WindowsAPIAbuseAtlas catalogs Windows API abuse by malware with reverse engineering notes and YARA rules, aiding threat hunters and malware analysts in detection.
X-osint is a Python CLI tool aggregating OSINT data from multiple external APIs with a modular menu-driven interface, designed for Termux, Linux, and macOS.
Clawd Cursor offers AI agents native desktop control on Windows, macOS, and Linux with a unified PlatformAdapter and local-first architecture, enabling secure, model-agnostic automation without cloud round-trips.
fastapi-guard offers a composable security middleware for FastAPI with per-route decorators, IP filtering, rate limiting, and an optional cloud dashboard for monitoring.
Explore Mandiant’s FLARE Learning Hub, an open educational platform for malware analysis and reverse engineering with a standout Go reverse engineering reference targeting Windows AMD64.
A deep dive into the iOS-Hardening-Guide repo, covering hardware exploits like checkm8, Apple’s mitigations, and practical operational security for iOS/iPadOS users.
oh-my-kiro enhances AI coding agents with 3-layer deterministic enforcement and a crash-recovering outer loop, improving reliability and reducing hallucinations.
reNgine is a Django-powered web reconnaissance framework using YAML configurations to orchestrate multiple security tools with async concurrency and role-based access control.
Watchtower orchestrates 23 security tools via a LangGraph multi-agent system for automated pentesting. It uses a Planner-Worker-Analyst pattern, SQLite state, and supports multiple LLM providers.
A curated repository for AI/LLM penetration testing covering prompt injection, adversarial ML, and LLM red teaming with the OWASP LLM Top 10 framework.
Bureautix offers a minimal-infrastructure approach to secure office workstations using NixOS, Secure Boot, and FIDO2 MFA, managing user directories as code distributed via Git.
Maigret is a Python-based OSINT tool that scrapes public profiles by username from 3,000+ sites without API keys. It features adaptive scraping, anti-blocking, and a web interface.
Vaultwarden is a lightweight, Rust-based server compatible with the Bitwarden API, optimized for self-hosting with low resource usage and Docker deployment.
SecLists is a comprehensive collection of security testing wordlists and payloads, essential for penetration testers and researchers seeking standardized, ready-to-use resources.
