-
Android Security
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
AppSec
-
Asset Discovery
-
awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
Bug Bounty
-
capsulecorp-pentest
Vagrant VirtualBox environment for conducting an internal network penetration test
Capsulecorp Pentest
-
CTF
-
awesome-cyber-skills
A curated list of hacking environments where you can train your cyber skills legally and safely
Cyber Skills
-
awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
DevSecOps
-
Embedded and IoT Security
-
awesome-exploit-development
A curated list of resources (books, tutorials, courses, tools and vulnerable applications) for learning about Exploit Development
Exploit Development
-
Awesome-Fuzzing
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
Fuzzing
-
Hacking
-
Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
Hacking Resources
-
Honeypots
-
Incident Response
-
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Industrial Control System Security InfoSec
-
Industrial Control System Security InfoSec
-
IoT Hacks
-
Mainframe Hacking
-
Malware Analysis
-
OSINT
-
OSX and iOS Security
-
awesome-pcaptools
A collection of tools developed by other researchers in the Computer Science area to process network traces. All the right reserved for the original authors.
Pcaptools
-
Pentest
-
Red Teaming
-
awesome-reversing
Discontinued A curated list of awesome reversing resources [Moved to: https://github.com/tylerha97/awesome-reversing] (by fdivrp)
Reversing
-
Sec Talks
-
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
SecLists
-
awesome-serverless-security
A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.
Serverless Security
-
Social Engineering
-
awesome-static-analysis
Discontinued ⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. [Moved to: https://github.com/analysis-tools-dev/static-analysis]
Static Analysis
-
h4cker
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
The Art of Hacking Series
-
Threat Intelligence
-
Awesome-Vulnerability-Research
🦄 A curated list of the awesome resources about the Vulnerability Research
Vulnerability Research
-
Web Hacking
-
Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References
Windows Exploitation - Advanced
-
WiFi Arsenal
-
YARA
-
hacker-roadmap
Discontinued A collection of hacking tools, resources and references to practice ethical hacking.
Hacker Roadmap
-
awesome-adversarial-machine-learning
A curated list of awesome adversarial machine learning resources
Adversarial Machine Learning
-
AI Security
-
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
API Security Checklist
-
APT Notes
-
bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
Bug Bounty Reference
-
Cryptography
-
CTF Tool
-
CVE PoC
-
DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
Detection Lab
-
Forensics
-
Free Programming Books
-
Gray Hacker Resources
-
Hacker101
-
infosec_getting_started
A collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.
Infosec Getting Started
-
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Infosec Reference
-
IOC
-
Linux Kernel Exploitation
-
awesome-lockpicking
Discontinued :unlock::sunglasses: A curated list of awesome guides, tools, and other resources related to the security and compromise of locks, safes, and keys. [Moved to: https://github.com/fabacab/awesome-lockpicking] (by meitar)
Lockpicking
-
Machine Learning for Cyber Security
-
Payloads
-
Pentest Cheatsheets
-
pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
Pentest Wiki
-
Probable-Wordlists
Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
Probable Wordlists
-
Resource List
-
Reverse Engineering
-
RFSec-ToolKit
RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集,可借助SDR硬件+相关工具对无线通信进行研究。Collect with ♥ by HackSmith
RFSec-ToolKit
-
Security Cheatsheets
-
Security List
-
awesome-shell
A curated list of awesome command-line frameworks, toolkits, guides and gizmos. Inspired by awesome-php.
Shell
-
ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
ThreatHunter-Playbook
-
Web Security
-
Vulhub
Related posts
-
android RE
-
Can anyone recommend any deep web sites that hosts certificate courses from reputable universities for free? Or any edtech sites on the deep web. Thanks.
-
List of Swatch Internet Time Tools
-
Ask HN: What companies will be remote friendly in 2025?
-
Show HN: GitHub|a curated list of streaming frameworks, applications, etc.