knowledge-base
What a good website does.
A platform-agnostic specification of the technical features every decent website should have — from <title> to /.well-known/security.txt, from WCAG contrast to llms.txt. Written for humans and agents.
Start building your knowledge graph. Everything You Know, Connected.
Open source. Self-hosted. Your data stays yours.
A personal knowledge base that turns markdown notes into a semantically-connected, AI-augmented knowledge graph.
Atomic stores knowledge as atoms — markdown notes that are automatically chunked, embedded, tagged, and linked by semantic similarity. Your atoms can be synthesized into wiki articles, explored on a spatial canvas, and queried through an agentic chat interface.
A collection of principles and patterns that shape software systems, teams, and decisions.
The MITRE Fight Fraud Framework™ (F3) is a curated knowledge base of tactics and techniques used by financial fraud actors, derived from real-world observations of cyber fraud incidents. The framework includes behaviors that characterize known fraud TTPs and references existing MITRE ATT&CK® cyber techniques as applicable to financial fraud. F3 provides a common structure and taxonomy to consistently describe and enumerate the material events of a cyber fraud incident, enabling stronger collaboration on fraud prevention, detection, and response across organizational teams. The knowledge base is globally accessible, open, and available at no charge to any person or organization.
Related contents:
A lightweight self-hosted capture layer for links, notes, screenshots and files across your devices.
Most tools focus on organizing information. DropMind focuses on capturing it instantly, from anywhere.
Make Your Agents: Smarter, Low-Cost, Self-Evolving" -- Community.
Turn every task, trial, and triumph into shared intelligence with OpenSpace.
One Command to Evolve All Your AI Agents: OpenClaw, nanobot, Claude Code, Codex, Cursor and etc.
An open standard for shared agent learning. Agents persist, share, and query collective knowledge so they stop rediscovering the same failures independently.
cq is derived from colloquy (/ˈkɒl.ə.kwi/), a structured exchange of ideas where understanding emerges through dialogue rather than one-way output. It reflects a focus on reciprocal knowledge sharing; systems that improve through participation, not passive use. In radio, CQ is a general call ("any station, respond"), capturing the same model: open invitation, response, and collective signal built through interaction.
Related contents:
Get Better at Getting Better.
DORA is the largest and longest running research program of its kind, that seeks to understand the capabilities that drive software delivery and operations performance. DORA helps teams apply those capabilities, leading to better organizational performance.
Related contents:
A collaborative list of great resources about RESTful API architecture, development, test, and performance
Implementing Open Source Security Tooling into your CI/CD Pipeline
Securing your Continuous Integration and Continuous Deployment (CI/CD) pipeline is no longer optional—it’s essential. This guide is your go-to resource for building, implementing, and optimizing secure CI/CD workflows. Whether you’re a developer, DevOps engineer, or security professional, we provide information on the open-source tools and guidance you need to model security at every stage of your pipeline. From securing code and builds to monitoring post-deployment environments, our hub empowers teams to integrate security seamlessly into their workflows without sacrificing speed or agility. Explore, learn, and transform your CI/CD processes into a fortress of innovation and resilience.
Related contents:
Free Open-source Q&A Platform. Build a Knowledge Base with Apache Answer.
A Q&A platform software for teams at any scale. Whether it’s a community forum, help center, or knowledge management platform, you can always count on Answer.
News on data leaks in France
Rosetta Code is a programming chrestomathy site. The idea is to present solutions to the same task in as many different languages as possible, to demonstrate how languages are similar and different, and to aid a person with a grounding in one approach to a problem in learning another. Rosetta Code currently has 1,340 tasks, 399 draft tasks, and is aware of 986 languages, though we do not (and cannot) have solutions to every task in every language.
Related contents:
Open Source License Tool Platform. Choose the right license to protect your project.
Related contents:
A list of all the different methods I found to deploy Kubernetes.
A comprehensive list of ways to deploy Kubernetes, organized by deployment type.
A curated catalogue of agentic AI patterns — real‑world tricks, workflows, and mini‑architectures that help autonomous or semi‑autonomous AI agents get useful work done in production.
Related contents:
the free encyclopedia that anyone can edit.
Related contents:
Everything the WWW has around Internal Developer Platforms in one curated space. It helps you understand the why, how, what and who.
Related contents:
Exploring how to present Web platform features adoptability.
Baseline gives you clear information about which web platform features work across our core browser set today. When reading an article, or choosing a library for your project, if the features used are all part of Baseline, you can trust the level of browser compatibility. By aligning with Baseline, there should be fewer surprises when testing your site.
Related contents:
Vulnerabilities in modern computers leak passwords and sensitive data.
Meltdown and Spectre exploit critical vulnerabilities in modern processors. These hardware vulnerabilities allow programs to steal data which is currently processed on the computer. While programs are typically not permitted to read data from other programs, a malicious program can exploit Meltdown and Spectre to get hold of secrets stored in the memory of other running programs. This might include your passwords stored in a password manager or browser, your personal photos, emails, instant messages and even business-critical documents.
Offline Documentation Browser.
Zeal is an offline documentation browser for software developers.
Build Frontier RAG Apps. The open-source RAG platform: built-in citations, deep research, 22+ file formats, partitions, MCP server, and more.
Ground AI agents in your knowledge base, minimize hallucinations, and impress out of the box. Agentset is the open-source platform to build, evaluate, and ship production-ready RAG and agentic applications. It provides end-to-end tooling: ingestion, vector indexing, evaluation/benchmarks, chat playground, hosting, and a clean API with first-class developer experience.
Related contents:
Customizable AI Research & Knowledge Management Assistant. The AI Workspace Built for Teams. Connect any LLM to your internal knowledge sources and chat with it in real time alongside your team.
Open Source Alternative to NotebookLM / Perplexity, connected to external sources such as Search Engines, Slack, Linear, Jira, ClickUp, Confluence, Notion, YouTube, GitHub, Discord and more.
Claude Code + Obsidian Starter Kit.
Turn your Obsidian vault into an AI-powered second brain using Claude Code.
Related contents:
A Database for Your Mind.
One shared context across all your apps. Your transcripts inform your notes. Your notes guide your AI. Everything connects through a single folder of plain text and SQLite.
Epicenter is an ecosystem of open-source, local-first apps. Our eventual goal is to store all of your data—notes, transcripts, chat histories—in a single folder of plain text and SQLite. Every tool we build shares this memory. It's open, tweakable, and yours. Grep it, open it in Obsidian, host it wherever you like. The choice is yours.
A reference manual for people who design and build software.
The Global CVE (GCVE) allocation system is a new, decentralized approach to vulnerability identification and numbering, designed to improve flexibility, scalability, and autonomy for participating entities.
While remaining compatible with the traditional CVE system, GCVE introduces GCVE Numbering Authorities (GNAs). GNAs are independent entities that can allocate identifiers without relying on a centralised block distribution system or rigid policy enforcement.
Related contents:
The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, product names, and impact metrics.
Related contents:
A free (but better?) alternative to Obsidian Publish.
A no-brainer solution to turning your Obsidian PKM into a Zola site.
Malware sample exchange.
MalwareBazaar is a platform from abuse.ch and Spamhaus, dedicated to sharing malware samples with the infosec community, antivirus vendors, and threat intelligence providers. Upload malware samples and explore the database for valuable intelligence. Set alerts to track newly observed malware, use APIs to seamlessly push or pull signals, and automate bulk queries.
Related contents:
The Programming Language Repository.
Codigo is a site for discovering new and trending programming languages, finding and comparing languages, stay up-to-date on the latest news and changes, see code examples and more.
Codigo uses a combination of static data about languages that is maintained and open-contribution at GitHub, as well as dynamic data from user interactions and pulled from sources such as PyPL, TIOBE and blog feeds.
Awesome Docker Compose is your go-to hub for discovering and deploying over 700 popular self-hosted apps effortlessly. Docker Compose, a free and open-source tool, simplifies the process by automatically handling dependencies and services, allowing you to install your favorite apps without the usual hassle.
As per the NIS2 Directive, ENISA is mandated to develop and maintain the European vulnerability database.
Access to reliable and timely information about vulnerabilities affecting Information and Communication Technology (ICT) products and services contributes to an enhanced cybersecurity risk management. Sources of publicly available information about vulnerabilities are an important tool for users of these services, competent authorities, and the broader cybersecurity community. ENISA has established a European Vulnerability Database (EUVD) where entities, regardless of whether they fall within the scope of the NIS2 Directive, and their suppliers of network and information systems, as well as competent authorities, most notably CSIRTs, can voluntarily disclose and register publicly known vulnerabilities to allow users to take appropriate mitigating measures.
Bring projects, wikis, and teams together with AI. The AI workspace where you achieve more without losing control of your data.
Bring projects, wikis, and teams together with AI. AppFlowy is the AI collaborative workspace where you achieve more without losing control of your data. The leading open source Notion alternative.
Related contents:
A recipe website with no backstories, ads, or trackers.
An in-depth book and reference on building agentic systems like Claude Code. A deep-dive guide into architecture patterns for building responsive, reliable AI coding agents.
There's been a lot of asking about how Claude Code works under the hood. Usually, people see the prompts, but they don't see how it all comes together. This is that book. All of the systems, tools, and commands that go into building one of these.
A practical deep dive and code review into how to build a self-driving coding agent, execution engine, tools and commands. Rather than the prompts and AI engineering, this is the systems and design decisions that go into making agents that are real-time, self-corrective, and useful for productive work.
GitOps is Continuous Deployment for cloud native applications.
This site aggregates the essence of GitOps to help clear up the confusion about the topic.
Related contents:
This is the Kindle Modding wiki, an online resource which hopes to consolidate all Kindle Modding knowledge into a centralised resource.
The only cheat sheet you need. Unified access to the best community driven documentation repositories of the world.
Related contents:
Lidarr, Prowlarr, Radarr, Readarr, Sonarr, and Whisparr are collectively referred to as "*arr" or "*arrs". They are designed to automatically grab, sort, organize, and monitor your Music, Movie, E-Book, or TV Show collections for Lidarr, Radarr, Readarr, Sonarr, and Whisparr; and to manage your indexers and keep them in sync with the aforementioned apps for Prowlarr. This list aims to list all *arrs and things related to them
Hardware Hacking Wiki.
The goal of HardBreak (https://www.hardbreak.wiki/) is to collect knowledge about Hardware Hacking / IoT hacking in one place. There are many great blogs about Hardware Hacking, but it is a rather unpleasant experience to search through multiple blogs in different formats to find the information you need. HardBreak aims to organize all information in one accessible and easy-to-use platform.
We build software for everyone.
Free software is a global collaborative movement to build the world’s best software in a manner that respects the essential rights and freedoms of its users and authors — the freedom to use, study, improve, and share your software.
This repository is all about tips on ethical hacking and penetration testing!
A repo to conduct vulnerability enrichment.
The CISA Vulnrichment project is the public repository of CISA's enrichment of public CVE records through CISA's ADP (Authorized Data Publisher) container. In this phase of the project, CISA is assessing new and recent CVEs and adding key SSVC decision points. Once scored, some higher-risk CVEs will also receive enrichment of CWE and/or CVSS data points, where possible.
A wiki platform that doesn't require a computer science degree to maintain🚀
Inspired by documentation platforms like Docusaurus, Nextra, and Mintlify but meant to be simple with the solo maintainer or non-technical team in mind.
Telescope allows you to create a collaborative documentation that will be generated as a static site with an interactive graph to explore the content.
Find the documentation for all Kubernetes resources, properties, types, and examples.
Ce projet rassemble les trucs et astuces, bonnes pratiques et retours d'expérience des organisatrices et organisateurs de conférences. Après plusieurs années d'existence et d'événements enrichissants, nous avons souhaité centraliser ce savoir accumulé.
✨ Your best Front-End Tool ✨.
🗂 The Front-End Checklist Application is perfect for modern websites and meticulous developers!
The Front-End Checklist is an exhaustive list of all elements you need to have / to test before launching your website / HTML page to production.
Related contents:
This repo has all the resources you need to become an amazing data engineer!
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Inspired by the awesome-* trend on GitHub. This is a collection of documents, presentations, videos, training materials, tools, services and general leadership that support the DevSecOps mission. These are the essential building blocks and tidbits that can help you to arrange for a DevSecOps experiment or to help you build out your own DevSecOps program.
Independent Privacy & Security Resources. The collaborative privacy advocacy community. Protect your data against global mass surveillance programs.
Privacy Guides is a socially motivated website that provides information for protecting your data security and privacy. Our mission is to inform the public about the value of digital privacy, and global government initiatives which aim to monitor your online activity. We are a non-profit collective operated entirely by volunteer team members and contributors. Our website is free of advertisements and not affiliated with any of the listed providers.
search config information for linux kernel modules.
The one-stop station for app builders. UX, Growth, Design. All in one place. Understand why the best apps succeed. Save time on benchmark. Focus on product
Open source software is made by people just like you. Learn how to launch and grow your project.
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems.
Configure Windows-based systems for a variety of tasks.
I, Librarian is an online service that will organize your collection of PDF papers and office documents. It provides a lot of extra features for students and research groups both in industry and academia. It is a reference manager, PDF manager and organizer focused on private group collaboration.
A (somewhat opinionated) list of SQL tips and tricks that I've picked up over the years.
There's so much you can you do with SQL but I've focused on what I find most useful in my day-to-day work as a data analyst and what I wish I had known when I first started writing SQL.