Scan for secrets in dangling commits on GitHub using GH Archive data.

This tool scans for secrets in dangling (dereferenced) commits on GitHub created by force push events. A force push occurs when developers overwrite commit history, which often contains mistakes, like hard-coded credentials. This project relies on archived force push event data in the GHArchive to identify the relevant commits.

Related contents:

• Guest Post: How I Scanned all of GitHub’s “Oops Commits” for Leaked Secrets @ Truffle Security.
• Comment un hacker a scanné tous les commits "oops" de GitHub et trouvé 25k$ de secrets @ Korben :fr:.

Reflect the web through AI.

Automatically rewrites the websites into markdown optimised for viewing in the terminal. Read intro blog post here This is a proof-of-concept, bugs are to be expected but feel free to raise an issue or pull request.

Related contents:

• Spegel - A Terminal Browser That Uses LLMs to Rewrite Webpages @ SimEdw's Blog.

AI-powered icon generation CLI for React Native & Expo developers. Generate stunning app icons in seconds using OpenAI's latest models.

Create stunning app icons in seconds using OpenAI's latest image generation models. Perfect for developers who want professional icons without the design hassle! 🎨

Simple way to access various statistics in git repository. Git quick statistics is a simple and efficient way to access various statistics in git repository.

Any git repository may contain tons of information about commits, contributors, and files. Extracting this information is not always trivial, mostly because there are a gadzillion options to a gadzillion git commands - I don't think there is a single person alive who knows them all. Probably not even Linus Torvalds himself :).

• GIT quick statistics @ GitHub.

Open Source Terminal SQLite Database Browser.

• ZeQL+ @ GitHub.

A safer way to run remote scripts.

Stop blindly piping to bash. vet lets you inspect remote scripts for changes, run them through a linter, and require your explicit approval before they can execute.

vet is a command-line tool that acts as a safety net for the risky curl | bash pattern. It lets you inspect, diff against previous versions, and lint remote scripts before asking for your explicit approval to execute. Promoting a safer, more transparent way to handle remote code execution.

• vet @ GitHub.

Use AI to transform your messy commit history into clean, logical commits that reviewers will love.

Git Smart Squash uses AI to automatically organize your changes into logical, well-structured commits in seconds.

Related contents:

• Lundi 30 Juin 2025 - #44 : un édito engagé et qui dénonce (parce que j'avais trop bu). @ RudeOps :fr:.

Kingfisher is a blazingly fast secret‑scanning and validation tool built in Rust. It combines Intel’s hardware‑accelerated Hyperscan regex engine with language‑aware parsing via Tree‑Sitter, and ships with hundreds of built‑in rules to detect, validate, and triage secrets before they ever reach production.

Related contents:

• MongoDB Launches an Open Source Real-Time Secret Scanner @ It's FOSS News.

This is a tool for routing Claude Code requests to different models, and you can customize any request.

Use Claude Code as the foundation for coding infrastructure, allowing you to decide how to interact with the model while enjoying updates from Anthropic.

A simple terminal dashboard for Kubernetes built with Rust.

• KDash @ GitHub.

Related contents:

• KDash : Dashboard Kubernetes en terminal @ DevSecOps :fr:.
• Newsletter du 02 Mars 2026 @ RudeOps :fr:.

Analyze Azure resources and identify whether they comply with Azure's best practices and recommendations.

Azure Quick Review (azqr) is a powerful command-line interface (CLI) tool that specializes in analyzing Azure resources to ensure compliance with Azure's best practices and recommendations. Its main objective is to offer users a comprehensive overview of their Azure resources, allowing them to easily identify any non-compliant configurations or areas for improvement.

• Azure Quick Review @ GitHub.

🦀 ⚡ kubectl port forward manager, with support for UDP and proxy connections through k8s clusters

A handy app for managing Kubernetes port forwarding on any platform. It makes things easier for teams.

kftray and kftui are independent, cross-platform applications. They help you set up and manage multiple port-forwarding settings easily. Both apps are part of the same open-source project and aim to make working with Kubernetes easier. kftray has a desktop interface, while kftui has a terminal interface, so you can choose the one that suits you best.

mbake is a Makefile formatter and linter. It only took 50 years!

An Interactive Menu for Proxmox VE Management.

ProxMenux is a management tool for Proxmox VE that simplifies system administration through an interactive menu, allowing you to execute commands and scripts with ease.

Related contents:

• Best Proxmox Tool You are Not Using Yet - Proxmenux! @ VirtualizationHowto's YouTube.
• ProxMenux Monitor: The New Proxmox Dashboard You Need to See @ VirtualizationHowto's YouTube.
• ProxMenux - Fini les 45 commandes pour gérer votre Proxmox @ Korben :fr:.

Real-time Claude Code usage monitor with predictions and warnings.

A beautiful real-time terminal monitoring tool for Claude AI token usage. Track your token consumption, burn rate, and get predictions about when you'll run out of tokens.

Run JavaScript Everywhere.

Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.

• Node.js @ GitHub.

Related contents:

• Performance and Stress Testing in Node.js @ AppSignal.
• Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript @ NodeSource.
• Modern Node.js Patterns for 2025 @ Ashwin's Blog.
• Everything You Need to Know About Node.js Type Stripping @ Marco's Blog.
• How we migrated our Rush.js monorepo to Node type stripping @ Calm.
• The Risks of NPM @ Jim's Blog.
• Episode #111: npm under siege (what to do about it) @ Changelog & Friends.
• Node.js Performance: Processing 14GB Files 78% Faster with Buffer Optimization @ Peter Mbanugo.
• The Myths (and Costs) of Running Node.js on Kubernetes @ Platformatic.
• 15 Recent Node.js Features that Replace Popular npm Packages @ The NodeSource Blog.
• Improving the trustworthiness of Javascript on the Web @ Cloudflare.
• Rethinking async loops in JavaScript @ Matt Smith.
• Node.js 20+ memory management in containers @ RedHat Developers.
• Node.js vs Deno vs Bun Performance Benchmarks @ RepoFlow.
• We cut Node.js' Memory in half @ Platformatic.
• Node.js worker threads are problematic, but they work great for us @ Inngest.

The CLI starter kit. A small, experimental library for batteries-included Cobra. applications.

🕵️‍♂️ TUI for sniffing network traffic using eBPF on Linux

A command line utility for creating image macro style memes.

Git-native dotfiles management that doesn't suck.

Lnk makes managing your dotfiles straightforward, no tedious setups, no complex configurations. Just tell Lnk what files you want tracked, and it’ll automatically move them into a tidy Git repository under ~/.config/lnk. It then creates clean, portable symlinks back to their original locations. Easy.

The AI Shell. AI enabled pair programmer for Claude, GPT, O Series, Grok, Deepseek, Gemini and 300+ models.

A comprehensive coding agent that integrates AI capabilities with your development environment.

• Forge @ GitHub.

Lefthook is a Git hooks manager. Fast and powerful Git hooks manager for any type of projects.

Alternative to lint-staged.

• Lefthook @ GitHub.

Keep your code spotless.

Spotless can format <A ntlr | c | c# | c++ | css | flow | graphql | groovy | html | java | javascript | json | jsx | kotlin | less | license headers | markdown | objective-c | protobuf | python | scala | scss | shell | sql | typeScript | vue | yaml | anything> using <gradle | maven | sbt | anything>.

A collection of reusable rules and knowledge documents for AI coding assistants like Claude Code and Cursor.

Pretty print your Ruby objects with style -- in full color and with proper indentation.

AmazingPrint is a fork of AwesomePrint, which became stale, and should be used in its place to avoid conflicts. It is a Ruby library that pretty prints Ruby objects in full color, exposing their internal structure with proper indentation. Rails ActiveRecord objects and usage within Rails templates are supported via included mixins.

Your unified cloud storages interface.

Sourcerer is a CLI-based cloud storage explorer that provides a unified interface for developers and DevOps engineers to view and manage files across multiple cloud providers like GCP Storage, Azure Storage, AWS S3, and S3-compatible services.

• Sourcerer @ GitHub.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management.

OWASP Nettacker project was created to automate information gathering, vulnerability scanning and in general to aid penetration testing engagements. Nettacker is able to run various scans using a variety of methods and generate scan reports(in HTML/TXT/JSON/CSV format) for applications and networks, including discovering open ports, services, bugs, vulnerabilities, misconfigurations, default credentials, subdomains, etc. Nettacker can be run as a command-line utility (including running as a Docker container), API, Web GUI mode or as Maltego transforms.

• OWASP Nettacker @ GitHub.

SpeculationControl is a PowerShell script that summarizes the state of configurable Windows mitigations for various speculative execution side channel vulnerabilities, such as CVE-2017-5715 (Spectre variant 2) and CVE-2017-5754 (Meltdown).

Related contents:

• SpeculationControl - Un module PowerShell anti-Spectre / Meltdown @ Korben :fr:.

🔌 Command-line reverse proxy for forwarding HTTP requests through an outbound proxy.

prxy is a command-line reverse proxy written in Go for forwarding HTTP requests through an outbound proxy, while automatically rewriting the Host header for you.

Related contents:

• Prxy - Reverse proxy WireGuard pour votre homelab @ Korben :fr:.

be-a11y is a Node.js-based CLI tool designed for automated evaluation and reporting of accessibility issues in HTML-based projects. It supports both local directory scanning and remote URL analysis to help developers identify common accessibility problems.

zizmor is a static analysis tool for GitHub Actions. It can find many common security issues in typical GitHub Actions CI/CD setups.

• zizmor @ GitHub.

Related contents:

• How to Harden GitHub Actions: The Unofficial Guide @ Wiz.
• How to detect vulnerable GitHub Actions at scale with Zizmor @ Grafana Labs Blog.

Task is a task runner / build tool that aims to be simpler and easier to use than, for example, GNU Make.

Since it's written in Go, Task is just a single binary and has no other dependencies, which means you don't need to mess with any complicated install setups just to use a build tool.

• Task @ GitHub.

Related contents:

• Task : une alternative simple à Makefile @ DevSecOps :fr:.

F2 is a cross-platform command-line tool for batch renaming files and directories quickly and safely. Written in Go!

• F2 @ GitHub.

A command-line vanity (public) key generator for WireGuard. By default, it only matches the prefix of generated public keys, and not whether the search matches anywhere in the public key. The concept is based on wireguard-vanity-address, however I wanted something a little more streamlined.

Related contents:

• WireGuard vanity keygen - Comment personnaliser vos clés VPN ? @ Korben :fr:.

container is a tool that you can use to create and run Linux containers as lightweight virtual machines on your Mac. It's written in Swift, and optimized for Apple silicon.

The tool consumes and produces OCI-compliant container images, so you can pull and run images from any standard container registry. You can push images that you build to those registries as well, and run the images in any other OCI-compliant application.

• container @ GitHub.

🔍 cli utility for querying the node_modules directory.

I often need to quickly check the versions of the modules installed in the node_modules directory. Current solutions like running npm list are slow and produce a lot of irrelevant output. Checking the version in the package.json file of the specific module requires more effort and doesn’t provide information about other instances of the same module.

qnm is a tool that solves this problem by providing fast and focused information about the installed modules. It supports both npm and yarn and allows you to quickly identify the versions of the modules you are interested in.

A more modern manual page viewer for our terminals.

Linux manual pages are lovely. They are concise, well-written, complete, and downright useful. However, the standard way of accessing them from the command-line hasn't changed since the early days.

Qman aims to change that. It's a modern, full-featured manual page viewer featuring hyperlinks, web browser like navigation, a table of contents for each page, incremental search, on-line help, and more. It also strives to be fast and tiny, so that it can be used everywhere. For this reason, it's been written in plain C and has only minimal dependencies.

ipdex is a simple CLI tool to gather insight about a list of IPs or an IP using the CrowdSec CTI (Cyber Threat Intelligence) API.

Related contents:

• IPDEX, ou comment devenir Sherlock Holmes de la cybermenace @ AukFood :fr:.

🏝️ A CLI tool to replace and automate your daily web browser. Browser's End-user Automation CLI Hub. Potentialize All Tasks Regarding Online Life.

Related contents:

• BeachPatrol - Le CLI qui contrôle votre navigateur @ Korben :fr:.

A Static Type Checker for Python.

• Pyrefly @ GitHub.

Related contents:

• Pyrefly vs. ty: Comparing Python’s Two New Rust-Based Type Checkers @ Edward Li's Blog.

Domain Name Threat Intelligence.

The openSquat is a tool for identifying domain look-alikes by searching for newly registered domains that might be impersonating legit domains and brands.

• openSquat @ GitHub.

git-spice is a tool for stacking Git branches. It lets you manage and navigate stacks of branches, conveniently modify and rebase them, and create GitHub Pull Requests or

GitLab Merge Requests from them.

It works with Git instead of trying to replace Git. Introduce it in small places in your existing workflow without changing how you work wholesale.

• git-spice @ GitHub.

Related contents:

• Boosting workflow velocity with git-spice @ Rippling Blog.
• Episode 134 @ Linux Dev Time.

Generate HTTP load and plot the results in real-time. A load testing tool capable of performing real-time analysis, inspired by vegeta and jplot.

ali comes with an embedded terminal-based UI where you can plot the metrics in real-time, so lets you perform real-time analysis on the terminal.

CLI for running large numbers of coding agents in parallel with git worktrees

• Uzi @ GitHub.

Related contents:

• LLM Codegen go Brrr – Parallelization with Git Worktrees and Tmux @ Nick Khami's Blog.

Tweety is an integrated terminal for the Web browser.

Related contents:

• The case for using a web browser as your terminal @ Pomdtr's blog.

Extract Receipt & Invoice Data. Lightweight, customizable and open source.

Related contents:

• AI Invoice Extractor - L'IA qui dévore vos factures pour vous épargner l'enfer de la compta @ Korben :fr:.

A CLI utility and Python library for interacting with Large Language Models.

A CLI tool and Python library for interacting with OpenAI, Anthropic’s Claude, Google’s Gemini, Meta’s Llama and dozens of other Large Language Models, both via remote APIs and with models that can be installed and run on your own machine.

• LLM @ GitHub.

Related contents:

• Large Language Models can run tools in your terminal with LLM 0.26 @ Simon Willison’s Weblog.
• Using AI Without Leaving the Terminal: A Guide to llm @ Ashwin's Blog.
• Evaluating LLMs for my personal use case @ Graham King.

Nova is a JavaScript (ECMAScript) and WebAssembly engine written in Rust and following data-oriented design principles. It is currently nothing more than a fun experiment to learn and to prove the viability of such an engine, but may very well become something much more in the future.

• Nova @ GitHub.

Distributed, offline-first bug tracker embedded in git.

git-bug is a standalone, distributed, offline-first issue management tool that embeds issues, comments, and more as objects in a git repository (not files!), enabling you to push and pull them to one or more remotes.

Related contents:

• Code Review Can Be Better @ TigerBeetle.
• Episode #107: Git with your friends (remastered) @ Changelog & Friends.

Trust Scores for GitHub Repositories.

CLI that detects fake-star campaigns, dependency hijacks, licence red-flags and other signs of repository risk. Inspired by the “4.5 million fake stars” study, StarGuard helps CTOs, security teams and investors perform fast, automated open-source due-diligence.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Related contents:

• Quand tu dois scanner tout un domaine… Mais que tu n’as pas toute la nuit @ Laurent Biagiotti's LinkedIn :fr:.

A Python SDK for interacting with the Claude CLI tool.

Passive hostname, domain and IP lookup tool for non-robots.

wtfis is a commandline tool that gathers information about a domain, FQDN or IP address using various OSINT services. Unlike other tools of its kind, it's built specifically for human consumption, providing results that are pretty (YMMV) and easy to read and understand.

A debugger for Linux. Partially inspired by RemedyBG.

Mom, can we have RAD Debugger on Linux? No, we have debugger at home. Debugger at home

Agentless Vulnerability Scanner for Linux/FreeBSD.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices.

• Vuls @ GitHub.

Safer python package installs with audit and consent 𝘣𝘦𝘧𝘰𝘳𝘦 install.

Pipask is a drop-in replacement for pip that performs security checks before installing a package. Unlike pip, which needs to download and execute code from source distribution first to get dependency metadata, pipask relies on metadata from PyPI whenever possible. If 3rd party code execution is necessary, pipask asks for consent first. The actual installation is handed over to pip if installation is approved.

Terminal Commands and File Editing for Claude.

This is MCP server for Claude that gives it terminal control, file system search and diff file editing capabilities.

• Desktop Commander MCP @ GitHub.

The best way of working with Protocol Buffers. Kafka and gRPC for the modern age.

Store directly to Apache Iceberg™ tables and guarantee data quality with Bufstream, a drop-in replacement for Apache Kafka® deployed entirely in your own VPC on AWS, GCP, or Azure.

The buf CLI is the best tool for working with Protocol Buffers. It provides:

• A linter that enforces good API design choices and structure.

• A breaking change detector that enforces compatibility at the source code or wire level.

• A generator that invokes your plugins based on configuration files.

• A formatter that formats your Protobuf files in accordance with industry standards.

• Integration with the Buf Schema Registry, including full dependency management.

• Buf @ GitHub.

Modern Zod-based CLI builder, fully type-safe, super lightweight and flexible.

AI-Powered, Non-Intrusive Terminal Assistant

TmuxAI is a non-intrusive terminal assistant that works alongside you in a tmux window. TmuxAI's design philosophy mirrors the way humans collaborate at the terminal. Just as a colleague sitting next to you, TmuxAI observes your screen, understand context from what's visible, and helps accordingly.

• TmuxAI @ GitHub.

The elegant bundler for libraries powered by Rolldown.

tsdown is The Elegant Library Bundler. Designed with simplicity and speed in mind, it provides a seamless and efficient way to bundle your TypeScript and JavaScript libraries. Whether you're building a small utility or a complex library, tsdown empowers you to focus on your code while it handles the bundling process with elegance.

• tsdown @ GitHub.