📋 A list of open LLMs available for commercial use.

must read

Malware Analyst's Cookbook stuffs

My Practical Pentest Cheat Sheets.

CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

Open-source stealer logs parser and visualization dashboard that structures and presents log data to facilitate analysis.

DursVuln - Nmap Scripting Engine (NSE)

LaraVuln, a simple web application aimed at security test labs and application development. Can be done by many test methods such as black box, white box and gray box, this web can be used for web …

Running UI/E2E tests with Cypress and analysing their traffic for vulnerabilities with OWASP ZAP

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

OWASP Foundation web repository

🕵️‍♂️ Offensive Google framework.

Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑end engagement management, from reconnaissance through execution and reporting. With buil…

enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts

Cybersecurity AI (CAI), the framework for AI Security

Bandit is a tool designed to find common security issues in Python code.

A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.

Testing TLS/SSL encryption anywhere on any port

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

Examples of JSON and binary and serialization vulnerabilities in .NET

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

just subdomain enumeration from yuyu scanner

OSCP Cheatsheet by Sai Sathvik Ruppa

CTFs as you need them

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Adversary simulation and Red teaming platform with AI