Links
AddMonkey365 is an Open Source security tool that can be used to easily conduct not only Microsoft 365, but also Azure subscriptions and Microsoft Entra ID security configuration reviews without the significant overhead of learning tool APIs or complex admin panels from the start.
bpftune aims to provide lightweight, always-on auto-tuning of system behaviour. The key benefit it provides are
- by using BPF observability features, we can continuously monitor and adjust system behaviour.
- because we can observe system behaviour at a fine grain (rather than using coarse system-wide stats), we can tune at a finer grain too (individual socket policies, individual device policies etc).
Related contents:
sched_ext is a Linux kernel feature which enables implementing kernel thread schedulers in BPF and dynamically loading them. This repository contains various scheduler implementations and support utilities.
search config information for linux kernel modules.
Btrfs Assistant is a GUI management tool to make managing a Btrfs filesystem easier.
Mamba is a fast, robust, and cross-platform package manager. mamba is a reimplementation of the conda package manager in C++.
Data and AI reliability. Delivered.
Data breaks. Monte Carlo ensures your team is the first to know and solve with end-to-end data observability.
Blazor is a modern front-end web framework based on HTML, CSS, and C# that helps you build web apps faster. With Blazor, build web apps using reusable components that can be run from both the client and the server so that you can deliver great web experiences.
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
GitDorker is a tool that utilizes the GitHub Search API and an extensive list of GitHub dorks that I've compiled from various sources to provide an overview of sensitive information stored on github given a search query.
The Primary purpose of GitDorker is to provide the user with a clean and tailored attack surface to begin harvesting sensitive information on GitHub. GitDorker can be used with additional tools such as GitRob or Trufflehog on interesting repos or users discovered from GitDorker to produce best results.
HardenSysvol is an open-source tool developed by the HardenAD Community to complement Active Directory audit tools by analyzing GPOs and scripts on Sysvol folder. It is ready-to-use, easy to deploy, and requires no complex configurations (no elevated privileges or EDR deactivation needed).
Independent Privacy & Security Resources. The collaborative privacy advocacy community. Protect your data against global mass surveillance programs.
Privacy Guides is a socially motivated website that provides information for protecting your data security and privacy. Our mission is to inform the public about the value of digital privacy, and global government initiatives which aim to monitor your online activity. We are a non-profit collective operated entirely by volunteer team members and contributors. Our website is free of advertisements and not affiliated with any of the listed providers.
PHP Server with Async IO, Coroutines and Fibers (previously Swoole).
A Golang framework for web artisans. Tribute to Laravel.
Goravel is a web application framework with complete functions and excellent scalability. As a starting scaffolding to help Gopher quickly build their own applications.
Television is a blazingly fast general purpose fuzzy finder TUI written in Rust.
It is inspired by the neovim telescope plugin and is designed to be fast, efficient, simple to use and easily extensible. It is built on top of tokio, ratatui and the nucleo matcher used by the helix editor.
cloudless database for realtime apps.
Realtime database, runs anywhere. Install Fireproof in your front-end app or edge function, and sync data via any backend.
Add collaboration to any app with Fireproof. Access data from JavaScript servers and edge functions. Use live queries to update your UI automatically when the ledger changes. Connect realtime sync and those changes will sync between browsers and backend functions. Apps built this way are multi-player by default.
Source: Fireproof - une base de données moderne pour les applications Web @ Korben :fr:.
GoCrack is a management frontend for password cracking tools written in Go.
GoCrack provides APIs to manage password cracking tasks across supported cracking engines.
Tool for building Kubernetes attack paths.
KubeHound creates a graph of attack paths in a Kubernetes cluster, allowing you to identify direct and multi-hop routes an attacker is able to take, visually or through complex graph queries.
remove AV/EDR with physical access. tl;dr: unprivileged user -> Defender removal on physical machine.
With a precision of a brain surgeon wielding a chainsaw, nifo can obliterate most AV/EDR products from endpoints or servers running the worlds most popular operating system, even if they're BitLocker protected - if you have physical access to the device and it's not totally locked down (BIOS password + SecureBoot + Harddrive Password + No USB Boot).
Embed an SQLite database in your PostgreSQL table. AKA multitenancy has been solved.
eks-node-viewer is a tool for visualizing dynamic node usage within a cluster. It was originally developed as an internal tool at AWS for demonstrating consolidation with Karpenter. It displays the scheduled pod resource requests vs the allocatable capacity on the node. It does not look at the actual pod resource usage.
Cloud Development Framework.
The AWS Cloud Development Kit (AWS CDK) is an open-source software development framework to define cloud infrastructure in code and provision it through AWS CloudFormation.
It offers a high-level object-oriented abstraction to define AWS resources imperatively using the power of modern programming languages. Using the CDK’s library of infrastructure constructs, you can easily encapsulate AWS best practices in your infrastructure definition and share it without worrying about boilerplate logic.
Golang library for managing configuration data from environment variables.
Ultralytics YOLO11 is a cutting-edge, state-of-the-art (SOTA) model that builds upon the success of previous YOLO versions and introduces new features and improvements to further boost performance and flexibility. YOLO11 is designed to be fast, accurate, and easy to use, making it an excellent choice for a wide range of object detection and tracking, instance segmentation, image classification and pose estimation tasks.
Kahlan is a full-featured Unit & BDD test framework a la RSpec/JSpec which uses a describe-it syntax and moves testing in PHP one step forward.
An Operating System for Z80 computers, written in assembly
Zeal 8-bit OS is an operating system written entirely in Z80 assembly for Z80 computers. It has been designed around simplicity and portability. It is inspired by Linux and CP/M. It has the concept of drivers and disks while being ROM-able.
A Go test harness that starts an ephemeral PostgreSQL server.
Package postgrestest provides a test harness that starts an ephemeral PostgreSQL server. It is tested on macOS, Linux, and Windows. It can cut down the overhead of PostgreSQL in tests up to 90% compared to spinning up a postgres Docker container: starting a server with this package takes roughly 650 milliseconds and creating a database takes roughly 20 milliseconds.
PhishTool automatically retrieves all of the relevant metadata from a phishing email, providing you with the most comprehensive technical view of a phishing email possible. This combined with our OSINT and heuristic detection, makes PhishTool one seriously powerful tool.
Learn to Code by Creating Projects. A curated list of project tutorials for project-based learning.
Tutorials are great, but building projects is the best way to learn. Do project based learning and learn code the right way! ProjectLearn provides a curated list of project tutorials in which learners build an application from scratch. These are divided into different categories, namely, web development, mobile development, game development, machine learning, deep learning and artificial intelligence.
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Inspired by the awesome-* trend on GitHub. This is a collection of documents, presentations, videos, training materials, tools, services and general leadership that support the DevSecOps mission. These are the essential building blocks and tidbits that can help you to arrange for a DevSecOps experiment or to help you build out your own DevSecOps program.
A command line utility to display dependency tree of the installed Python packages.
pipdeptree is a command line utility for displaying the installed python packages in form of a dependency tree. It works for packages installed globally on a machine as well as in a virtualenv. Since pip freeze shows all dependencies as a flat list, finding out which are the top level packages and which packages do they depend on requires some effort. It's also tedious to resolve conflicting dependencies that could have been installed because older version of pip didn't have true dependency resolution1. pipdeptree can help here by identifying conflicting dependencies installed in the environment.
Query your python lists.
Leopards is a way to query list of dictionaries or objects as if you are filtering in DBMS. You can get dicts/objects that are matched by OR, AND or NOT or all of them. As you can see in the comparison they are much faster than Pandas.
OpenNext takes the Next.js build output and converts it into packages that can be deployed across a variety of environments. Natively OpenNext has support for AWS Lambda, and classic Node.js Server.
Related contents:
Open Adversary Exposure Validation Platform. Formerly OpenBAS (Open Breach and Attack Simulation Platform).
OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests.
Plus Codes are like street addresses for people or places that don’t have one. Instead of addresses with street names and numbers, Plus Codes are based on latitude and longitude, and displayed as numbers and letters. With a Plus Code, people can receive deliveries, access emergency and social services, or just help other people find them.
Drop in a screenshot and convert it to clean code (HTML/Tailwind/React/Vue).
A simple tool to convert screenshots, mockups and Figma designs into clean, functional code using AI.
Better Project Templates.
Cookiecutter creates projects from cookiecutters (project templates), e.g. Python package projects from Python package templates.
A fast and powerful log viewer and processor that translates JSON or logfmt logs into a pretty human-readable format.
A command line tool to visualize Git history graphs in a comprehensible way, following different branching models.
Willow Is a Practical, Open Source, Privacy-focused Platform for Voice Assistants and Other Applications. Open source, local, and self-hosted Amazon Echo/Google Home competitive Voice Assistant alternative.
Willow is an ESP IDF based project primarily targeting the ESP32-S3-BOX hardware family from Espressif. Our goal is to provide Amazon Echo/Google Home competitive performance, accuracy, cost and functionality with Home Assistant, openHAB and other platforms.
Enterprise Payment Solution.
Accept and process cards, wallets, and Local Payment Methods in a single, modern integration. Store customer and payment information to reduce friction at checkout.
Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.
Talisman is a tool that scans git changesets to ensure that potential secrets or sensitive information do not leave the developer's workstation. It validates the outgoing changeset for things that look suspicious - such as potential SSH keys, authorization tokens, private keys etc.
Cynefin® is at its heart a decision support framework, not a method or model. It is based on the principle of ‘bounded applicability’; there are few if any context-free solutions, but many valid context-specific ones.
At heart, ApiOpenStudio is a complete end-to-end, headless REST API solution.
Api Open Studio allows you to quickly create and manage APIs, using low-code. As a result, you can save important time and money by dedicating your resources on other tasks, while at the same time developing and maintaining complex data computations.
BSON, short for Binary JSON, is a binary-encoded serialization of JSON-like documents. Like JSON, BSON supports the embedding of documents and arrays within other documents and arrays. BSON also contains extensions that allow representation of data types that are not part of the JSON spec. For example, BSON has a Date type and a BinData type.
PostgreSQL log analyzer.
pgBadger is a PostgreSQL log analyzer built for speed with fully detailed reports and professional rendering.
PostgreSQL Remote Control.
temBoard is a powerful management tool for PostgreSQL. It allows to observe, optimize, or configure PostgreSQL instances.
pg_activity is a top like application for PostgreSQL server activity
monitoring.
PoWA is a PostgreSQL Workload Analyzer that gathers performance stats and provides real-time charts and graphs to help monitor and tune your PostgreSQL servers.
Open Source Project Management Software.
Goal driven Project Management ...because adulting is hard enough already. Made for non-project managers and ADHD, Dyslexia, and Autism.
Leantime is an open source project management system for non-project manager. We combine strategy, planning and executing while making it easy for everyone on the team to use. Building with ADHD, dyslexia and autism in mind. It's an alternative to ClickUp, Monday, or Asana. As simple as Trello but as feature-rich as Jira.
A modern web app for Jellyfin users, offering a beautiful interface to enhance your music library and tracking new releases from artists in your collection with optional Discord notifications.
I Know Where Your Cat Lives iknowwhereyourcatlives.com is a data experiment that locates a sample of 7 million public images of cats on a world map using the geocoordinates users unknowingly embedded in their metadata. The cats were accessed via publicly available APIs provided by popular photo sharing websites. The photos were then run through various clustering algorithms using a supercomputer in order to represent the enormity of the data source.
Collecto is a open-source, self-hosted, lightweight, email collection service. It allows to add forms to static web sites. The form content are sent by email on submit.
Stream web content through your Jellyfin instance.
Broadcastarr is a service that allows you to broadcast media content retrieved from web pages.
⚡ Lightweight Firebase alternative built to run anywhere.
Experience the power of a lightweight, feature-rich backend that seamlessly integrates into your framework of choice. Start building smarter today.
bknd simplifies app development by providing fully functional backend for data management, authentication, workflows and media. Since it's lightweight and built on Web Standards, it can be deployed nearly anywhere, including running inside your framework of choice. No more deploying multiple separate services!
The Functional Source License (FSL) is a mostly permissive non-compete license that converts to Apache 2.0 or MIT after two years. It is designed for SaaS companies that value both user freedom and developer sustainability. FSL provides everything a developer needs to use and learn from your software without harmful free-riding.
A self-hosted dashboard that puts all your feeds in one place.
Generate JWT Secrets Online
Quickly generate secure JWT secrets with a single click.
FediFetcher is a tool for Mastodon that automatically fetches missing replies and posts from other fediverse instances, and adds them to your own Mastodon instance.
a transparent toot fetcher.
Mastodon often fails to show up-to-date context and information on posts from remote instances. This addon does that properly.