Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Just-In-Time Access is a self-service web application that lets you manage just-in-time privileged access to Google Cloud projects. JIT Access runs on App Engine and Cloud Run.

WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal.

The open source Firebase alternative.

Grist is the evolution of spreadsheets.

IAM Least Privilege Policy Generator

Known hosts blocklists that are made available to the users of AdGuard products

A JavaScript / TypeScript / Python / C# / PHP cryptocurrency trading API with support for more than 100 bitcoin/altcoin exchanges

AppFlowy is an open-source alternative to Notion. You are in charge of your data and customizations. Built with Flutter and Rust.

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

AWS Lambda Power Tuning is an open-source tool that can help you visualize and fine-tune the memory/power configuration of Lambda functions. It runs in your own AWS account - powered by AWS Step Fu…

A curated list of awesome Go frameworks, libraries and software

Scan for misconfigured S3 buckets across S3-compatible APIs!

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

A next-generation crawling and spidering framework.

💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readines…

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

Open Source, Community Driven, Documentation for Techno Tim YouTube Videos/ Complete with examples for all your copy pasta needs!

Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

efficient usenet downloader

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge.

The open-source observability platform everyone needs!

Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

Exports primitive and predefined GCP IAM Roles and their permissions

Run Amazon EKS on your own infrastructure 🚀