security Tools — SoftwarePeeks

u2f-zero

github

U2F USB token optimized for physical security, affordability, and style

Security C

★ 2,450

wifipumpkin3

github

Powerful framework for rogue access point attack.

Security Python

★ 2,448

find-sec-bugs

github

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Security Java

★ 2,422

winscript

github

Open-source tool to build your Windows script from scratch. It includes debloat, privacy, performance & app installing scripts.

Analytics

★ 2,418

brutespray

github

Fast, multi-protocol credential brute-forcer. Parses Nmap, Nessus, and Nexpose output to automatically test default and custom credentials across 30+ protocols.

Security Go

★ 2,417

awesome-cloud-security

github

🛡️ Awesome Cloud Security Resources ⚔️

Cloud

★ 2,410

awesome-iot-hacks

github

A Collection of Hacks in IoT Space so that we can address them (hopefully).

Security

★ 2,408

Malcolm

github

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Security Python

★ 2,400

solo1

github

Solo 1 firmware in C

Security C

★ 2,377

cloudfox

github

Automating situational awareness for cloud penetration tests.

Cloud Go

★ 2,375

creepjs

github

Creepy device and browser fingerprinting

Security TypeScript

★ 2,361

agent-scan

github

Security scanner for AI agents, MCP servers and agent skills.

AI Tools Python

★ 2,343

secure

github

HTTP middleware for Go that facilitates some quick security wins.

Security Go

★ 2,342

noseyparker

github

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

Security Rust

★ 2,333

boofuzz

github

A fork and successor of the Sulley Fuzzing Framework

Security Python

★ 2,328

SSH-Snake

github

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

Security Shell

★ 2,322

caido

github

🚀 Caido releases, wiki and roadmap

Security Shell

★ 2,320

stratus-red-team

github

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

Security Go

★ 2,310

awesome-embedded-and-iot-security

github

A curated list of awesome embedded and IoT security resources.

Security

★ 2,308

cargo-crev

github

A cryptographically verifiable code review system for the cargo (Rust) package manager.

Security Rust

★ 2,298

burpgpt

github

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

AI Tools Java

★ 2,290

tirith

github

Terminal security for developers and AI agents. Intercepts homograph URLs, pipe-to-shell, ANSI injection, obfuscated payloads, data exfiltration, and malicious AI skills/configs before they execute.

CLI Tools Rust

★ 2,288

accesscontrol

github

Role and Attribute based Access Control for Node.js

Security TypeScript

★ 2,283

android-inline-hook

github

:fire: ShadowHook is an Android inline hook library which supports thumb, arm32 and arm64.

Security C

★ 2,277