Python

PEDA is a Python extension for GDB that enhances debugging with colorized displays and specialized commands for exploit development and binary security analysis.

An open source honeypot for NoSQL databases with support for Redis and additional features for detecting attackers and logging attack incidents.

FeatherDuster is a cryptanalysis tool that automatically identifies and exploits weaknesses in cryptographic systems by analyzing ciphertext files.

A scalable python framework for security research and development teams.

iOSForensic is a Python tool for forensic analysis on iOS devices, extracting files, logs, SQLite3 databases, and .plist files into XML.

AfterGlow Cloud is a Django-based web application that allows users to upload data and generate graph visualizations through a browser interface.

ChopShop is a MITRE framework that helps analysts create pynids-based decoders and detectors for identifying APT tradecraft in network traffic.

A robust Python implementation of TAXII Services with a friendly pythonic API.

Python-based client for IBM XForce Exchange with an improved version available.

Python script to parse macOS MRU plist files into human-friendly format

A Python script that performs security testing attacks against AWS Cognito services including account creation, user enumeration, and privilege escalation vulnerabilities.

A Python script for creating a cohesive and up-to-date penetration testing framework.

ssh-audit is a Python-based tool for auditing SSH server and client configurations to identify security weaknesses and ensure compliance with best practices.

House: A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

YETI is a proof-of-concept TAXII implementation that supports Inbox, Poll, and Discovery services for automated cyber threat intelligence indicator exchange.

A tool for fixing acquired .evt Windows Event Log files in digital forensics.

Yaramod is a library for parsing YARA rules into AST and building new YARA rulesets with C++ programming interface.

A network-triggered emergency tool that overwrites LUKS encryption headers with random data to prevent forced decryption in high-risk situations.

NoSQLMap is an open source Python tool that automates NoSQL injection attacks and exploits configuration weaknesses in NoSQL databases to disclose or clone data.

Strelka is a real-time, container-based file scanning system that performs file extraction and metadata collection at enterprise scale for threat hunting, detection, and incident response.

SHIVA: Spam Honeypot with Intelligent Virtual Analyzer for capturing and analyzing spam data.

CyBot is a free and open source threat intelligence chat bot with a community-driven plugin framework.

pcapfex is a forensic tool that extracts files from packet capture data by analyzing network traffic and identifying embedded file content.

ROPgadget is a cross-platform command-line tool that searches for ROP gadgets in binary files across multiple architectures to facilitate exploit development and ROP chain construction.