TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains, IPs, and SHA256/MD5 hashes.

600 67 Updated Oct 26, 2025

jakejarvis / awesome-shodan-queries

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

6,789 961 Updated May 27, 2024

Berkanktk / CyberSecurity

A collection of essential and foundational cybersecurity knowledge, thoughtfully organized for easy comprehension.

Python 1,318 109 Updated Sep 22, 2025

quadrantsec / sagan

Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather than network packets.

C 188 34 Updated Oct 6, 2025

gnxsecurity / gnx-threat-intelligence

A commercial grade threat intelligence feed thats validated and updated every half hour.

SuperCollider 19 3 Updated Mar 24, 2023

DependencyTrack / dependency-track

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Java 3,308 682 Updated Oct 24, 2025

wireghoul / graudit

grep rough audit - source code auditing tool

Shell 1,657 252 Updated May 22, 2025

war-and-code / jawfish

Tool for breaking into web applications.

Python 92 18 Updated Aug 16, 2019

0x4D31 / burpa

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Python 481 108 Updated Aug 1, 2018

integrissecurity / carbonator

Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps automate the vulnerability scanning of web applications. Eith…

Python 74 56 Updated Apr 22, 2018

vmware / burp-rest-api

REST/JSON API to the Burp Suite security tool.

Java 561 115 Updated Jul 14, 2025

stamparm / maltrail

Malicious traffic detection system

Python 7,650 1,177 Updated Oct 25, 2025

Cyb3rWard0g / HELK

The Hunting ELK

Jupyter Notebook 3,888 702 Updated Jun 1, 2024

sentinl / sentinl

Kibana Alert & Report App for Elasticsearch

JavaScript 1,328 293 Updated Apr 25, 2024

HASecuritySolutions / VulnWhisperer

Create actionable data from your Vulnerability Scans

Python 1,390 275 Updated Dec 27, 2022

SigmaHQ / sigma

Main Sigma Rule Repository

Python 9,724 2,442 Updated Oct 26, 2025

hslatman / awesome-threat-intelligence

A curated list of Awesome Threat Intelligence resources

9,328 1,613 Updated Oct 10, 2025

18F / concourse-compliance-testing

Concourse CI assets for Compliance Toolkit

Ruby 17 11 Updated Sep 12, 2017

hawkeyesec / scanner-cli

A project security/vulnerability/risk scanning tool

JavaScript 362 87 Updated Aug 31, 2021

danielmiessler / SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

PHP 66,512 24,725 Updated Oct 26, 2025

yandex / gixy

Nginx configuration static analyzer

Python 8,526 440 Updated Jul 28, 2024

internetwache / GitTools

A repository with 3 tools for pwn'ing websites with .git repositories available

Shell 4,088 635 Updated Jun 14, 2023

commixproject / commix

Automated All-in-One OS Command Injection Exploitation Tool.

Python 5,499 896 Updated Oct 21, 2025

sleuthkit / autopsy

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to invest…

Java 2,860 637 Updated Oct 25, 2025

iriusrisk / bdd-security

BDD Automated Security Tests for Web Applications

Java 567 178 Updated Nov 16, 2022

Russ Thompson vigeek

Lists (4)

SecBlue

SecIntel

SecRed

SecTools

Stars