Automated Adversary Emulation Platform

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。

Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Hacking Toolkit

Awesome Python Security resources 🕶🐍🔐

secureCodeBox (SCB) - continuous secure delivery out of the box

My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.

✨ Fully autonomous AI Agents system capable of performing complex penetration testing tasks

A friendly car security exploration tool for the CAN bus

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Resources for Application Security including Web, API, Android, iOS and Thick Client

Red Team Attack Lab for TTP testing & research

Awesome .NET Security Resources

MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration testing into AI workflows.

Fuzz your Rust code with Google-developed Honggfuzz !

Web application vulnerability scanner

NERVE Continuous Vulnerability Scanner