command-line
the team password manager.
gopass is a simple but powerful password manager for your terminal.
Open Source Intelligence Interface for Deep Web Scraping.
Darkdump is a OSINT interface for carrying out deep web investgations written in python in which it allows users to enter a search query in which darkdump provides the ability to scrape .onion sites relating to that query to try to extract emails, metadata, keywords, images, social media etc. Darkdump retrieves sites via Ahmia.fi and scrapes those .onion addresses when connected via the tor network.
Related contents:
🐍 CLI tool to analyze and report TODO comments in JavaScript and TypeScript Git repositories.
It collects and monitors TODO/FIXME comments in your code, allowing you to observe changes over time.
CLI to manage emails, based on email-lib.
Pimalaya is an ambitious project that aims to improve open-source tools related to Personal Information Management (as known as PIM) which includes emails, contacts, calendars, tasks and more.
Easy Go Containers. Build and deploy Go applications.
ko makes building Go container images easy, fast, and secure by default.
ko is a simple, fast container image builder for Go applications. It's ideal for use cases where your image contains a single Go application without any/many dependencies on the OS base image (e.g., no cgo, no OS package dependencies).
Dev Proxy is an API simulator that helps you effortlessly test your app beyond the happy path.
You test your app to make sure it works as intended. But what if the APIs you use fail? Will your app lose your customer's data? How do you test for this? Simulating API failures is hard. You end up writing code that you won't be shipping or worse: not testing at all. That's why we built Dev Proxy, to simulate API errors so that you can easily test your app without changing your code.
A Command-Line Utility to automatically backup Google Mail, Calendar & Contacts to local files.
This module automatically downloads your Google Mail, Contacts & Calendar to separate files. It'll sync only new Mails, Contacts & Events.
PermCheck is a little tool that checks if the files in a project have the executable bit set properly. It's available for PHP versions 5.6 and up (Version 1.0 goes back to PHP 5.3), and is very light on dependencies, so you should be able to add it to nearly any project.
the set and forget docker container manager/updater.
A lightweight bash script that automatically deploys and updates all of your docker containers run with 'docker run'. MacOS and Linux compatible. Can be scheduled with CRON to keep your docker run containers automatically up to date.
CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code.
Related contents:
🚀 Fast detection of composer dependency issues (unused dependencies, shadow dependencies, misplaced dependencies)
Command-line Git information tool.
Onefetch is a command-line Git information tool written in Rust that displays project information and code statistics for a local Git repository directly to your terminal. The tool is completely offline - no network access is required.
Easy and Repeatable Kubernetes Development.
Skaffold handles the workflow for building, pushing and deploying your application, allowing you to focus on what matters most: writing code.
Skaffold is a command line tool that facilitates continuous development for Kubernetes applications. You can iterate on your application source code locally then deploy to local or remote Kubernetes clusters. Skaffold handles the workflow for building, pushing and deploying your application. It also provides building blocks and describe customizations for a CI/CD pipeline.
Go library and CLIs for working with container registries.
LazyVim is a Neovim setup powered by 💤 lazy.nvim to make it easy to customize and extend your config.
Related contents:
Execute agentic workflows defined in simple YAML files.
COMandA is a command-line tool that enables the composition of Large Language Model (LLM) operations using a YAML-based Domain Specific Language (DSL). It simplifies the process of creating and managing agentic workflows composed of downloads, files, text, images, documents, multiple providers and multiple models.
A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.
A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
enum4linux-ng.py is a rewrite of Mark Lowe's (former Portcullis Labs now Cisco CX Security Labs) enum4linux.pl, a tool for enumerating information from Windows and Samba systems, aimed for security professionals and CTF players. The tool is mainly a wrapper around the Samba tools nmblookup, net, rpcclient and smbclient.
SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
This free tool audits the configuration of an SSH server or client and highlights the areas needing improvement.
Too many admins overlook SSH configuration when setting up new systems. Unfortunately, the defaults for many operating systems are optimized for compatibility, not security.
Cast All The Things allows you to send videos from many, many online sources (YouTube, Vimeo, and a few hundred others) to your Chromecast. It also allows you to cast local files or render websites.
🌠 Manage your shell commands.
Pueue is a command-line task management tool for sequential and parallel execution of long-running tasks.
A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.
kubectl plugin manager. 📦 Find and install kubectl plugins . Krew is the plugin manager for kubectl command-line tool.
Krew is a tool that makes it easy to use kubectl plugins. Krew helps you discover plugins, install and manage them on your machine. It is similar to tools like apt, dnf or brew. Today, over 200 kubectl plugins are available on Krew.
Related contents:
Manage your kubeconfig more easily.
List, switch, add, delete and more interactive operations to manage kubeconfig. It also supports kubeconfig management from cloud.
Converts a WordPress export file into Markdown files that are compatible with static site generators (Eleventy, Gatsby, Hugo, etc.).
Telling tales on you for leaking secrets!.
Squealer scans a git repository or filesystem for secrets that are being leaked deep within the commit history.
TwigStan is a static analyzer for Twig templates powered by PHPStan.
TwigStan uses Twig to compile templates to PHP code. It then optimizes the compiled PHP code slightly, allowing PHPStan to analyze it better. It then reports any errors back to the original template and line number.
Build terminal forms and prompts 🤷🏻♀️. A simple, powerful library for building interactive forms and prompts in the terminal.
huh? is easy to use in a standalone fashion, can be integrated into a Bubble Tea application, and contains a first-class accessible mode for screen readers.
ar-go-tools (Argot) is a collection of analysis tools for Go
Giving types to jq. JQ is a successful tool for json manipulation.
JQ has a problem though, it's errors are kind of hard to decipher. When you start creating some internal data as part of some larger transformation, it might be hard to pinpoint the source of an error. That is because JQ doesn't keep track of the input data flow, it merely interprets it. So, when jq has an error, it is local.
CLI tool to automate Podman image updates. Selective updates, optional notifications, and image pruning when done.
pg_activity is a top like application for PostgreSQL server activity
monitoring.
A command line tool to visualize Git history graphs in a comprehensible way, following different branching models.
A fast and powerful log viewer and processor that translates JSON or logfmt logs into a pretty human-readable format.
Related contents:
Better Project Templates.
Cookiecutter creates projects from cookiecutters (project templates), e.g. Python package projects from Python package templates.
eks-node-viewer is a tool for visualizing dynamic node usage within a cluster. It was originally developed as an internal tool at AWS for demonstrating consolidation with Karpenter. It displays the scheduled pod resource requests vs the allocatable capacity on the node. It does not look at the actual pod resource usage.
Television is a blazingly fast general purpose fuzzy finder TUI written in Rust.
It is inspired by the neovim telescope plugin and is designed to be fast, efficient, simple to use and easily extensible. It is built on top of tokio, ratatui and the nucleo matcher used by the helix editor.
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
GitDorker is a tool that utilizes the GitHub Search API and an extensive list of GitHub dorks that I've compiled from various sources to provide an overview of sensitive information stored on github given a search query.
The Primary purpose of GitDorker is to provide the user with a clean and tailored attack surface to begin harvesting sensitive information on GitHub. GitDorker can be used with additional tools such as GitRob or Trufflehog on interesting repos or users discovered from GitDorker to produce best results.
A multi-vault secret injection tool for safely injecting secrets into app environment.
Whispr (Pronounced as whisper) is a CLI tool to safely inject secrets from your favorite secret vault (Ex: AWS Secrets Manager, Azure Key Vault etc.) into your app's environment. This is very useful for enabling secure local software development.
PostgreSQL zero-downtime migrations made easy.
pgroll is an open source command-line tool that offers safe and reversible schema migrations for PostgreSQL by serving multiple schema versions simultaneously. It takes care of the complex migration operations to ensure that client applications continue working while the database schema is being updated. This includes ensuring changes are applied without locking the database, and that both old and new schema versions work simultaneously (even when breaking changes are being made!). This removes risks related to schema migrations, and greatly simplifies client application rollout, also allowing for instant rollbacks.
OSINT automation for hackers. A recursive internet scanner for hackers.
BEE·bot is a multipurpose scanner inspired by Spiderfoot, built to automate your Recon, Bug Bounties, and ASM!
node.js command-line interfaces made easy.
The complete solution for node.js command-line interfaces.
Develop, Run, Distribute, Discover, and Secure your Javascript Packages.
Related contents:
Blazingly fast terminal recorder that generates animated gif images for the web written in rust.
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
Automating situational awareness for cloud penetration tests.
CloudFox helps you gain situational awareness in unfamiliar cloud environments. It’s an open source command line tool created to help penetration testers and other offensive security professionals find exploitable attack paths in cloud infrastructure.
JavaScript to WASM compiler.
Jawsm (pronounced like "awesome") is a JavaScript to WebAssembly compiler written in Rust. It is similar to porffor in a way it also results in a standalone WASM binary that can be executed without an interpreter, but it takes a different implementation approach.
Security tool against dependency typosquatting attacks.
Twyn is a security tool that compares the name of your dependencies against a set of the most popular ones, in order to determine if there is any similarity between them, preventing you from using a potentially illegitimate one. In short, Twyn protects you against typosquatting attacks.
Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets .
sastsweep is a tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such as popularity and project size, enabling targeted vulnerability research. It automatically detects potential vulnerabilities using semgrep and provides a streamlined HTML report, allowing researchers to quickly drill down to the affected portion of the codebase.
A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies
Zebar is a tool for creating customizable and cross-platform taskbars, desktop widgets, and popups.
Publish packages as git tags.
- 🔧 Works with projects with build steps.
- 👯 Works with projects with multiple packages (monorepos).
- 🏎 Lightweight git tags (only the files needed are included).
the event driven initramfs infrastructure.
The dracut (the tool) is used to create an initramfs image by copying tools and files from an installed system and combining it with the dracut framework, usually found in /usr/lib/dracut/modules.d.
📦🚀 Fully automated version management and package publishing.
semantic-release automates the whole package release workflow including: determining the next version number, generating the release notes, and publishing the package.
🌈 React for interactive command-line apps. React for CLIs. Build and test your CLI output using components.
Ink provides the same component-based UI building experience that React offers in the browser, but for command-line apps. It uses Yoga to build Flexbox layouts in the terminal, so most CSS-like props are available in Ink as well. If you are already familiar with React, you already know Ink.
A TUI for managing *arr servers. Built with 🤎 in Rust.
Managarr is a TUI and CLI to help you manage your HTPC (Home Theater PC).
Manage your Observability Systems. Command Line utility for managing Grafana Resources.
Software engineers know how to version and deploy their resources. Tools like Git or CI enable reliable workflows that track changes, with meaningful review processes giving confidence in the expected outcomes. Now, with Grizzly, you can have all this with Grafana resources, dashboards, datasources and more.