperContainer Daemon
[1963Star][10d] [Py] lijiejie/subdomainsbrute A fast sub domain brute tool for pentesters
[1963Star][10d] [Shell] leebaird/discover Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
[1960Star][10d] [JS] weichiachang/stacks-cli Check website stack from the terminal
[1960Star][10d] [Py] anorov/cloudflare-scrape A Python module to bypass Cloudflare's anti-bot page.
[1959Star][10d] [Py] jinnlynn/genpac PAC/Dnsmasq/Wingy file Generator, working with gfwlist, support custom rules.
[1956Star][13d] [JS] diafygi/gethttpsforfree Source code for
[1955Star][1y] [C++] facebookresearch/elf An End-To-End, Lightweight and Flexible Platform for Game Research
[1954Star][10d] [Py] python-security/pyt A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
[1953Star][11d] [C++] iagox86/dnscat2 create an encrypted command-and-control (C&C) channel over the DNS protocol, which is an effective tunnel out of almost every network.
[1953Star][13d] [C++] googlecreativelab/open-nsynth-super Open NSynth Super is an experimental physical interface for the NSynth algorithm
[1941Star][10d] [Py] pwnlandia/mhn Modern Honey Network
[1940Star][11d] [TS] rangle/augury Angular Debugging and Visualization Tools
[1937Star][10d] [Py] trailofbits/manticore Symbolic execution tool
[1937Star][2y] [Py] aploium/zmirror an http reverse proxy designed to automatically and completely mirror a website (such as google), support cache and CDN
[1933Star][10d] [C] ntop/n2n Peer-to-peer VPN
[1931Star][12d] [C] retroplasma/earth-reverse-engineering Reversing Google's 3D satellite mode
[1930Star][11d] [Py] lorien/grab Web Scraping Framework
[1928Star][10d] onethawt/idaplugins-list A list of IDA Plugins
[1927Star][12d] [JS] coreybutler/node-windows Windows support for Node.JS scripts (daemons, eventlog, UAC, etc).

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Readme_en.md

Readme_en.md

All Resource Collection Projects

PS

Tool List

Files

Readme_en.md

Latest commit

History

Readme_en.md

File metadata and controls

All Resource Collection Projects

PS

Tool List