# Digital Forensics and Memory Analysis > Search results for `digital forensics and memory analysis tools` on awesome-repositories.com. 113 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/digital-forensics-and-memory-analysis-tools **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/digital-forensics-and-memory-analysis-tools).** ## Results - [analysis-tools-dev/static-analysis](https://awesome-repositories.com/repository/analysis-tools-dev-static-analysis.md) (14,389 ⭐) — This project is a comprehensive, curated directory of static analysis, linting, and security scanning utilities. It serves as a central resource for developers to discover, compare, and select tools based on specific programming languages, licensing models, and integration requirements. The directory distinguishes itself by providing deep metadata for each listed utility, including community-driven popularity rankings, maintenance status, and deployment methods. By aggregating these tools into a single searchable index, it enables teams to identify solutions for enforcing coding standards, managing technical debt, and auditing software supply chain security. The collection covers a broad spectrum of analysis capabilities, ranging from automated code refactoring and structural transformation to formal verification and database schema analysis. It also includes resources for orchestrating multiple linters within development workflows, visualizing code metrics, and performing security compliance audits across diverse repositories. - [kubeshark/kubeshark](https://awesome-repositories.com/repository/kubeshark-kubeshark.md) (11,954 ⭐) — Kubeshark is a network observability platform designed for Kubernetes environments, functioning as an eBPF-powered engine for cluster-wide traffic analysis. It captures, indexes, and visualizes network activity and API calls directly from the kernel, providing deep visibility into service-to-service communication without requiring sidecar proxies or manual code instrumentation. The platform distinguishes itself through its ability to perform protocol-aware traffic dissection and user-space cryptographic hooking, which allows for the inspection of encrypted traffic and the reconstruction of application-layer protocols like HTTP, gRPC, and Kafka. It supports advanced diagnostic capabilities, including AI-driven troubleshooting, forensic analysis of network snapshots, and the correlation of infrastructure events with application-level traffic patterns. Beyond core monitoring, the system provides a comprehensive suite of tools for managing traffic data, including granular role-based access control, sensitive data redaction, and flexible storage options ranging from ephemeral local buffers to cloud-based object storage. It is built to operate in diverse environments, supporting air-gapped deployments and integrating with standard Kubernetes ingress resources for secure dashboard access. The project is managed via a command-line interface that facilitates deployment control, custom script execution, and the sharing of specific traffic analysis views through encoded search queries. - [jaykali/maskphish](https://awesome-repositories.com/repository/jaykali-maskphish.md) (3,020 ⭐) — Maskphish is a comprehensive security toolkit that integrates capabilities for digital forensics, network vulnerability scanning, open-source intelligence, penetration testing, and social engineering. It functions as a multi-purpose framework for automating reconnaissance and executing security audits across diverse network environments. The project features a specialized phishing and social engineering toolkit used for cloning websites, masking URLs, and deploying deceptive pages to capture user credentials. It also includes a remote access Trojan builder for generating platform-specific executables and mobile application packages to establish remote command sessions. The framework covers a broad surface of capabilities, including web application penetration testing, OSINT reconnaissance, memory and disk forensics, and wireless network auditing. It provides tools for payload generation, credential theft, and the automation of information gathering from public data sources. This project is implemented primarily as a shell-based application. - [hsnhk/computer-forensics](https://awesome-repositories.com/repository/hsnhk-computer-forensics.md) (0 ⭐) — Curated list of awesome free forensic analysis tools and resources. Computer Forensics Distributions Frameworks Memory Forensics Network Forensics Live Forensics IOC Scanner Imaging Windows Artifacts OS X Forensics Mobile Forensics Docker Forensics Picture Analysis Metadata Forensics… - [rshipp/awesome-malware-analysis](https://awesome-repositories.com/repository/rshipp-awesome-malware-analysis.md) (13,864 ⭐) — This project is a comprehensive, community-driven directory of open-source tools, datasets, and documentation for malware analysis and cybersecurity research. It serves as a centralized index for security professionals and researchers to locate resources for investigating, reverse engineering, and analyzing malicious software. The directory organizes information through a structured taxonomy, covering specialized domains such as memory forensics, network traffic inspection, and honeypot threat research. By aggregating links to external utilities and frameworks, it provides a platform-agnostic reference for identifying tools used in static analysis, dynamic sandboxing, and threat intelligence gathering. The repository is maintained as a collection of markdown files, facilitating version control and collaborative updates from the security community. This structure allows users to navigate complex technical categories efficiently to find the specific debuggers, disassemblers, and forensic utilities required for incident investigation. - [memorilabs/memori](https://awesome-repositories.com/repository/memorilabs-memori.md) (15,358 ⭐) — Memori is an AI agent memory middleware platform designed to provide persistent, context-aware recall for language models. It functions as a non-intrusive layer that intercepts outbound model requests to automatically capture interaction history and execution traces, ensuring that agents maintain continuity across sessions without requiring modifications to existing application logic. The platform distinguishes itself through a dual-model storage architecture that maintains information as both structured relational primitives for precise fact retrieval and rolling narrative summaries for situational awareness. By utilizing a hybrid semantic retrieval engine, it combines vector-based similarity search with traditional keyword matching to surface relevant historical context. To ensure performance remains unaffected during high-concurrency workloads, the system offloads embedding generation and knowledge graph construction to asynchronous background tasks. The project provides a comprehensive suite of tools for managing agent state, including multi-tenant isolation to secure data across different users and processes. It features a schema-agnostic database abstraction layer that supports various relational and document-oriented storage backends, allowing for flexible data persistence. Additionally, the platform includes observability features such as graphical relationship visualization and performance monitoring to help developers inspect and refine how agents store and utilize historical information. - [carpedm20/awesome-hacking](https://awesome-repositories.com/repository/carpedm20-awesome-hacking.md) (15,722 ⭐) — This project is a comprehensive, community-curated directory of cybersecurity resources, tools, and educational materials. It functions as a centralized index for researchers and students to discover frameworks and utilities across the entire security lifecycle, ranging from initial vulnerability assessment to post-exploitation analysis. The repository distinguishes itself through a hierarchical taxonomy that organizes diverse security disciplines into a searchable, version-controlled knowledge base. Rather than hosting software directly, it utilizes a decentralized aggregation model that links to external platforms, training environments, and specialized toolkits, ensuring the index remains current through community-driven contributions. The collection covers a broad spectrum of security domains, including automated vulnerability scanning, network traffic analysis, and digital forensics. It also provides access to specialized resources for binary reverse engineering, penetration testing training, and competitive platforms such as capture-the-flag events and bug bounty programs. All information is maintained in a lightweight, markdown-based format, allowing for rapid navigation and reference within the repository. - [lc044/wechatmsg](https://awesome-repositories.com/repository/lc044-wechatmsg.md) (41,658 ⭐) — WeChatMsg is a database forensic parser and local data processor designed to extract and reconstruct structured message data from raw binary files. By operating entirely on the host machine, the tool ensures data sovereignty and privacy, performing all decryption and transformation tasks without requiring network access or external dependencies. The project distinguishes itself through a static analysis-based extraction method that reconstructs message threads by matching unique identifiers and timestamps across fragmented database tables. Its decoupled architecture separates low-level binary reading from high-level data formatting, utilizing a schema-driven engine to translate proprietary records into human-readable formats. This approach allows for consistent data migration and preservation across different software versions. Beyond its core utility, the repository includes a comprehensive governance framework and engineering standards. These documents establish operational principles and technical guidelines to maintain codebase quality and facilitate collaborative stewardship among contributors. - [soufianetahiri/digital-forensics-incident-response](https://awesome-repositories.com/repository/soufianetahiri-digital-forensics-incident-response.md) (0 ⭐) — Digital Forensics and Incident Response - [anthropics/claude-code](https://awesome-repositories.com/repository/anthropics-claude-code.md) (132,728 ⭐) — Anthropic's terminal-native AI coding agent. - [withsecurelabs/chainsaw](https://awesome-repositories.com/repository/withsecurelabs-chainsaw.md) (3,446 ⭐) — Chainsaw is a Windows forensic analysis tool used for parsing system databases and extracting security artefacts. It functions as a forensic artefact extractor and a scanner for identifying security threats and log tampering within Windows event logs. The project distinguishes itself by implementing a Sigma rule forensic scanner that applies standardized detection logic and custom rule sets to event logs and forensic artefacts. It enables threat hunting workflows by matching event data against patterns to identify malicious activity, lateral movement, and brute force attacks. The tool's capabilities include event log triage using regular expressions, execution timeline reconstruction through the correlation of shimcache and amcache data, and the parsing of system resource usage databases. It further provides forensic data search utilities and the ability to export raw binary artefacts into structured JSON formats for external analysis. - [mvt-project/mvt](https://awesome-repositories.com/repository/mvt-project-mvt.md) (12,481 ⭐) — This project is a command-line forensic toolkit designed for the investigation and security auditing of mobile devices. It provides a framework for collecting system logs, application data, and forensic artifacts to identify potential security breaches, unauthorized access, or evidence of malicious activity. The utility employs a modular extraction architecture that parses diverse file formats and system logs into a standardized, normalized data structure. By utilizing this unified format, the tool performs both heuristic analysis of system metadata and pattern matching against structured threat intelligence databases to detect indicators of compromise and targeted spyware infections. The software functions as an automated forensic pipeline, orchestrating the sequential collection, processing, and scanning of device data. It is intended for use in incident response and security auditing workflows where verifying the integrity of mobile operating systems against known threat patterns is required. - [google-gemini/gemini-cli](https://awesome-repositories.com/repository/google-gemini-gemini-cli.md) (105,341 ⭐) — This project provides a command-line interface for managing autonomous agent workflows, task orchestration, and system-level automation. It includes a comprehensive framework for defining agent skills, managing persistent memory, and delegating tasks to specialized subagents. Users can configure complex planning modes, execute shell commands with safety constraints, and integrate external tools through standardized protocols. The platform supports non-interactive execution via a headless mode and provides an event-driven hook framework for custom lifecycle automation. It features centralized configuration for model routing, system prompts, and cost management, alongside a modular extension system for adding custom commands and capabilities. The interface also includes diagnostic tools, file system management utilities, and repository-level automation for maintenance tasks. - [velocidex/velociraptor](https://awesome-repositories.com/repository/velocidex-velociraptor.md) (3,769 ⭐) — Velociraptor is a digital forensics and incident response platform, endpoint detection and response system, and visibility tool. It provides a query engine and remote forensic collector used to hunt for indicators of compromise and perform triage across a fleet of hosts. The system is distinguished by its specialized query language for interrogating host state and parsing binary files. It features a notebook environment that combines markdown documentation with executable query cells to standardize investigative workflows and enable collaborative reporting. The platform covers a wide range of capabilities including real-time kernel event streaming, remote filesystem browsing, and raw NTFS parsing for forensic evidence preservation. It includes an extensibility framework for importing community-defined artifacts and supports multi-tenant data isolation to separate evidence by organization. The project provides a command-line interface for artifact validation and execution, and it supports deploying persistent agents or standalone offline collectors. - [mikeroyal/digital-forensics-guide](https://awesome-repositories.com/repository/mikeroyal-digital-forensics-guide.md) (2,436 ⭐) - [cscorza/analisi-digital-forense](https://awesome-repositories.com/repository/cscorza-analisi-digital-forense.md) (0 ⭐) — INDICE - [z4nzu/hackingtool](https://awesome-repositories.com/repository/z4nzu-hackingtool.md) (77,515 ⭐) — This project is a comprehensive cybersecurity tool collection designed to support security research, penetration testing, and vulnerability assessment. It functions as a unified penetration testing suite, providing a centralized environment where professionals can access a wide range of offensive security utilities to identify system weaknesses and study attack vectors. The platform distinguishes itself through a modular architecture that aggregates disparate security scripts into a single, hierarchical command-line interface. It simplifies the management of these utilities by integrating external repositories, allowing users to fetch and organize third-party tools directly into a structured local directory. By utilizing a categorized menu system and shell-based process execution, the suite enables efficient navigation and direct invocation of specialized tools for tasks ranging from forensic analysis and reverse engineering to exploit development. The toolkit covers a broad spectrum of security domains, including web and wireless attack vectors, cloud security, payload creation, and social media analysis. It also incorporates automated environment setup to handle the installation of necessary system packages and language runtimes, ensuring compatibility across its diverse collection of utilities. - [lissy93/personal-security-checklist](https://awesome-repositories.com/repository/lissy93-personal-security-checklist.md) (21,691 ⭐) — This project provides a comprehensive, modular framework for auditing and hardening personal digital and physical security. It functions as a structured, platform-agnostic knowledge base that breaks down complex security standards into granular, actionable tasks. By utilizing a static documentation architecture, the project ensures that its guidance remains accessible and transparent, allowing users to track their security posture incrementally through a persistent, manual progress-tracking system. The project distinguishes itself by bridging the gap between digital cybersecurity and physical threat mitigation. Beyond standard account and network hardening, it offers specialized guidance on physical countermeasures, such as electromagnetic signal shielding, hardware sensor obfuscation, and the use of physical security hardware to prevent unauthorized data access. It also emphasizes privacy-centric alternatives to mainstream platforms, curating directories of software and decentralized services designed to minimize digital footprints and data harvesting. The scope of the guidance covers a wide range of domains, including digital identity protection, secure communication practices, and the auditing of mobile, web, and smart home environments. It provides systematic methodologies for managing cryptographic assets, enforcing multi-factor authentication, and sanitizing media metadata to prevent tracking. The repository serves as a centralized resource for ongoing security education, offering curated tool directories and threat intelligence to help users maintain a proactive defense against evolving surveillance and security risks. - [redaelli/imago-forensics](https://awesome-repositories.com/repository/redaelli-imago-forensics.md) (0 ⭐) — Imago is a python tool that extract digital evidences from images recursively. This tool is useful throughout a digital forensic investigation. If you need to extract digital evidences and you have a lot of images, through this tool you will be able to compare them easily. Imago allows to… - [keikoproj/kube-forensics](https://awesome-repositories.com/repository/keikoproj-kube-forensics.md) (232 ⭐) — kube-forensics allows a cluster administrator to dump the current state of a running pod and all its containers so that security professionals can perform off-line forensic analysis. - [avelino/awesome-go](https://awesome-repositories.com/repository/avelino-awesome-go.md) (175,576 ⭐) — This project serves as a comprehensive language ecosystem index, functioning as a centralized, community-curated directory for the Go programming language. It organizes a vast landscape of software components, libraries, and development tools into a structured, navigable hierarchy, enabling developers to efficiently discover resources tailored to specific functional domains. The repository distinguishes itself through a decentralized contribution model, where community-driven updates ensure the index remains current with the rapidly evolving software landscape. Beyond simple resource listing, it acts as a technical knowledge repository, aggregating professional literature, style guides, and best practices to support developer onboarding and professional growth across the entire software development lifecycle. The directory covers a broad capability surface, including essential utilities for distributed systems engineering, application security, data processing, and development productivity. It provides access to specialized tools for database management, web framework integration, testing, and build automation, alongside educational materials that help developers master language-specific architectural patterns. The project is maintained as a static resource aggregation, providing a holistic view of external links and documentation to orient developers within the Go ecosystem. - [ottermind/chat2db](https://awesome-repositories.com/repository/ottermind-chat2db.md) (25,784 ⭐) — Chat2DB is an AI-powered SQL client and multi-database GUI manager designed for managing various relational and NoSQL database systems. It serves as a visual database management tool and a natural language to SQL interface, allowing users to convert plain text descriptions into executable and optimized queries. The platform distinguishes itself through automated business intelligence capabilities, which include the generation of real-time data visualization dashboards and AI-driven data analysis from spreadsheets. To ensure data privacy, it supports secure local AI deployment, enabling large language models to run on-premises so that sensitive metadata is not uploaded to external servers. Broadly, the project covers database administration, visual schema design with entity-relationship diagramming, and data management utilities such as migration assistants and synthetic test data generation. It also provides team collaboration features, including role-based access control and workspace synchronization. The software supports flexible deployment as either a standalone local desktop application or a centralized web-based server. - [bee-san/ciphey](https://awesome-repositories.com/repository/bee-san-ciphey.md) (21,454 ⭐) — Ciphey is an automated decryption and data obfuscation tool designed to identify and reverse complex, multi-layered encoding schemes. By utilizing statistical analysis and probability scoring, the system automatically detects unknown data formats and recovers human-readable plaintext from obfuscated input strings without requiring manual algorithm specification. The tool distinguishes itself through a recursive pipeline that processes nested data structures and strips formatting anomalies or invisible characters to ensure consistent input. It employs a heuristic search and multithreaded execution engine to evaluate multiple decryption paths concurrently, prioritizing those with the highest statistical likelihood of success to resolve obfuscated content efficiently. Beyond core decryption, the system provides capabilities for cybersecurity incident analysis and forensic examination of suspicious payloads. It includes features for identifying specific data types such as API keys or network addresses, enforcing execution timeouts to maintain predictable performance, and distinguishing valid text from random noise. The software is distributed as a command-line utility for integration into automated data processing workflows. - [exakat/php-static-analysis-tools](https://awesome-repositories.com/repository/exakat-php-static-analysis-tools.md) (2,879 ⭐) — A reviewed list of useful PHP static analysis tools - [bmad-code-org/bmad-method](https://awesome-repositories.com/repository/bmad-code-org-bmad-method.md) (49,528 ⭐) — BMAD-METHOD is a multi-agent orchestration framework designed to automate the entire software development lifecycle. It functions as a programmable engine that coordinates autonomous agents to handle complex tasks, ranging from initial requirement elicitation and project planning to code generation and system maintenance. By embedding architectural constraints into a central context file, the system ensures that all automated actions remain aligned with project goals and organizational standards. The platform distinguishes itself through an adversarial review process, where a dual-agent system generates and critiques content to ensure robustness before finalization. It employs a multi-layer configuration model that allows teams to override global defaults with environment-specific settings, ensuring consistent execution across distributed workflows. Furthermore, the framework integrates evidence-based hypothesis testing to perform forensic debugging, systematically isolating root causes of system failures through rigorous verification. Beyond its core orchestration capabilities, the project provides a structured methodology for collaborative governance and problem-solving. It supports the execution of modular workflow recipes, automated code fixes, and milestone validation to maintain project integrity throughout the development process. The system is designed for integration into scripted environments, supporting automated installation and the bundling of project assets for streamlined deployment. - [sleuthkit/autopsy](https://awesome-repositories.com/repository/sleuthkit-autopsy.md) (3,015 ⭐) — Autopsy is a digital forensic analysis platform and evidence management suite used to process disk images and file systems. It provides a graphical interface for performing deep forensic examinations of computer hard drives to identify and extract digital artifacts for investigations. The platform is built as a Java-based forensic framework that integrates native libraries to perform direct disk image analysis. It utilizes a modular architecture, allowing for the extension of data ingestion and report generation through the use of plugins. The system manages digital evidence within a centralized workspace, organizing forensic metadata and analysis results across multiple case files. It covers broad capability areas including digital evidence management, forensic tool customization, and the automation of data workflows. - [analysis-tools-dev/dynamic-analysis](https://awesome-repositories.com/repository/analysis-tools-dev-dynamic-analysis.md) (0 ⭐) - [dominicbreuker/stego-toolkit](https://awesome-repositories.com/repository/dominicbreuker-stego-toolkit.md) (2,636 ⭐) — This project is a steganography analysis toolkit and digital forensics suite designed to detect, extract, and embed hidden data within image and audio files. It provides a dockerized security environment that bundles various analysis tools into a containerized workspace, including a media spectrogram visualizer for revealing visually hidden patterns. The toolkit features a dedicated brute force system for recovering password-protected messages using automated wordlists and candidate password testing. It distinguishes itself by providing rule-based wordlist generation that uses expansion patterns and scraping to assist in the recovery of encrypted secrets. The software covers a broad range of capabilities including statistical analysis, metadata inspection, and file carving to identify anomalies. It includes automated screening utilities to run batch analysis against specific file types and supports data embedding using encryption algorithms and passphrases. The environment is deployed as a container with integrated SSH and VNC services for remote management and utilizes volume-mapped workspaces to process local host directories. - [johnng007/live-forensicator](https://awesome-repositories.com/repository/johnng007-live-forensicator.md) (0 ⭐) — Cross-platform Incident Response & Live Forensics Toolkit Windows (PowerShell) | Linux (Bash) | macOS (Shell) - [flutter/flutter](https://awesome-repositories.com/repository/flutter-flutter.md) (177,056 ⭐) — This project is a multi-platform UI framework designed for building applications that target mobile, web, and desktop environments from a single codebase. It utilizes a declarative paradigm where the user interface is defined as a function of application state, supported by a layered architecture that includes a high-performance rendering engine and a multi-platform compilation model. The framework provides a comprehensive suite of developer tools, including hot reloading for real-time code injection and diagnostic utilities for monitoring application state and performance. It features a modular component system, a constraint-based layout engine, and built-in support for navigation, localization, and accessibility. Developers can extend functionality through a native integration model that supports platform-specific APIs, foreign function interfaces, and a package management system for dependency distribution. Beyond core UI development, the project includes infrastructure for application packaging and distribution across various app stores and web environments. It also incorporates concurrency models for background task management, security utilities for code obfuscation, and tools for integrating generative AI into the development workflow. - [open-circle/valibot](https://awesome-repositories.com/repository/open-circle-valibot.md) (8,769 ⭐) — Valibot is a modular, type-safe schema library for validating and parsing structural data in TypeScript environments. - [jekil/awesome-hacking](https://awesome-repositories.com/repository/jekil-awesome-hacking.md) (3,746 ⭐) — This project is a curated, version-controlled directory of software and resources designed for cybersecurity professionals and researchers. It functions as a centralized knowledge base that aggregates and organizes external security utilities into a structured taxonomy to facilitate discovery and access for specialized research and testing tasks. The repository distinguishes itself through a community-driven model where external resource locations are verified and maintained by contributors. By leveraging a distributed version control system, the project ensures the historical integrity and consistency of its collection, allowing users to track changes and updates to the indexed toolsets over time. The directory covers a broad spectrum of security domains, including penetration testing, digital forensics, network analysis, and threat intelligence gathering. It provides access to frameworks and utilities for tasks such as vulnerability scanning, password auditing, automated software fuzzing, and the deployment of decoy systems. Additionally, the project includes resources for managing competitive security challenges and infrastructure orchestration. - [foonathan/memory](https://awesome-repositories.com/repository/foonathan-memory.md) (1,610 ⭐) — STL compatible C++ memory allocator library using a new RawAllocator concept that is similar to an Allocator but easier to use and write. - [lethal-forensics/memprocfs-analyzer](https://awesome-repositories.com/repository/lethal-forensics-memprocfs-analyzer.md) (0 ⭐) — MemProcFS-Analyzer.ps1 is a PowerShell script utilized to simplify the usage of MemProcFS and to optimize your memory analysis workflow. - [crewaiinc/crewai](https://awesome-repositories.com/repository/crewaiinc-crewai.md) (53,687 ⭐) — CrewAI is a multi-agent orchestration framework designed for building autonomous systems that execute complex, multi-step workflows. It provides a development platform where specialized agents are defined with specific roles, goals, and tool sets to perform tasks collaboratively. By leveraging a declarative workflow engine, the system manages task dependencies, state transitions, and execution logic, allowing for the creation of structured, stateful sequences of operations. The framework distinguishes itself through its hierarchical management capabilities, which utilize manager agents to coordinate specialist teams, delegate tasks, and oversee project execution. It incorporates a persistent memory architecture that enables agents to retain context and perform semantic searches across long-running operations. Furthermore, the system supports robust production-ready applications by enforcing schema-based output validation and providing execution checkpointing, which allows for mid-flight resumption and the replaying of specific tasks to debug or refine processes. Beyond its core orchestration, the project offers a comprehensive suite of developer utilities for managing agent performance and workflow reliability. This includes tools for training agents through iterative cycles, monitoring system events via a central execution bus, and visualizing workflow structures. The platform also features a provider-agnostic interface for integrating external APIs and utilities, ensuring that agents can interact with diverse real-world services while maintaining consistent data structures throughout the execution lifecycle. - [sbilly/awesome-security](https://awesome-repositories.com/repository/sbilly-awesome-security.md) (14,022 ⭐) — This project is a comprehensive, curated directory of cybersecurity resources, software, and documentation designed to support system and network protection. It serves as a centralized knowledge base and index for security professionals, aggregating industry-standard practices and open-source tools across a wide range of technical domains. The repository distinguishes itself by providing a structured collection of methodologies and frameworks for security operations. It covers critical areas including threat intelligence, digital forensics, infrastructure auditing, and vulnerability assessment management. By organizing these materials, the project assists in the discovery and implementation of solutions for network monitoring, incident response, and the maintenance of consistent security configurations across diverse environments. - [apsdehal/awesome-ctf](https://awesome-repositories.com/repository/apsdehal-awesome-ctf.md) (11,614 ⭐) — This project is a comprehensive directory of software utilities, frameworks, and educational resources designed for cybersecurity competitions and offensive security research. It serves as a centralized index for tools used in cryptography, forensics, reverse engineering, and web exploitation, while providing structured materials for training and skill development. The repository distinguishes itself through a community-driven maintenance model that aggregates and organizes technical resources into a searchable, hierarchical structure. It facilitates knowledge transfer by cataloging expert problem-solving methodologies and writeups, enabling users to discover specialized toolchains and infrastructure configurations for both participating in and hosting competitive hacking events. Beyond its role as a directory, the project covers a broad capability surface including the deployment of isolated lab environments and the configuration of automated systems for security research. It provides access to frameworks for vulnerability analysis, credential testing, and the orchestration of simulated attack scenarios. The collection is maintained as an open-source resource, allowing for collaborative updates to ensure the relevance of its indexed tools and documentation. - [awesome-selfhosted/awesome-selfhosted](https://awesome-repositories.com/repository/awesome-selfhosted-awesome-selfhosted.md) (299,516 ⭐) — This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It distinguishes itself through a collaborative peer-review process, where community members validate the quality and relevance of each submission to ensure the directory remains accurate and reliable. The project covers a broad capability surface, including infrastructure automation, container-based service deployment, and declarative configuration management. These tools assist users in maintaining reproducible server environments and managing complex service dependencies across private hardware. The directory is maintained as a version-controlled repository, ensuring that all updates and community-driven changes are tracked and transparent. - [payloadcms/payload](https://awesome-repositories.com/repository/payloadcms-payload.md) (43,053 ⭐) — Payload is a headless content management system and application framework that uses a code-first approach to define data schemas and administrative interfaces. By utilizing a centralized, type-safe configuration object, it automatically generates database schemas, API endpoints, and a fully customizable admin panel. The system is built on a database-agnostic architecture, allowing it to interface with various storage engines while providing a unified, type-safe API for server-side operations, REST, and GraphQL. What distinguishes Payload is its deep extensibility and developer-centric design. It allows for the injection of custom React components, views, and widgets directly into the administrative interface, enabling tailored content-authoring workflows. The platform features a robust hook-based lifecycle system for executing custom logic, a comprehensive access control framework for granular field-level security, and a plugin-based architecture that supports complex features like ecommerce, multi-tenancy, and background job processing. The system provides a broad capability surface, including built-in support for versioned document state management, internationalization, and automated database migrations. It also includes a rich text editor framework that supports custom blocks and markdown conversion, alongside tools for live content previews and media management with various cloud storage adapters. Payload is designed for TypeScript-native development, automatically generating interfaces from the database schema to ensure type safety across the entire project. The system is configured through a single, fully-typed JavaScript object, and it supports deployment in production environments with features like database-less builds and security hardening. - [sromku/memory-game](https://awesome-repositories.com/repository/sromku-memory-game.md) (597 ⭐) — Simple and beautiful memory game for kids - [alessandroz/lazagne](https://awesome-repositories.com/repository/alessandroz-lazagne.md) (10,867 ⭐) — LaZagne is a cross-platform credential recovery tool designed to extract passwords and secrets from operating systems, browsers, and applications. It functions as a security utility for retrieving stored credentials from compromised systems during penetration testing. The tool provides capabilities for decrypting domain credentials and extracting sensitive data from system storage, including memory dumps, credential managers, keychains, and password hashes. It recovers stored passwords from common software by accessing plaintext files, APIs, and local databases. The project supports digital forensic analysis and security auditing by gathering recovered credentials and exporting them into structured text or JSON formats for external storage and analysis. - [rohitg00/agentmemory](https://awesome-repositories.com/repository/rohitg00-agentmemory.md) (23,785 ⭐) — AgentMemory is a persistent knowledge store and memory server designed to provide AI coding agents with long-term memory. It functions as a knowledge graph engine and vector database store that saves and recalls project context, architectural decisions, and patterns across different sessions. The system distinguishes itself by using a tiered-memory consolidation pipeline that compresses raw observations into episodic, semantic, and procedural layers to optimize token usage. It employs a hybrid retrieval strategy combining keyword matching, vector embeddings, and graph traversal to surface relevant historical context. The project covers a broad range of capabilities including automated project observation via lifecycle hooks, multi-agent coordination through shared synchronized memory pools, and local-first vector storage for data privacy. It also provides an interface for the Model Context Protocol to expose memory tools to compatible agents. The system includes a command-line interface for server runtime management and environment bootstrapping. - [pulsejet/memories](https://awesome-repositories.com/repository/pulsejet-memories.md) (3,697 ⭐) — Memories is a self-hosted photo and video management system designed for organizing, indexing, and sharing media libraries from a private server. It functions as an AI-powered media organizer that uses artificial intelligence for face recognition and object tagging to automatically categorize large collections. The system distinguishes itself through deep metadata integration and specialized processing, featuring a geographic photo viewer that plots media on a map using GPS data and reverse geocoding. It also includes a self-hosted video transcoder that converts files into adaptive HLS streams using hardware acceleration for optimized web playback. The platform covers broad capability areas including chronological timeline browsing and EXIF metadata editing for maintaining library accuracy. It provides tools for mobile media synchronization, batch selection, and secure external sharing for users without accounts. The system supports the import of existing media collections and the migration of external metadata into image and video files. - [mastra-ai/mastra](https://awesome-repositories.com/repository/mastra-ai-mastra.md) (21,221 ⭐) — Mastra is an orchestration framework designed for building, deploying, and managing autonomous AI agents and multi-agent systems. It provides a comprehensive suite of primitives for creating resilient AI applications, including durable workflow orchestration, event-driven agent loops, and semantic memory management. By integrating these core components, the platform enables developers to build complex, multi-step processes that can reason about goals and execute tasks without manual intervention. The framework distinguishes itself through its focus on observability and secure, isolated execution. It features a built-in telemetry pipeline that captures structured execution traces, logs, and performance metrics, allowing for real-time debugging and evaluation of agent behavior. Furthermore, it utilizes sandboxed environments to isolate code execution and filesystem operations, ensuring that agent interactions remain secure and reproducible. Mastra covers a broad capability surface, including multi-agent delegation hierarchies, schema-validated tool execution, and real-time voice interaction. It supports advanced orchestration patterns such as human-in-the-loop approvals, persistent state management for long-running workflows, and retrieval-augmented generation using vector-based semantic memory. These features are designed to work together to support the entire lifecycle of AI-powered applications, from initial development and testing to production deployment. The project is built for TypeScript environments and provides a modular architecture that integrates with existing web stacks and infrastructure. It includes a client SDK for interacting with remote agents and supports various authentication providers to secure API endpoints and agent resources. - [remiflavien1/awesome-anti-forensic](https://awesome-repositories.com/repository/remiflavien1-awesome-anti-forensic.md) (1,009 ⭐) — Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in general that makes changes to a system for the purposes of hiding information. - [radare/radare2](https://awesome-repositories.com/repository/radare-radare2.md) (24,129 ⭐) — radare2 is a reverse engineering framework and binary analysis toolset. It functions as a multi-architecture disassembler, low-level binary debugger, and hexadecimal editor for inspecting executable structures and interpreting machine code when original source files are unavailable. The framework provides capabilities for decompiling machine instructions, performing symbolic analysis, and diffing binary files to identify structural changes across versions. It also includes a digital forensic analyzer and disk analyzer for browsing filesystem formats in userland. The toolset supports binary patching, malware analysis, and software vulnerability research. It features a plugin-based architecture to extend core functionality and an embedded scripting engine to automate analysis workflows. - [rocky-linux/rocky](https://awesome-repositories.com/repository/rocky-linux-rocky.md) (9,497 ⭐) — Rocky is an open-source enterprise operating system designed for server and cloud infrastructure. It is a community-maintained Linux server distribution that provides a platform focused on stability and security. The project is fundamentally a Red Hat Enterprise Linux compatible operating system, maintaining bug-for-bug binary compatibility to ensure identical software behavior. This allows it to serve as an enterprise-grade platform without proprietary licensing. The distribution covers a broad range of system administration capabilities, including package management via modular repository streams, system hardening through strict access controls, and the management of logical volumes and file systems. It also supports the deployment of containerized servers and the orchestration of infrastructure using agentless automation engines and declarative state configurations. Administrative tasks can be performed through a variety of tools, including image-based automated installation media, unit-based service management, and the execution of shell scripts for repetitive system jobs. - [spiderlabs/malware-analysis](https://awesome-repositories.com/repository/spiderlabs-malware-analysis.md) (254 ⭐) — A repository of tools and scripts related to malware analysis - [xaoyaoo/pywxdump](https://awesome-repositories.com/repository/xaoyaoo-pywxdump.md) (9,714 ⭐) — PyWxDump is a data recovery and export utility designed to extract, decrypt, and convert proprietary mobile messaging databases into readable formats for archival and recovery. It specifically functions as a tool to read and parse encrypted SQLite databases used by WeChat to retrieve chat history and user data. The project focuses on the preservation of conversation history and the forensic recovery of application data for archival or legal purposes. It enables the conversion of proprietary message stores into portable, open formats to prevent data loss from account deletion or device migration. The tool's capabilities include AES-cipher decryption based on device and account identifiers, protocol-buffer parsing for binary data, and the mapping of relational database structures into JSON or CSV files. It utilizes memory-mapped file access to handle large encrypted databases during the extraction process. - [jivoi/awesome-osint](https://awesome-repositories.com/repository/jivoi-awesome-osint.md) (26,831 ⭐) — This project is a comprehensive, community-curated directory of resources and methodologies for open-source intelligence gathering. It serves as a centralized reference framework for researchers, providing a structured index of specialized tools, databases, and search techniques used to collect and analyze publicly available information from across the global internet. The directory distinguishes itself through a hierarchical taxonomy that organizes complex investigative domains, ranging from cyber threat intelligence and digital forensic investigation to geospatial analysis and operational security. By leveraging a crowdsourced model, the repository ensures that its collection of investigative tools remains current, with a distributed network of contributors validating links and maintaining the integrity of the resource list. The project covers a broad capability surface, including advanced search operators, reverse image lookup, social network analysis, and domain infrastructure research. It also provides guidance on privacy-focused browsing and anonymity protection to support sensitive research workflows. The entire knowledge base is maintained as a version-controlled markdown repository, offering a portable and searchable index for professionals and researchers conducting deep web investigations or fact-checking tasks.