Fabian Affolter

A web interface for MQTT

Tool set for Information security professionals and all others

Ansible playbooks for Fedora

Fedora Security Lab - The Fedora Security Lab (FSL) provides a safe test environment to work on security auditing, forensics, system rescue and teaching security testing methodologies in universities and other organizations. This repository is a copy of the original development.

Alpine Linux - Ansible Contrib Repository

FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching security testing methodologies, testing tools, learning, and playing.

Create customized CentOS ISO images

A publisher for random MQTT messages to random topics.

Desktop notifications with Python DBus bindings if a MQTT message arrives

Nix Packages collection

Python based system jabber bot

Desktop notifications with libnotify if a MQTT message arrives

A Python client wrapper for the ZeroTier API

Simple script to create a bridge for wire-tapping

Provides a python interface to interact with a device running OpenWebIf

secator - the pentester's swiss knife

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm.

A Python module to bypass Cloudflare's anti-bot page.

The official gpt4free repository | various collection of powerful language models

ESPHome is a system to control your ESP8266/ESP32 by simple yet powerful configuration files and control them remotely through Home Automation systems.

The documentation for Netmaker, a WireGuard-based overlay network platform

Desktop notifications with zenity if a MQTT message arrives

A very simple tool to get data from serial ports

Software Engineering and Design - Group White

Active Directory Vulnerability Scanner

A super fast TUI IP and Port Scanner

Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, IPInfo, Shodan, AbuseIPDB, GreyNoise, URLScan.io, Whois/RDAP, NIST, and VulnCheck. Supports LLM enrichment, IOC extraction, YARA scanning, and Android analysis.

Attack surface management and recon — subdomain enumeration, port scanning, tech fingerprinting, hidden endpoints, cloud discovery

A simple tool to visualize the progress of the year based on the past days.

Free XP on bug bounty, vulnerability scanning by wrapping well maintained tools, to perform automated tests. Alongside AI agents for binary analysis, which includes connecting to external Android or emulator to perform dynamic analysis.

Radioboat is a terminal web radio client, built with simplicity in mind.

Web transport CLI similar to wscat or websocat

Helper file to create the so-called "Attack Surface Security Metrics" aka OSSTMM's RAV (Risk Assessment Value)

AFL bindings for Unicorn-Engine

A high-performance MikroTik Bandwidth Test (btest) server and client written in Rust. Fully compatible with MikroTik RouterOS devices. Supports TCP/UDP, IPv4/IPv6, EC-SRP5 and MD5 authentication, multi-connection mode, syslog logging, CSV output, and CPU monitoring. Single static binary, zero dependencies.

A high-performance automation tool designed to bridge the gap between technical web reconnaissance and executive reporting. Developed by **Adi Mahluf**. Sponsored by **Tenroot Cyber Security**.

Python bindings to Qt Advanced Docking System for PySide6

An advanced HTTP security vulnerability scanner that detects a wide range of web application vulnerabilities.

A simple Django app to render list filters in django admin using autocomplete widget.

VScanX: Production-grade ethical vulnerability scanner for web + network security testing. Features authenticated scanning (XSS, SQLi, headers, dir enum, CVE checks), structured logging, parallel execution, multi-format reporting (HTML/JSON/CSV/PDF), and CI-ready architecture. Built for DevSecOps workflows.

A collection of abbreviations for tex documents

No description.

Firebase Misconfiguration Detection Toolkit - To be presented at Blackhat EU Arsenal

NTLM authentication support for HTTPX.

SMTP user enumeration via VRFY, EXPN and RCPT with clever timeout, retry and reconnect functionality.

Secrets scanner that understands code

2025 Election for the Steering Committee

Add a small note to your GNOME panel.

Simple script to extract useful informations from the combo BloodHound + Neo4j

📘 Zigbee2mqtt documentation

Linux Runtime Security and Forensics using eBPF

Interfacing RDKit and AutoDock

Python lib to access Transport NSW information

Prometheus-based Kubernetes Resource Recommendations

KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).

A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target

Community curated list of template files for the nuclei engine

Armbian Linux Documentation

A Python client for Fixer.io

Generates permutations, alterations and mutations of subdomains and then resolves them

PassDetective is a command-line tool that scans shell command history to detect mistakenly written passwords, API keys, and secrets. Using regular expressions, it helps prevent accidental exposure of sensitive information in your command history.

NixOps Digitalocean plugin [maintainer=@Kiwi]

sslscan tests SSL/TLS enabled services to discover supported cipher suites

No description.

Async WebDriver implementation for asyncio and asyncio-compatible frameworks

Checks syntax of reStructuredText and code blocks nested within it

A Python based app that replicates the functionality of the existing TabCMD command line utility

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

The Panthera(P.)uncia of Cybersecurity - Official CLI utility for Subdomain Center & Exploit Observer.

OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.

A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.

A python script to extract information from a Microsoft Remote Desktop Web Access (RDWA) application

:hammer_and_wrench: :heart: Want to know NixOS & Flakes in detail? Looking for a beginner-friendly tutorial? Then you've come to the right place! 想要学习使用 NixOS 与 Flakes 吗？在寻找一份新手友好的教程？那你可来对地方了！

Python Library for interfacing into Tenable's platform APIs

Command line nmap XML parser

A Python Enum that inherits from str.

A simple tool to detect outdated shared libraries

No description.

A loose python wrapper around the ZoneMinder REST API

GuessIt is a python library that extracts as much information as possible from a video filename.

Config for the Community aarch64 NixOS box [maintainer=@grahamc]

Darwin build box for Nix community members

a small library for extracting rich content from urls

LDAP enumeration tool implemented in Python3

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A python tool to automate KeePass discovery and secret extraction.

No description.

aide source code

🤗 Evaluate: A library for easily evaluating machine learning models and datasets.

Repository of yara rules

Python API for interacting with a Pi-hole instance.

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Nuclei documentation

Find Microsoft Exchange instance for a given domain and identify the exact version

🐶 🕵️ Great Dane turned Python environment detective

Generates some simple graphs for a GitHub repo using pygithub

ESPHome Device Configurations Repository - A database of user submitted configurations for a variety of devices which can be flashed to run ESPHome.io firmware.

Erlik 2 - Vulnerable-Flask-App

A collection of awesome penetration testing resources, tools and other shiny things

Repository for the private-demo image

No description.

AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with kerberos.

CircuitPython - a Python implementation for teaching coding with microcontrollers

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

collection of one-shot scripts to install NixOS on various server hosters and other hardware. [maintainer=@happysalada]

Dot access dictionary with dynamic hierarchy creation and ordered iteration

CircuitPython sample code for various devices

No description.

The Sigma command line interface based on pySigma

Security Auditor Utility for GraphQL APIs

The Python CLI and API for talking to Meshtastic devices

UF2 bootloader based on TinyUSB for embedded devices such as ESP32S2, STM32F4 and iMX RT10xx

Customer-allocated USB PIDs under the Espressif VID

Source for esphome.io documentation files.

DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

CircuitPython's website

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

No description.

A Nmap XSL implementation with Bootstrap.

reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.

TinyDB is a lightweight document oriented database optimized for your happiness :)

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Simple GUI tool to flash ESPs over USB

A DNS reconnaissance tool for locating non-contiguous IP space.

Hass.io Add-on Repository for Development

Simple script to generate commands to achieve reverse shells.

The official website of the Rocky Linux Project.

Pure-Python Server Side Events (SSE) client

A python connector for WiZ light bulbs (e.g SLV Play)

A web frontend for controlling the home.

A fast SSH mass-scanner, login cracker and banner grabber tool using the python-masscan and shodan module.

nodejsscan is a static security code scanner for Node.js applications.

A pytest plugin for use with homeassistant custom components.

Python Client for ESPHome native API. Used by Home Assistant.

myStrom button Open Source

Mirror of aports repository

The source to create the stats at https://wiki.alpinelinux.org/wiki/Alpine_Linux:Trivia

Model-driven configuration management, multi-node deployment/orchestration, and remote task execution system. Uses SSH by default, so there is no special software has to be installed on the nodes you manage. Ansible can be extended in any language. Note: The default branch is the development branch which many people run directly from checkout, if you need a stable version, see the release-XX branches, tags, or ansible.cc/releases.

Network bootable operating system installer based on iPXE

Create your own custom menu for netboot.xyz

A utility library for mocking out the `requests` Python library.

Application Framework for Python

A library to fetch data about level, temperature and discharge of swiss water bodys.

A simple PHP shop system. If you are looking for a real shop, don't take this one...

Additional nmap scripts

Simulator for high rack warehouses