Python

NightShade is a Django-based capture the flag framework that enables organizations to create and manage cybersecurity competitions with support for multiple contest formats and multi-tenant architecture.

ElectricEye is a multi-cloud Python CLI tool that performs security posture management and attack surface monitoring across cloud service providers and SaaS platforms with over 1000 security checks mapped to 20+ compliance frameworks.

A suite of secret scanners built in Rust for performance.

A standalone Python script that audits system configurations against CIS Hardening Benchmarks to assess compliance readiness without requiring installation or dependencies.

Fast, smart, effective port scanner with extensive extendability and adaptive learning.

A program to extract IOCs from text files using regular expressions

PLASMA is an interactive disassembler that generates readable assembly code with colored syntax for reverse engineering binary files across multiple architectures and formats.

Margarita Shotgun is a Python tool that enables remote memory acquisition from target systems through command line interface, supporting Linux distributions and other operating systems via Docker containers.

A reverse engineering tool that extracts and organizes Samsung ODIN3 protocol messages from USB packet captures into human-readable files.

A command-line tool that visually displays YARA rule matches, regex matches, and hex patterns in binary data with colored output and configurable context bytes.

Pacu is an open-source AWS exploitation framework designed for offensive security testing against cloud environments through modular attack capabilities.

A Python-based tool for detecting XSS vulnerabilities

Python module for fast packet parsing with TCP/IP protocol definitions.

Repokid automatically removes unused service permissions from AWS IAM role inline policies using Access Advisor data to implement least privilege access.

A Python web application that provides statistical analysis and visualization for Glastopf honeypot data by connecting to the honeypot's SQLite database.

Modular framework for pentesting Modbus protocol with diagnostic and offensive features.

SMTP Honeypot with custom modules for different modes of operation.

A neo4j-based data management platform with command-line interface for analyzing cyber threat indicators and other data points through graph database traversal.

A Python-based honeypot service for SSH, FTP, and Telnet connections

A Python 3 tool for analyzing XOR-encrypted data that can guess key lengths and decrypt XOR ciphers based on character frequency analysis.

Standalone SIGMA-based detection tool for EVTX, Auditd, Sysmon for Linux, XML or JSONL/NDJSON Logs.

A utility that attempts to decrypt data from weak RSA public keys and recover private keys using multiple integer factorization algorithms.

PyIntelOwl is a Python SDK and CLI client for interacting with IntelOwl's threat intelligence API to submit files and observables for automated security analysis.

KLara is a distributed system written in Python that helps Threat Intelligence researchers hunt for new malware using Yara.