GitHub Trends

#yara#awesome_list#blueteam#blueteam_tools#cti#detection#detection_engineering#dfir#hacktools#incident_response#ioc#iocs#ir#ransomware#redteam#rmm#security#siem#soc#threat_hunting#threat_intelligence You can access comprehensive security detection lists and threat hunting resources that help identify malicious activity across your infrastructure. These curated collections include indicators like suspicious file hashes, domain names, IP addresses, and behavioral patterns organized by threat type—from ransomware and phishing to command-and-control servers and vulnerable drivers. By integrating these lists into your security tools like SIEM platforms and endpoint detection systems, you gain immediate visibility into known threats while learning detection methodologies through guides and YARA rules. This accelerates your ability to hunt for compromises, validate security controls, and stay current with emerging attack techniques without building detection logic from scratch. https://github.com/mthcht/awesome-lists

#go#bpf#cncf#cni#containers#ebpf#k8s#kernel#kubernetes#kubernetes_networking#loadbalancing#monitoring#networking#observability#security#troubleshooting#xdp Cilium is an eBPF-based tool for Kubernetes that delivers fast networking, deep visibility, and strong security. It creates simple Layer 3 networks across clusters, handles load balancing to replace kube-proxy, enforces identity-based policies from L3 to L7 (like HTTP or DNS rules), supports service mesh with encryption, and offers Hubble for real-time traffic monitoring. Stable versions like v1.18.6 run on AMD64/AArch64. You gain scalable performance, easier policy management without IP hassles, better troubleshooting, and higher efficiency for large cloud-native apps, cutting costs and boosting reliability. https://github.com/cilium/cilium

#powershell#ai#bloatware#bloatware_removal#copilot#debloat#generative_ai#image_creator#optimizer#powershell#privacy#recall#rewrite#security#windows This PowerShell script removes all AI features from Windows 11 (like Copilot, Recall, AI in Paint/Notepad/Edge), disables registry keys, deletes packages/files, prevents reinstalls, and offers classic app replacements with backup/revert options. Run it as admin via UI or commands for a cleaner system. You gain better privacy, security, faster performance, and no unwanted bloat—full control over your PC. https://github.com/zoicware/RemoveWindowsAI

#typescript#osint#privacy#security#security_tools#sysadmin Web-Check is a free, open-source tool that quickly scans any website to reveal IP info, SSL details, DNS records, security headers, open ports, tech stack, performance, trackers, carbon footprint, and more—helping spot vulnerabilities and attack risks. Try the live demo at web-check.as93.net or deploy it easily via Netlify, Vercel, or Docker. This benefits you by saving time on manual checks, letting you optimize, secure, and understand sites better for investigations, audits, or your own projects. https://github.com/Lissy93/web-check

#python#adb#agents#ai#android#appium#automation#dynamic_analysis#frida#magisk#mcp#mcp_server#mobile_security#pentesting#remote_control#reverse_engineering#security#uiautomation#uiautomator2#workflow#xposed FIRERPA is a powerful Android automation tool that runs on-device with root access, works on versions 6.0 to 16, and offers low-latency remote desktop, 160+ APIs, Python SDK, and AI integration for tasks like testing, data collection, and forensics. It needs no extra setup, stays stable for large-scale use, and beats other tools in compatibility. You benefit by automating mobile tasks quickly, saving time on development and monitoring, with easy visual control for reliable results. https://github.com/firerpa/lamda

#python#security#security_tools#vulnerability#vulnerability_databases#vulnerability_management#vulnerability_scanners OSV is a free, open-source database and toolset that helps you find and manage security vulnerabilities in open source software you use. It collects vulnerability data from many sources, including official advisories and automated scans, and presents it in a clear, machine-readable format. You can use the OSV scanner tool to automatically check your software dependencies for known security issues, helping you fix them quickly. This improves your software’s security by focusing on real risks and making vulnerability management easier and more efficient. OSV also offers APIs and integrates with other tools for automation and alerts. https://github.com/google/osv.dev

#typescript#actions#authentication#gcp#github_actions#google_cloud#google_cloud_platform#iam#identity#security You can securely connect GitHub Actions to Google Cloud using the Google GitHub Action called `auth`. It supports two main ways: the recommended Workload Identity Federation (WIF), which uses short-lived tokens and avoids long-lived service account keys, and the older Service Account Key JSON method. WIF improves security by creating a trust link between your GitHub workflow and Google Cloud without exposing permanent credentials. To use it, you set up a Workload Identity Pool and Provider in Google Cloud, then configure your GitHub workflow to authenticate with these. This lets your workflows access Google Cloud resources safely and easily, reducing risks and simplifying credential management. https://github.com/google-github-actions/auth

#python#bounty#bugbounty#bypass#cheatsheet#enumeration#hacking#hacktoberfest#methodology#payload#payloads#penetration_testing#pentest#privilege_escalation#redteam#security#vulnerability#web_application Payloads All The Things is a comprehensive collection of useful payloads and bypass techniques for web application security testing and penetration testing. It offers detailed documentation for each vulnerability, including how to exploit it and ready-to-use payloads, plus files for tools like Burp Intruder. You can contribute your own payloads or improvements, making it a collaborative resource. It also links to related projects for internal network and hardware pentesting, and provides learning resources like books and videos. Using this resource helps you efficiently find and test security weaknesses in web applications, improving your pentesting effectiveness and knowledge. https://github.com/swisskyrepo/PayloadsAllTheThings

#go#attacks_prevention#detection#linux#protection#security CrowdSec is an open-source security solution that helps protect servers from malicious IP addresses. It uses a community-driven approach, where users share information about threats they've faced, creating a shared blocklist to prevent attacks. CrowdSec's Security Engine can detect bad behaviors by analyzing logs and HTTP requests, and it supports multiple platforms. This system is fast, easy to use, and designed for modern infrastructures, making it a powerful tool for securing your systems against various threats. By using CrowdSec, you benefit from collective protection and can focus on real security issues. https://github.com/crowdsecurity/crowdsec

#typescript#ai#email#privacy#security Zero is an open-source email solution that lets you control your own email app. It uses AI to improve your email experience and focuses on data privacy, so your information is safe. You can self-host it, meaning you run it yourself, and it connects multiple email accounts like Gmail and Outlook. Zero also allows you to customize how your email looks and works. This gives you more control over your emails and helps keep your inbox organized without relying on big companies that might collect your data. https://github.com/Mail-0/Zero

#go#cloud#devsecops#k8s#kubernetes#mesh#mesh_network#network#networking#overlay_network#security#self_hosted#virtual_network#virtual_networking#vpn#vpn_server#wg_quick#wireguard#wireguard_ui#wireguard_vpn#zero_trust Netmaker is a powerful tool for creating and managing secure networks. It uses WireGuard to provide fast and secure connections, allowing you to connect devices anywhere in the world. With features like mesh VPNs and multi-network segmentation, you can organize your networks securely and efficiently. Netmaker also offers robust access controls and integration with OAuth for secure user management. This helps keep your network safe and compliant, making it ideal for businesses managing complex network setups. https://github.com/gravitl/netmaker