.svg){kind=icon}
Light LDAP implementation
This project is a lightweight authentication server that provides an opinionated, simplified LDAP interface for authentication. It integrates with many backends, from KeyCloak to Authelia to Nextcloud and more!
It comes with a frontend that makes user management easy, and allows users to edit their own details or reset their password by email.
Automated Attack Simulation in the Cloud, complete with detection use cases.
This is the repository containing Leonidas, a framework for executing attacker actions in the cloud. It provides a YAML-based format for defining cloud attacker tactics, techniques and procedures (TTPs) and their associated detection properties. These definitions can then be compiled into:
Awesome cloud enumerator
A tool to find a company (target) infrastructure, files, and apps on the top cloud providers (Amazon, Google, Microsoft, DigitalOcean, Alibaba, Vultr, Linode). The outcome is useful for bug bounty hunters, red teamers, and penetration testers alike.
The Query Builder Component for React.
React Query Builder is a fully customizable query builder component for React, along with a collection of utility functions for importing from, and exporting to, various query languages like SQL, MongoDB, and more.
A comprehensive test suite for RFC 8259 compliant JSON parsers
JSON for Classic C++.
json.cpp is a baroque JSON parsing / serialization library for C++.
node.js command-line interfaces made easy.
The complete solution for node.js command-line interfaces.
Scan for React performance issues and eliminate slow renders in your app.
React Scan "scans" your React app for problematic renders. It's just JavaScript, so you drop it in anywhere – script tag, npm, you name it!
Superfile is a modern terminal file manager crafted with a strong focus on user interface, functionality, and ease of use. Built with Go and Bubble Tea, it combines a visually appealing design with the simplicity of terminal tools, providing a fresh, accessible approach to file management.
Simple, reliable, and efficient distributed task queue in Go.
Asynq is a Go library for queueing tasks and processing them asynchronously with workers. It's backed by Redis and is designed to be scalable yet easy to get started.
EvilnoVNC is a Ready to go Phishing Platform.
Unlike other phishing techniques, EvilnoVNC allows 2FA bypassing by using a real browser over a noVNC connection.
In addition, this tool allows us to see in real time all of the victim's actions, access to their downloaded files and the entire browser profile, including cookies, saved passwords, browsing history and much more.
Framework reimagined for the edge!.
Deliver instant apps at scale.
Build instantly-interactive web apps without effort.
Qwik is a new kind of web framework that can deliver instant loading web applications at any size or complexity. Your sites and apps can boot with about 1kb of JS (regardless of application complexity), and achieve consistent performance at scale.
A static site generator for Swift developers.
It enables entire websites to be built using Swift, and supports themes, plugins and tons of other powerful customization options.
Blazingly fast terminal recorder that generates animated gif images for the web written in rust.
Spin is a framework for building and running event-driven microservice applications with WebAssembly (Wasm) components.
Spin is the open source developer tool for building and running serverless applications powered by WebAssembly.
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
IAM Least Privilege Policy Generator.
Policy Sentry is an AWS IAM Least Privilege Policy Generator, auditor, and analysis database. It compiles database tables based on the AWS IAM Documentation on Actions, Resources, and Condition Keys and leverages that data to create least-privilege IAM policies.
Basic protection against HTML smuggling attempts.
SmuggleShield is an experimental browser extension that aims to prevent basic HTML smuggling attacks by detecting common patterns. While this is not a comprehensive or bulletproof solution, it is an attempt to provide an additional layer of security during browsing. The project is still in the testing phase!
Automate Your Audit Reports with AuditForge.
AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.
Save time, increase efficiency, and maintain data confidentiality with our open-source auditing software.
Graphic Walker is a different open-source alternative to Tableau. It allows data scientists to analyze data and visualize patterns with simple drag-and-drop / natural language query operations.