Web UI for Docker Registry

A collection of phishing samples for researchers and detection developers.

OpenTofu lets you declaratively manage your cloud infrastructure.

The OpenTF Manifesto expresses concern over HashiCorp's switch of the Terraform license from open-source to the Business Source License (BSL) and calls for the tool's return to a truly open-source …

eBPF-based Security Observability and Runtime Enforcement

Digging Deeper....

evilginx3 gophish

Openresty-based proxy to restrict egress connectivity

A GPT-empowered penetration testing tool

Draw.io libraries for threat modeling diagrams

An unofficial PyTorch implementation of the audio LM VALL-E

ZincSearch . A lightweight alternative to elasticsearch that requires minimal resources, written in Go.

Consul balancer for Openresty/Nginx

Ease your remote life with centralised SSH client configuration

A community sourced list of log4j-affected software

Hashes for vulnerable LOG4J versions

log4j / log4shell IoCs from multiple sources put together in one big file (IPs) more coming soon (CVE-2021-44228)

Python library for communicating with EPever solar charge controllers

Trojan Source: Invisible Vulnerabilities

Flipper Zero firmware source code

SELinux Policies for Vault

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.

Completely private voice and video chat.

A HTA shell to assist with breakout assessments.

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

Generate meaningful output from your pfSense configuration backup, like Markdown documentation.

TPM-Fail Attack code & data

exploits and proof-of-concept vulnerability demonstration files from the team at Hacker House