A repository of breaches of AWS customers

GCHQ's internal Boiling Frogs research paper on software development and organisational change in the face of disruption #boilingfrogs

Public version of PagerDuty's employee security training courses.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Find secrets with Gitleaks 🔑

A command-line tool for querying the 'Have I been pwned?' service.

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

Blue Ant CLI client on zsh steroids

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

A self-service CA for OpenSSH

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

Command line utility for searching and downloading exploits

A compilation of sites with dumb password rules.

PLEASE USE NEW VERSION: https://github.com/kgretzky/evilginx2

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Low-Budget Password Strength Estimation

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

USB key cleaner

A static analyzer for Java, C, C++, and Objective-C

OS X Auditor is a free Mac OS X computer forensics tool

SQL powered operating system instrumentation, monitoring, and analytics.

PagerDuty's Incident Response Documentation.

Find licenses for your project's dependencies.

🔐 multi factor authentication system (2FA, MFA, OTP, FIDO Server)

A container repository for my public web hacks!

VSAQ is an interactive questionnaire application to assess the security programs of third parties.

Spectacle allows you to organize your windows without using a mouse.