#Information-security

Showing 60 of 108 repositories tagged #information-security, ranked by stars

smicallef
smicallef
spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Score
100
★ 19.3k ⑂ 3.2k +37/day
Python
We5ter
We5ter
Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Score
100
★ 9.0k ⑂ 2.4k +6/day
MISP
MISP
MISP

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Score
99
★ 6.4k ⑂ 1.6k +2/day
PHP
rmusser01
rmusser01
Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Score
93
★ 6.0k ⑂ 1.2k +2/day
CSS
OlivierLaflamme
OlivierLaflamme
Cheatsheet-God

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Score
87
★ 5.6k ⑂ 1.3k +1/day
clong
clong
DetectionLab

Automate the creation of a lab environment complete with security tooling and logging best practices

Score
100
★ 5.0k ⑂ 1.0k +2/day
HTML
Security-Onion-Solutions
Security-Onion-Solutions
securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

Score
98
★ 4.7k ⑂ 663 +4/day
Shell
ComplianceAsCode
ComplianceAsCode
content

Security automation content in SCAP, Bash, Ansible, and other formats

Score
97
★ 2.8k ⑂ 813
Shell
Jieyab89
Jieyab89
OSINT-Cheat-sheet

OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book , red team OSINT for hackers and OSINT tips and OSINT branch. This repository will grow every time will research, there is a research, science and technology, tutorial. Please use it wisely.

Score
96
★ 2.1k ⑂ 306 +7/day
Python
lucasjacks0n
lucasjacks0n
EggShell

iOS/macOS/Linux Remote Administration Tool

Score
100
★ 1.8k ⑂ 385 +1/day
Objective-C
DosX-dev
DosX-dev
obfus.h

Macro-header for compile-time C obfuscation (tcc, win x86/x64)

Score
91
★ 1.7k ⑂ 150
C
konstruktoid
konstruktoid
hardening

Hardening Ubuntu. Systemd edition.

Score
95
★ 1.7k ⑂ 402
Shell
tokyoneon
tokyoneon
Chimera

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Score
81
★ 1.6k ⑂ 255
PowerShell
vladko312
vladko312
SSTImap

Automatic SSTI detection tool with interactive interface

Score
90
★ 1.6k ⑂ 176 +5/day
Python
Cyber-Guy1
Cyber-Guy1
API-SecurityEmpire

API Security Project aims to present unique attack & defense methods in API Security field

Score
80
★ 1.4k ⑂ 251
CIRCL
CIRCL
AIL-framework

AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project

Score
92
★ 1.4k ⑂ 288 +2/day
Python
ansjdnakjdnajkd
ansjdnakjdnajkd
iOS

Most usable tools for iOS penetration testing

Score
0
★ 1.3k ⑂ 195
ail-project
ail-project
ail-framework

AIL framework - Analysis Information Leak framework

Score
67
★ 974 ⑂ 136 +5/day
Python
dedsec1121fk
dedsec1121fk
DedSec

Official DedSec Project GitHub Repository

Score
83
★ 973 ⑂ 493 +1/day
Python
Cyber-Buddy
Cyber-Buddy
APKHunt

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

Score
0
★ 968 ⑂ 102
Go
counteractive
counteractive
incident-response-plan-template

A concise, directive, specific, flexible, and free incident response plan template

Score
76
★ 793 ⑂ 242 +1/day
Makefile
sgxgsx
sgxgsx
BlueToolkit

BlueToolkit is an extensible Bluetooth Classic vulnerability testing framework that helps uncover new and old vulnerabilities in Bluetooth-enabled devices. Could be used in the vulnerability research, penetration testing and bluetooth hacking. We also collected and classified Bluetooth vulnerabilities in an "Awesome Bluetooth Security" way

Score
86
★ 706 ⑂ 73 +2/day
Jupyter Notebook
Funkmyster
Funkmyster
awesome-cloud-security

A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

Score
74
★ 666 ⑂ 130
MahdiMashrur
MahdiMashrur
Awesome-Application-Security-Checklist

Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application

Score
67
★ 653 ⑂ 66
konstruktoid
konstruktoid
ansible-role-hardening

Ansible role to apply a security baseline. Systemd edition.

Score
88
★ 639 ⑂ 125
Jinja
msuiche
msuiche
OPCDE

OPCDE Cybersecurity Conference Materials

Score
71
★ 619 ⑂ 136
C++
s41r4j
s41r4j
phomber

[PH0MBER]: An open source infomation grathering & reconnaissance framework!

Score
50
★ 582 ⑂ 111
Python
wongzeon
wongzeon
ICP-Checker

ICP备案查询,可查询企业或域名的ICP备案信息,自动完成滑动验证,保存结果到Excel表格,适用于新版的工信部备案管理系统网站,告别频繁拖动验证,以及某站*工具要开通VIP才可查看备案信息的坑

Score
33
★ 564 ⑂ 94
Python
GACWR
GACWR
OpenUBA

A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [BETA]

Score
89
★ 498 ⑂ 280 +4/day
Python
gh0x0st
gh0x0st
Buffer_Overflow

Don't let buffer overflows overflow your mind

Score
65
★ 459 ⑂ 118
Python
vlsergey
vlsergey
infosec

Учебное пособие по защите информации кафедры радиотехники и систем управления МФТИ

Score
73
★ 450 ⑂ 211
TeX
ossamayasserr
ossamayasserr
WebAppPentestRoadmap

Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)

Score
64
★ 447 ⑂ 87
Python
virajkulkarni14
virajkulkarni14
WebDeveloperSecurityChecklist

A checklist of important security issues you should consider when creating a web application.

Score
0
★ 424 ⑂ 58 +1/day
decal
decal
werdlists

:keyboard: Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

Score
62
★ 364 ⑂ 95
HTML
chrisallenlane
chrisallenlane
novahot

A webshell framework for penetration testers.

Score
56
★ 301 ⑂ 56
JavaScript
tokyoneon
tokyoneon
CredPhish

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

Score
54
★ 294 ⑂ 44
PowerShell
tokyoneon
tokyoneon
Armor

Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

Score
55
★ 278 ⑂ 56
Shell
infosecstreams
infosecstreams
infosecstreams.github.io

A (hopefully) actively maintained activity-based-autosorted list of InfoSec Streamers

Score
85
★ 256 ⑂ 108
HTML
1in9e
1in9e
icp-domains

输入一个域名,输出ICP备案所有关联域名

Score
17
★ 255 ⑂ 37
Python
edoardottt
edoardottt
secfiles

My useful files for penetration tests, security assessments, bug bounty and other security related stuff

Score
82
★ 210 ⑂ 26
Shell
zzzteph
zzzteph
sheye

Opensource assets and vulnerability scanning tool

Score
0
★ 187 ⑂ 43
JavaScript
GTekSD
GTekSD
SUASS

one-stop resource for all things offensive security.

Score
77
★ 181 ⑂ 15
JavaScript
bb1nfosec
bb1nfosec
Information-Security-Tasks

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Score
84
★ 180 ⑂ 56
Python
harvard-itsecurity
harvard-itsecurity
docker-misp

Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing

Score
52
★ 175 ⑂ 44
Dockerfile
AleksaMCode
AleksaMCode
Preferred-Network-List-Sniffer

A reconnaissance tool for capturing and displaying SSIDs from device's Preferred Network List.

Score
75
★ 174 ⑂ 9
Python
docintelapp
docintelapp
DocIntel

Open Source Platform for storing, organizing, and searching documents related to cyber threats

Score
48
★ 172 ⑂ 27
JavaScript
OSINT-TECHNOLOGIES
OSINT-TECHNOLOGIES
dpulse

DPULSE - Tool for complex approach to domain OSINT

Score
79
★ 163 ⑂ 12
HTML
h4m5t
h4m5t
Cryptography

初学者怎样学习密码学Cryptography

Score
46
★ 162 ⑂ 17
tokyoneon
tokyoneon
Arcane

Arcane is a simple script designed to backdoor iOS packages (iphone-arm) and create the necessary resources for APT repositories.

Score
47
★ 155 ⑂ 29
Shell
ControlCompass
ControlCompass
ControlCompass.github.io

Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques

Score
45
★ 143 ⑂ 27
JavaScript
SNGWN
SNGWN
CEH-Notes

Structured Certified Ethical Hacker (CEH v12) study notes — 20 modules from footprinting and scanning to web, wireless, cloud & cryptography, each with tools, commands, and hands-on labs.

Score
51
★ 133 ⑂ 59
Python
cycurity
cycurity
wister

A wordlist generator tool, that allows you to supply a set of words, giving you the possibility to craft multiple variations from the given words, creating a unique and ideal wordlist to use regarding a specific target.

Score
42
★ 123 ⑂ 16
Python
maxkrivich
maxkrivich
SlowLoris

Asynchronous Python implementation of SlowLoris DoS attack

Score
78
★ 110 ⑂ 37
Python
MISP
MISP
docker-misp

Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing

Score
43
★ 104 ⑂ 30
Dockerfile
noctisynth
noctisynth
oblivion-rs

A fast, lightweight, and full duplex secure end-to-end encryption protocol based on ECDHE

Score
0
★ 94 ⑂ 1
Rust
Plazmaz
Plazmaz
MongoDB-HoneyProxy

A honeypot proxy for mongodb. When run, this will proxy and log all traffic to a dummy mongodb server.

Score
40
★ 92 ⑂ 17
JavaScript
Keyj33k
Keyj33k
htkit

Information Gathering Simplified.

Score
0
★ 86 ⑂ 15
Python
sgxgsx
sgxgsx
mapAccountHijack

mapAccountHijack is a tool designed to carry out a MAP Account hijack attack, which exploits the Message Access Profile (MAP) in Bluetooth Classic, enables the theft of MFA and OTPs leading to the successful hijacking of accounts on services that rely on SMS OTPs during login or recovery. Tool leaks phone numbers, emails, can send and retrieve SMS

Score
36
★ 83 ⑂ 14
Python
DotNetRussell
DotNetRussell
MinerInTheMiddle

This application was created as a POC for how to scan your local network traffic for HTTP requests and then inject various javascript cryptocurrency miners into the response payloads

Score
38
★ 82 ⑂ 22
Python
psc4re
psc4re
quick-scripts

A collection of my quick and dirty scripts for vulnerability POC and detections

Score
57
★ 75 ⑂ 19
Lua
Related Topics
#security#penetration-testing#cybersecurity#security-tools#hacking#infosec#pentesting#osint#information-gathering#python#threat-intelligence

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly