Cybersecurity Repositories

This page summarizes the projects mentioned and recommended in the original post on /r/netsecstudents

Our great sponsors
  • SonarLint - Clean code begins in your IDE with SonarLint
  • InfluxDB - Collect and Analyze Billions of Data Points in Real Time
  • Mergify - Tired of breaking your main and manually rebasing outdated pull requests?
  • android-security-awesome

    A collection of android security related resources

    Android Security

  • awesome-appsec

    A curated list of resources for learning about application security


  • SonarLint

    Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.

  • Awesome-Asset-Discovery

    List of Awesome Asset Discovery Resources

    Asset Discovery

  • awesome-bug-bounty

    A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

    Bug Bounty

  • capsulecorp-pentest

    Vagrant VirtualBox environment for conducting an internal network penetration test

    Capsulecorp Pentest

  • awesome-ctf

    A curated list of CTF frameworks, libraries, resources and softwares


  • awesome-cyber-skills

    A curated list of hacking environments where you can train your cyber skills legally and safely

    Cyber Skills

  • InfluxDB

    Collect and Analyze Billions of Data Points in Real Time. Manage all types of time series data in a single, purpose-built database. Run at any scale in any environment in the cloud, on-premises, or at the edge.

  • awesome-devsecops

    An authoritative list of awesome devsecops tools with the help from community experiments and contributions.


  • awesome-embedded-and-iot-security

    A curated list of awesome embedded and IoT security resources.

    Embedded and IoT Security

  • awesome-exploit-development

    A curated list of resources (books, tutorials, courses, tools and vulnerable applications) for learning about Exploit Development

    Exploit Development

  • Awesome-Fuzzing

    A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.


  • awesome-hacking

    A curated list of awesome Hacking tutorials, tools and resources (by carpedm20)


  • Awesome-Hacking-Resources

    A collection of hacking / penetration testing resources to make you better!

    Hacking Resources

  • awesome-honeypots

    an awesome list of honeypot resources


  • awesome-incident-response

    A curated list of tools for incident response

    Incident Response

  • awesome-industrial-control-system-security

    A curated list of resources related to Industrial Control System (ICS) security.

    Industrial Control System Security InfoSec

  • awesome-infosec

    A curated list of awesome infosec courses and training resources.

    Industrial Control System Security InfoSec

  • awesome-iot-hacks

    A Collection of Hacks in IoT Space so that we can address them (hopefully).

    IoT Hacks

  • Mainframe Hacking

  • awesome-malware-analysis

    Defund the Police.

    Malware Analysis

  • awesome-osint

    :scream: A curated list of amazingly awesome OSINT


  • osx-and-ios-security-awesome

    OSX and iOS related security tools

    OSX and iOS Security

  • awesome-pcaptools

    A collection of tools developed by other researchers in the Computer Science area to process network traces. All the right reserved for the original authors.


  • awesome-pentest

    A collection of awesome penetration testing resources, tools and other shiny things


  • Awesome-Red-Teaming

    List of Awesome Red Teaming Resources

    Red Teaming

  • awesome-reversing

    A curated list of awesome reversing resources [Moved to:] (by fdivrp)


  • awesome-sec-talks

    A collected list of awesome security talks

    Sec Talks

  • SecLists

    SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.


  • awesome-serverless-security

    A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.

    Serverless Security

  • awesome-social-engineering

    A curated list of awesome social engineering resources.

    Social Engineering

  • awesome-static-analysis

    ⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. [Moved to:]

    Static Analysis

  • h4cker

    This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), artificial intelligence, vulnerability research, exploit development, reverse engineering, and more.

    The Art of Hacking Series

  • awesome-threat-intelligence

    A curated list of Awesome Threat Intelligence resources

    Threat Intelligence

  • Awesome-Vulnerability-Research

    🦄 A curated list of the awesome resources about the Vulnerability Research

    Vulnerability Research

  • awesome-web-hacking

    A list of web application security

    Web Hacking

  • Awesome-Advanced-Windows-Exploitation-References

    List of Awesome Advanced Windows Exploitation References

    Windows Exploitation - Advanced

  • wifi-arsenal

    WiFi arsenal

    WiFi Arsenal

  • awesome-yara

    A curated list of awesome YARA rules, tools, and people.


  • hacker-roadmap

    A collection of hacking tools, resources and references to practice ethical hacking.

    Hacker Roadmap

  • awesome-adversarial-machine-learning

    A curated list of awesome adversarial machine learning resources

    Adversarial Machine Learning

  • Awesome-AI-Security

    :file_folder: #AISecurity

    AI Security

  • API-Security-Checklist

    Checklist of the most important security countermeasures when designing, testing, and releasing your API

    API Security Checklist

  • APTnotes

    Various public documents, whitepapers and articles about APT campaigns

    APT Notes

  • bug-bounty-reference

    Inspired by, a list of bug bounty write-up that is categorized by the bug nature

    Bug Bounty Reference

  • Awesome Cryptography

    A curated list of cryptography resources and links.


  • CTF-tool

    A curated list of Capture The Flag (CTF) frameworks, libraries, resources and softwares.

    CTF Tool

  • awesome-cve-poc

    ✍️ A curated list of CVE PoCs.

    CVE PoC

  • DetectionLab

    Automate the creation of a lab environment complete with security tooling and logging best practices

    Detection Lab

  • awesome-forensics

    A curated list of awesome forensic analysis tools and resources


  • free-programming-books

    :books: Freely available programming books

    Free Programming Books

  • Pentesting-Toolkit

    🏴‍☠️ Tools for pentesting, CTFs & wargames. - 𝚋𝚢 𝚋𝚝𝟹𝚐𝚕

    Gray Hacker Resources

  • hacker101

    Source code for - a free online web and mobile security class.


  • infosec_getting_started

    A collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.

    Infosec Getting Started

  • Infosec_Reference

    An Information Security Reference That Doesn't Suck; for non-MS Git hosted version.

    Infosec Reference

  • awesome-iocs

    A collection of sources of indicators of compromise.


  • linux-kernel-exploitation

    A collection of links related to Linux kernel security and exploitation

    Linux Kernel Exploitation

  • awesome-lockpicking

    :unlock::sunglasses: A curated list of awesome guides, tools, and other resources related to the security and compromise of locks, safes, and keys. [Moved to:] (by meitar)


  • awesome-ml-for-cybersecurity

    :octocat: Machine Learning for Cyber Security

    Machine Learning for Cyber Security

  • payloads

    Git All the Payloads! A collection of web attack payloads. (by foospidy)


  • awesome-pentest-cheat-sheets

    Collection of the cheat sheets useful for pentesting

    Pentest Cheatsheets

  • pentest-wiki

    PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

    Pentest Wiki

  • Probable-Wordlists

    Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

    Probable Wordlists

  • Resource-List

    GitHub Project Resource List

    Resource List

  • reverseengineering-reading-list

    A list of Reverse Engineering articles, books, and papers

    Reverse Engineering

  • RFSec-ToolKit

    RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集,可借助SDR硬件+相关工具对无线通信进行研究。Collect with ♥ by HackSmith


  • security-cheatsheets

    🔒 A collection of cheatsheets for various infosec tools and topics.

    Security Cheatsheets

  • Security_list

    Great security list for fun and profit

    Security List

  • awesome-shell

    A curated list of awesome command-line frameworks, toolkits, guides and gizmos. Inspired by awesome-php.


  • ThreatHunter-Playbook

    A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.


  • awesome-web-security

    🐶 A curated list of Web Security materials and resources.

    Web Security

  • vulhub

    Pre-Built Vulnerable Environments Based on Docker-Compose


  • Mergify

    Tired of breaking your main and manually rebasing outdated pull requests?. Managing outdated pull requests is time-consuming. Mergify's Merge Queue automates your pull request management & merging. It's fully integrated to GitHub & coordinated with any CI. Start focusing on code. Try Mergify for free.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts