This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

NIST Certified SCAP 1.2 toolkit

A tool to recover a fully analyzable .ELF from a raw kernel, through extracting the kernel symbol table (kallsyms)

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Context7 MCP Server -- Up-to-date code documentation for LLMs and AI code editors

Lightweight Native Local Dev Toolbox for Windows, macOS & Linux. Run Apache/Nginx/Caddy/Tomcat/PHP/Node.js/Bun/Deno/Python/Java/Go/Ruby/Perl/Rust/Erlang/MySQL/PostgreSQL/MariaDB/MongoDB/Redis/Rabbi…

Awesome EDR Bypass Resources For Ethical Hacking

Useful Google Dorks for WebSecurity and Bug Bounty

内网资产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破（SSH、SMB、MsSQL等）、Socks代理，一键自动化+无文件落地扫描

🚀 Fast Port Scanner 🚀

A theme for obsidian.md

High performance self-hosted photo and video management solution.

Run OpenClaw, (formerly Moltbot, formerly Clawdbot) on Cloudflare Workers

Speedy probe-based UDP service scanner

mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse

A Conversational Speech Generation Model

Accept URLs on stdin, replace all query string values with a user-supplied value

A next-generation crawling and spidering framework.

SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files

「🔑」A tool used to hunt down API key leaks in JS files and pages

JumpServer is an open-source Privileged Access Management (PAM) platform that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints…

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

linikatz is a tool to attack AD on UNIX

Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.

🔎 Static code analysis engine to find security issues in code.

SoTA open-source TTS

Soprano: Instant, Ultra-Realistic Text-to-Speech

A text-to-speech (TTS), speech-to-text (STT) and speech-to-speech (STS) library built on Apple's MLX framework, providing efficient speech analysis on Apple Silicon.