OWASP Enterprise Security API for Perl

Python and Django implementation of the OWASP RailsGoat project

The OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

Tool to enumerate potential security misconfigurations, allowing for privilege escalation on a windows machine.

This repository contains payload to test NoSQL Injections

JNDI Attacking Tool

exploit for ImageMagick's uninitialized memory disclosure in gif coder

Awesome XSS stuff

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

AWS S3 Downloader

Optiva-Framework 🔎 Web Application Scanner🕵️

Nginx configuration static analyzer

A collection of tools to perform searches on GitHub.

Abusing Self-XSS and Clickjacking to trigger XSS

Fortify the security of any WordPress installation.

Stuff about it-security that might be good to know

Map 2G/3G/4G and more cellular networks in real live with a simple smart phone, pretty much like osmocomBB monitoring feature.

The most complete open-source tool for Twitter intelligence analysis

Insecure Programming by Example - Teach yourself how buffer overflows, format strings, numeric bugs, and other binary security bugs work and how to exploit them

Detect and bypass web application firewalls and protection systems

A tool which exploits a backdoor in Hikvision camera firmwares circa 2014-2016 to help the owner change a forgotten password.

Sample Angular application used in the "Angular: Getting Started" course: http://bit.ly/Angular-GettingStarted