The WinRAR Exploit Builder is a C# project designed to create an exploit targeting a vulnerability in WinRAR.

Software Supply Chain Security Platform

The ZAP core project

A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.

VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities

An auto-updating list of shodan dorks with info on the amount of results they return!

Jenkins plugin for Xygeni - End to end software development and delivery security

A modular vulnerability scanner with automatic report generation capabilities.

Bien que Tor soit très utile pour les utilisateurs qui cherchent à préserver leur vie privée, il peut poser des problèmes de sécurité pour les entreprises.

A bunch of scripts for debian-based linux distributions

❌ Revoke or update your token approvals

Repository Service for TUF: Worker

VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, pentest reporting, etc..

Trends Website (URL) from Twitter hackers.

IP list full of bad IPs - Updated every 2H

Open source authorization service inspired by Google Zanzibar to build fine-grained and scalable authorization systems.

一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术，作为反向代理接入，保护你的网站不受黑客攻击。 A free WAF that is sufficiently simple, effective, and powerful. Utilizing industry-leading semantic engine detection technology, it operates as a reverse proxy to protect your website from hacker attacks.

Datadog Python APM Client

HackerOne "in scope" domains

A simple proxy tunnel, minimalist tool for bypassing the GFW.