# SMB and LDAP Protocol Scanners > Search results for `enumerate and test SMB and LDAP services on a network` on awesome-repositories.com. 119 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/enumerate-and-test-smb-and-ldap-services-on-a-network **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/enumerate-and-test-smb-and-ldap-services-on-a-network).** ## Results - [infobyte/faraday](https://awesome-repositories.com/repository/infobyte-faraday.md) (6,523 ⭐) — Faraday is a vulnerability management platform and security tool aggregator designed to centralize security findings from multiple scanners into a single dashboard. It utilizes a relational security database to catalog hosts, services, and security flaws, enabling users to track remediation and analyze organizational risk. The platform distinguishes itself through a plugin-based system that normalizes diverse security tool outputs into a unified data model. It supports deep integration with a wide array of scanners and CLI tools, intercepting shell command output or parsing report files to aggregate findings. Additionally, it provides bidirectional synchronization with external ticketing systems via webhooks to maintain consistency between vulnerability states and remediation tasks. Broad capabilities include automated scan scheduling, role-based access control, and identity federation via SAML 2.0 and LDAP. The system also features template-driven report generation for executive and compliance documents, as well as a Model Context Protocol server to expose management data to AI assistants. The project is written in Python and integrates with PostgreSQL for data storage and Elasticsearch for high-performance querying. - [alistgo/alist](https://awesome-repositories.com/repository/alistgo-alist.md) (49,705 ⭐) — Alist is a unified cloud storage gateway that aggregates disparate remote storage providers into a single, navigable virtual file system. By acting as a remote file system proxy, it decouples file operations from specific provider implementations, allowing users to browse, download, and manage files across heterogeneous backends through a standardized interface. The platform utilizes a driver-based storage abstraction that translates generic file system operations into provider-specific API calls. This architecture supports a wide range of cloud storage services, S3-compatible object storage, and software release assets, presenting them as a cohesive directory structure. To ensure data privacy, the system includes an encrypted data vault that provides transparent, password-based obfuscation for file and directory names across remote platforms. The system operates as a stateless gateway, dynamically fetching metadata without maintaining persistent local copies of the underlying content. It employs a modular middleware layer to handle on-the-fly data transformations, such as the encryption and decryption of file metadata, while maintaining a consistent interaction model across all connected storage backends. - [swisskyrepo/payloadsallthethings](https://awesome-repositories.com/repository/swisskyrepo-payloadsallthethings.md) (78,434 ⭐) — This project is a comprehensive, community-sourced knowledge base designed for security professionals and researchers. It functions as a centralized repository of offensive security techniques, providing a structured collection of exploit payloads, attack vectors, and methodologies for conducting vulnerability assessments and penetration testing. The repository distinguishes itself through a cross-platform payload taxonomy that categorizes exploitation methods by vulnerability type and target environment, enabling rapid lookup during security assessments. It maintains high standards of data integrity and collaborative growth by utilizing version-controlled knowledge management and template-driven content generation, ensuring that the research remains current and consistent across a wide range of technical domains. The project covers a broad capability surface, including detailed references for web application security, database injection, insecure deserialization, and AI model security testing. It also aggregates external resources, such as research papers and third-party tools, to provide a holistic view of modern threat analysis and defensive research. The documentation is organized as a hierarchical tree of markdown files, designed for easy navigation and reference during active security engagements. - [sosdave/enumeration-as-a-service](https://awesome-repositories.com/repository/sosdave-enumeration-as-a-service.md) (0 ⭐) — Enumeration as a Service (eaas.py) in a script that queries the DNS server of a particular domain looking for indications that the domain may be utilizing SaaS offerings. This analysis is performed on TXT, CNAME, A and MX Records. Query results, as well as highlighted results of interest are… - [flet-dev/flet](https://awesome-repositories.com/repository/flet-dev-flet.md) (15,611 ⭐) — Flet is a cross-platform framework that enables developers to build interactive desktop, mobile, and web applications using only Python. By utilizing a declarative programming model, it allows for the construction of complex user interfaces through a hierarchical structure of components, removing the need for specialized knowledge of web-specific languages like HTML, CSS, or JavaScript. The framework distinguishes itself by offloading visual rendering to a high-performance graphics engine while maintaining application logic within a centralized server-side environment. This architecture synchronizes state and user interactions between the interface and the backend through a persistent connection, ensuring consistent behavior across different operating systems. The platform provides a comprehensive suite of tools for the entire software lifecycle, including native hardware access, automated build pipelines, and the ability to package applications into standalone executables. It supports flexible layout management, custom component creation, and integration with third-party identity providers, allowing for the development of feature-rich applications that function natively on desktop or within a web browser. - [brainspec/enumerize](https://awesome-repositories.com/repository/brainspec-enumerize.md) (1,763 ⭐) — Enumerated attributes with I18n and ActiveRecord/Mongoid support - [bee-san/rustscan](https://awesome-repositories.com/repository/bee-san-rustscan.md) (19,969 ⭐) — RustScan is a high-speed network reconnaissance tool designed for automated port discovery and service enumeration. It functions as an automated vulnerability scanner that identifies open ports and active services across network environments, providing a foundation for mapping attack surfaces and gathering intelligence on target systems. The tool distinguishes itself through its ability to dynamically adjust scanning parameters and concurrency in real-time based on system feedback, ensuring efficient performance while preventing network congestion. It features an extensible architecture that supports the execution of custom scripts and the automated piping of discovered data into external security utilities, including native integration with Nmap for deep service analysis. Beyond basic port discovery, the software supports payload-driven service probing to accurately classify network services and includes capabilities for UDP service identification. It is built as a cross-platform utility, utilizing a unified codebase to generate native binaries for multiple operating systems. - [thewhiteh4t/seeker](https://awesome-repositories.com/repository/thewhiteh4t-seeker.md) (9,598 ⭐) — Seeker is a social engineering location tool and browser geolocation capture system. It provides a framework for capturing precise GPS coordinates and device metadata by hosting deceptive webpages that prompt users for location permissions. The project includes an HTML phishing template engine for deploying custom or predefined website clones designed to trick users into granting sensitive permissions. It further utilizes a device fingerprinting tool to collect hardware specifications, operating system details, and screen resolution from visiting clients. The system incorporates network reconnaissance capabilities to determine public and local IP addresses. Captured device and location data can be forwarded to external endpoints via webhooks or delivered through Telegram bot notifications. The application is packaged as a containerized deployment to ensure consistent execution across different host systems. - [eclipse-theia/theia](https://awesome-repositories.com/repository/eclipse-theia-theia.md) (21,569 ⭐) — Theia is a modular framework designed for building professional-grade development environments that function as both local desktop applications and remote browser-based services. It provides a comprehensive toolkit for constructing specialized coding tools, allowing developers to assemble custom interfaces and backend logic through a flexible, contribution-based architecture. The platform distinguishes itself through a highly extensible workbench that supports the integration of existing third-party editor plugins and standard language servers. By utilizing a dependency injection container and a multi-process architecture, it enables the creation of tailored development experiences that maintain compatibility with established industry standards while offering deep customization of UI components, menus, and command structures. Beyond its core construction capabilities, the framework includes integrated support for artificial intelligence, offering features such as natural language chat, automated code issue resolution, and context-aware coding assistance. It manages complex development workflows through task planning, automated script execution, and collaborative review processes, all while enforcing security policies through workspace execution restrictions and tool access controls. The project is distributed as a ready-to-use desktop application and provides build pipelines for packaging custom environments into native installers for major operating systems. - [mnielsen/neural-networks-and-deep-learning](https://awesome-repositories.com/repository/mnielsen-neural-networks-and-deep-learning.md) (17,721 ⭐) — This project is a comprehensive educational resource and curriculum designed to teach the mathematical foundations and practical implementation of neural networks. It provides a structured path for understanding how computers learn from data, covering core concepts such as gradient descent, backpropagation, and the biological inspiration behind artificial neurons. The platform distinguishes itself by combining theoretical proofs with hands-on implementation exercises. It demonstrates the universal approximation theorem through visual explanations and guides users in building various architectures, including feedforward and convolutional neural networks. By focusing on the underlying mechanics—such as weight initialization, activation functions, and cost optimization—the material enables learners to move beyond high-level abstractions to achieve a deep, functional mastery of deep learning. The curriculum encompasses a broad range of technical capabilities, including techniques for regularizing models, managing training datasets, and monitoring performance during the learning process. It also explores advanced optimization strategies and the use of matrix-based operations to accelerate computation. The repository is structured as a tutorial series, offering both conceptual lessons and practical code examples to facilitate self-directed study. - [angular/angular](https://awesome-repositories.com/repository/angular-angular.md) (100,360 ⭐) — Angular is a platform for building web applications using a component-based architecture. It provides a comprehensive suite of tools for managing encapsulated UI units, including hierarchical dependency injection, a declarative template system, and fine-grained reactivity through signals. The framework supports complex application requirements such as client-side routing, form management, and internationalization. The project includes a command-line interface for scaffolding and build automation, alongside a testing ecosystem for unit and integration verification. It offers multiple rendering strategies, including server-side rendering and static site generation, with support for hydration processes to optimize application delivery. Additionally, the framework features a built-in animation suite and security mechanisms to handle common web vulnerabilities. - [manisso/fsociety](https://awesome-repositories.com/repository/manisso-fsociety.md) (12,136 ⭐) — fsociety is a penetration testing framework and security tool orchestrator designed to conduct full security audits. It functions as a wrapper that integrates external security binaries into a unified, menu-driven interface, providing a centralized system for command-line parameter mapping and execution. The project distinguishes itself by organizing specialized utilities into domain-specific collections for structured navigation. It automates the transition between different phases of an audit by chaining reconnaissance and exploitation tools through sequential workflow automation. The framework covers a broad range of security capabilities, including network reconnaissance, web application auditing, and system vulnerability exploitation. It provides dedicated toolsets for credential brute forcing, network traffic interception, wireless security auditing, and post-exploitation management to maintain persistence on compromised systems. - [ands/seamoptimizer](https://awesome-repositories.com/repository/ands-seamoptimizer.md) (0 ⭐) — A C/C++ single-file library that minimizes the hard transition errors of disjoint edges in lightmaps. It is based on a idea presented by Michał Iwanicki in the talk Lighting Technology of "The Last Of Us". A least squares solver is used to find a minimal error solution to the problem of sampling… - [powershellmafia/powersploit](https://awesome-repositories.com/repository/powershellmafia-powersploit.md) (12,880 ⭐) — PowerSploit is a collection of PowerShell modules designed for security assessment, penetration testing, and red team operations. It provides a framework for auditing Windows system configurations and evaluating the effectiveness of security defenses within an enterprise environment. The framework focuses on techniques that leverage native system administration tools and scripting environments to perform operations. It includes capabilities for executing arbitrary commands, escalating user privileges, and maintaining system persistence through event subscriptions. By utilizing in-memory execution and reflective loading, the modules allow for the operation of payloads without writing files to the disk, assisting in the simulation of advanced adversary behavior. Beyond core exploitation tasks, the project supports network reconnaissance and the modification of existing scripts to test system responses. These tools are intended for authorized security assessments and the hardening of individual workstations against potential vulnerabilities. - [cockroachdb/cockroach](https://awesome-repositories.com/repository/cockroachdb-cockroach.md) (32,207 ⭐) — Cockroach is a distributed SQL database designed to scale horizontally across multiple nodes while maintaining strict ACID compliance and global data consistency. It functions as a relational database engine that automatically partitions data into ranges, rebalancing them across a cluster to accommodate growing storage and throughput requirements. By utilizing a distributed consensus protocol, the system ensures that all nodes agree on the order of operations, providing fault tolerance and continuous availability even in the event of hardware failures. The system distinguishes itself through a layered architecture that separates the relational SQL abstraction from a distributed key-value store. It achieves global consistency without requiring perfectly synchronized hardware clocks by employing a hybrid logical clock synchronization mechanism. To support high-concurrency environments, it utilizes multi-version concurrency control and lock-free transaction execution, which allow for consistent snapshots and efficient conflict resolution. Furthermore, the engine is built for compatibility, implementing the standard wire protocol to support existing relational database drivers and tools. Beyond its core transactional capabilities, the platform includes comprehensive tooling for cluster orchestration, security, and performance diagnostics. It supports a variety of deployment models, ranging from self-hosted on-premises configurations to fully managed cloud services. The system provides a command-line interface for session management and query execution, ensuring that administrators can monitor cluster health and manage workloads through standard relational interfaces. - [as-a-service/meme](https://awesome-repositories.com/repository/as-a-service-meme.md) (0 ⭐) — A simple web service that generates a meme image given text and an image URL. - [google/tsunami-security-scanner](https://awesome-repositories.com/repository/google-tsunami-security-scanner.md) (8,584 ⭐) — Tsunami Security Scanner is a network vulnerability scanner and security auditor designed to identify high-severity flaws across network assets. It functions as an asynchronous security probe engine that utilizes automated probes and specialized detection logic to find critical weaknesses and prioritize remediation efforts. The project is distinguished by a plugin-based scanning engine, which uses a modular architecture of interchangeable detection plugins to identify vulnerabilities. This extensibility allows for the development and integration of custom security plugins to expand the variety of detectable flaws. The system covers a broad range of network security auditing capabilities, including the coordination of automated testing workflows and the operation of callback servers to capture out-of-band network responses. It also includes management features for SSL trust, network timeout configurations, and the definition of scanning workflows. - [ytongxie/medical-vision-and-language-tasks-and-methodologies-a-survey](https://awesome-repositories.com/repository/ytongxie-medical-vision-and-language-tasks-and-methodologies-a-survey.md) (0 ⭐) — :fire::fire: This is a collection of medical vision-language tasks and methodologies:fire::fire: - [beefproject/beef](https://awesome-repositories.com/repository/beefproject-beef.md) (10,728 ⭐) — BeEF is a modular security testing environment designed for browser exploitation and web application auditing. It functions as a platform for security professionals to evaluate client-side defenses by injecting persistent scripts into web browsers, establishing a bidirectional communication channel for remote command execution and data exfiltration. The framework distinguishes itself through its ability to use compromised browser sessions as proxies to conduct internal network reconnaissance, effectively bypassing perimeter security controls. It utilizes an event-driven control interface and asynchronous command queuing to manage multiple hooked sessions, allowing for the coordination of complex, multi-stage assessment workflows. The system supports a modular architecture that enables the development of custom plugins and automated rules to extend its core testing capabilities. It includes comprehensive administrative controls, such as role-based access control, authentication rate limiting, and network access restrictions, to secure the testing environment and manage component lifecycles. - [infisical/infisical](https://awesome-repositories.com/repository/infisical-infisical.md) (27,374 ⭐) — Infisical is a centralized secrets management platform designed to store, synchronize, and control access to sensitive credentials and configuration data across distributed development, staging, and production environments. It employs client-side encryption to ensure that secrets remain unreadable to the underlying storage infrastructure, while providing a hierarchical permission model to govern both user and machine access. The platform distinguishes itself through dynamic credential provisioning, which generates short-lived access tokens that are automatically revoked after use. It supports complex security workflows by integrating with external identity providers for federated authentication and offering a reverse tunneling gateway that allows secure access to private network resources without exposing inbound ports. Additionally, the system includes an event-driven audit engine that maintains an immutable record of all configuration changes and access requests to support compliance requirements. Beyond core secret storage, the platform provides comprehensive orchestration capabilities, including automated secret injection into containerized environments and infrastructure pipelines. It also features integrated public key infrastructure management for the lifecycle of digital certificates and automated scanning to detect hardcoded secrets in source code and CI pipelines. The platform supports flexible deployment models, allowing teams to either utilize managed cloud services or self-host the infrastructure within their own private networks. It provides a broad ecosystem of SDKs and a command-line interface to facilitate integration across various programming languages and deployment workflows. - [ands/lightmapper](https://awesome-repositories.com/repository/ands-lightmapper.md) (0 ⭐) — lightmapper.h is a C/C++ single-file library for lightmap baking by using your existing OpenGL renderer. - [flutter/flutter](https://awesome-repositories.com/repository/flutter-flutter.md) (177,056 ⭐) — This project is a multi-platform UI framework designed for building applications that target mobile, web, and desktop environments from a single codebase. It utilizes a declarative paradigm where the user interface is defined as a function of application state, supported by a layered architecture that includes a high-performance rendering engine and a multi-platform compilation model. The framework provides a comprehensive suite of developer tools, including hot reloading for real-time code injection and diagnostic utilities for monitoring application state and performance. It features a modular component system, a constraint-based layout engine, and built-in support for navigation, localization, and accessibility. Developers can extend functionality through a native integration model that supports platform-specific APIs, foreign function interfaces, and a package management system for dependency distribution. Beyond core UI development, the project includes infrastructure for application packaging and distribution across various app stores and web environments. It also incorporates concurrency models for background task management, security utilities for code obfuscation, and tools for integrating generative AI into the development workflow. - [mrgloom/network-speed-and-compression](https://awesome-repositories.com/repository/mrgloom-network-speed-and-compression.md) (0 ⭐) — MobilenetV1 [2017] - MobilenetV2 [2019] - MobilenetV3 [2019] - SqueezeNet [2016] + https://github.com/forresti/SqueezeNet - SqueezeNext [2018] + https://github.com/amirgholami/SqueezeNext - Tiny Darknet [?] - CondenseNet - NASNet +… - [wifiphisher/wifiphisher](https://awesome-repositories.com/repository/wifiphisher-wifiphisher.md) (14,631 ⭐) — Wifiphisher is a modular security framework designed for wireless penetration testing and social engineering auditing. It functions as a platform for security professionals to assess the resilience of Wi-Fi networks by simulating unauthorized access, performing man-in-the-middle interceptions, and executing credential-harvesting scenarios. The tool distinguishes itself through its ability to combine rogue access point deployment with dynamic phishing interfaces. By forcing wireless clients to associate with deceptive infrastructure, the framework can capture network metadata and inject it into personalized web templates in real time. This process is supported by low-level wireless control, including packet injection and deauthentication-based client steering, which allows the system to maintain a position between the target and the network. The framework provides extensive capabilities for traffic management and operational automation. It includes mechanisms for bridging client traffic to maintain internet connectivity during interception, as well as a modular extension system that allows users to execute custom Python scripts. These scripts can be used to automate complex attack workflows, enhance phishing scenarios, or integrate external tools during active security assessments. - [awesome-selfhosted/awesome-selfhosted](https://awesome-repositories.com/repository/awesome-selfhosted-awesome-selfhosted.md) (299,516 ⭐) — This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It distinguishes itself through a collaborative peer-review process, where community members validate the quality and relevance of each submission to ensure the directory remains accurate and reliable. The project covers a broad capability surface, including infrastructure automation, container-based service deployment, and declarative configuration management. These tools assist users in maintaining reproducible server environments and managing complex service dependencies across private hardware. The directory is maintained as a version-controlled repository, ensuring that all updates and community-driven changes are tracked and transparent. - [as-a-service/render](https://awesome-repositories.com/repository/as-a-service-render.md) (0 ⭐) — A simple web service that renders a Blender 3D scene with custom text. - [owasp/amass](https://awesome-repositories.com/repository/owasp-amass.md) (14,722 ⭐) — Amass is a network attack surface mapper and reconnaissance framework designed to discover and map the external, internet-facing infrastructure of a target organization. It functions as an open source intelligence tool that identifies public network boundaries and locates hidden or forgotten subdomains to define an organization's total reachable footprint. The project utilizes passive-source data aggregation from external APIs and public databases alongside active DNS brute-forcing and recursive subdomain expansion. It employs a graph-based asset mapping system to visualize the relationships between discovered domains and IP addresses, supported by a modular plugin system for integrating third-party discovery services. The framework covers broader capabilities including network reconnaissance, public asset discovery, and the preparation of security audits by mapping all reachable entry points. These processes are managed through a concurrent worker pipeline to accelerate the scanning and resolution of large target sets. - [moham3driahi/th3inspector](https://awesome-repositories.com/repository/moham3driahi-th3inspector.md) (2,571 ⭐) — Th3inspector is a command-line open-source intelligence reconnaissance tool used for gathering public information on websites, phone numbers, and network records. It functions as a central interface for collecting technical metadata and performing various lookups to build profiles of target entities. The project provides specialized verification utilities for validating email addresses, phone numbers, and credit card bank identification numbers. It also includes tools for retrieving domain registration age, ownership records, and identified subdomains from global databases. Additional capabilities cover network analysis and infrastructure reconnaissance, including IP geolocation, open port scanning, and the identification of running services. The tool can also resolve original server addresses by attempting to bypass proxy protections. - [gokumohandas/made-with-ml](https://awesome-repositories.com/repository/gokumohandas-made-with-ml.md) (48,343 ⭐) — Made-With-ML is an automated documentation generator and developer experience platform designed to transform source code into structured, searchable reference websites. It functions as a codebase intelligence tool that parses implementation details to provide clear explanations of logic and data requirements. The system distinguishes itself by leveraging language-level type annotations and structured code comments to generate interface specifications. By utilizing static analysis to extract metadata, it automates the transformation of docstrings into web-ready documentation, ensuring that technical references remain synchronized with the underlying codebase. The platform encompasses a complete pipeline for documentation management, including static site generation and automated deployment to web hosting services. This workflow enables teams to maintain accurate, accessible project knowledge bases that reflect current software specifications and function interfaces. - [as-a-service/pdf](https://awesome-repositories.com/repository/as-a-service-pdf.md) (0 ⭐) — A simple web service that transforms the given document into a PDF file. - [bettercap/bettercap](https://awesome-repositories.com/repository/bettercap-bettercap.md) (18,855 ⭐) — Bettercap is a modular framework designed for network reconnaissance, security testing, and the execution of man-in-the-middle attacks. It functions as a comprehensive utility for surveying wired and wireless network segments, identifying connected devices, and analyzing communication protocols through real-time traffic interception and manipulation. The platform distinguishes itself through an event-driven architecture that coordinates network state changes and packet-level data through a centralized message pipeline. It provides a programmable scripting engine and an API for orchestrating security workflows, allowing users to automate reconnaissance tasks, trigger custom protocol injections, and perform credential harvesting from intercepted traffic streams. Beyond its core interception capabilities, the tool includes specialized modules for wireless peripheral security testing and the hijacking of human interface devices. It maintains stateful session tracking to correlate fragmented traffic into coherent streams, supporting complex analysis across diverse hardware environments. The software is distributed with support for containerized deployment to ensure consistent execution across different host systems. - [badges/shields](https://awesome-repositories.com/repository/badges-shields.md) (26,811 ⭐) — Shields is a dynamic badge generator that creates visual status indicators for software projects by fetching live data from external APIs. It functions as a programmatic image renderer, converting structured data parameters into consistent, high-contrast vector graphics that can be embedded directly into markdown and web documentation via URL parameters. The project distinguishes itself by offering a self-hosted metadata server, allowing users to deploy the service behind their own firewalls to maintain full control over infrastructure and data privacy. It supports extensive customization, including the ability to define specific labels, messages, and color schemes, as well as the integration of custom logos and predefined icons to provide visual context for project metrics. The platform covers a broad capability surface for badge management, including modular data fetching, automated testing with mocked service responses, and a decoupled architecture for optional raster image conversion. It provides comprehensive tooling for developers to implement new service badges, manage server secrets, and monitor performance, ensuring consistent design standards across all generated status indicators. - [as-a-service/screenshot](https://awesome-repositories.com/repository/as-a-service-screenshot.md) (0 ⭐) — A simple web service that takes screenshot of the given URL. - [as-a-service/inkscape](https://awesome-repositories.com/repository/as-a-service-inkscape.md) (0 ⭐) — A simple web service that transforms the given SVG file into the desired format. - [jaykali/maskphish](https://awesome-repositories.com/repository/jaykali-maskphish.md) (3,020 ⭐) — Maskphish is a comprehensive security toolkit that integrates capabilities for digital forensics, network vulnerability scanning, open-source intelligence, penetration testing, and social engineering. It functions as a multi-purpose framework for automating reconnaissance and executing security audits across diverse network environments. The project features a specialized phishing and social engineering toolkit used for cloning websites, masking URLs, and deploying deceptive pages to capture user credentials. It also includes a remote access Trojan builder for generating platform-specific executables and mobile application packages to establish remote command sessions. The framework covers a broad surface of capabilities, including web application penetration testing, OSINT reconnaissance, memory and disk forensics, and wireless network auditing. It provides tools for payload generation, credential theft, and the automation of information gathering from public data sources. This project is implemented primarily as a shell-based application. - [dexidp/dex](https://awesome-repositories.com/repository/dexidp-dex.md) (10,902 ⭐) — Dex is an OpenID Connect provider and identity federation proxy that translates authentication signals from various upstream sources into a unified OpenID Connect interface. It functions as a multi-protocol identity broker, enabling client applications to implement a single standard while delegating user verification to external identity providers. The project distinguishes itself through a pluggable connector architecture that bridges disparate protocols including LDAP, SAML, and OAuth2. It provides specific integrations for services such as GitHub, Google, GitLab, and Microsoft, while offering the ability to normalize provider-specific attributes and resolve recursive group memberships into consistent identity tokens. The system covers broad capability areas including OAuth 2.0 client management, identity token issuance, and access filtering based on domains or group memberships. It also provides specialized gateway functionality for Kubernetes cluster authentication, mapping OIDC claims to Kubernetes identities for API server validation. Configuration and session state can be persisted across multiple backends, including SQL databases, etcd, or Kubernetes Custom Resource Definitions. - [samratashok/nishang](https://awesome-repositories.com/repository/samratashok-nishang.md) (9,951 ⭐) — Nishang is a PowerShell-based offensive security framework designed for red teaming and penetration testing on Windows targets. It functions as a post-exploitation toolkit and payload generator to automate attacks and manage remote targets. The project provides specialized capabilities for bypassing security controls, such as disabling the Antimalware Scan Interface and employing in-memory execution to avoid disk-based detection. It includes a variety of stealthy command and control mechanisms, utilizing non-standard channels like DNS TXT records, ICMP traffic, and webmail for communication and data exfiltration. The framework covers a broad surface of offensive operations, including privilege escalation through token manipulation, credential harvesting from memory and registry hives, and the generation of weaponized documents. It also facilitates lateral movement via network pivoting, man-in-the-middle traffic interception, and the establishment of persistent backdoors. The toolset is implemented primarily in PowerShell. - [as-a-service/trace](https://awesome-repositories.com/repository/as-a-service-trace.md) (0 ⭐) — A simple web service that traces the given bitmap image into an SVG file. - [facebook/react](https://awesome-repositories.com/repository/facebook-react.md) (245,669 ⭐) — React is a JavaScript library for building user interfaces based on a component-driven architecture and unidirectional data flow. - [mishakorzik/allhackingtools](https://awesome-repositories.com/repository/mishakorzik-allhackingtools.md) (5,186 ⭐) — AllHackingTools is a security tool orchestrator and suite designed to install, update, and manage a wide array of third-party hacking and security utilities from a single command interface. It functions as a centralized hub for network analysis, open source intelligence, penetration testing, and social engineering tools. The project provides specialized frameworks for gathering open source intelligence and searching for user profiles across social platforms. It includes toolkits for network reconnaissance, vulnerability scanning, and the execution of security exploits, as well as a social engineering suite for simulating phishing attacks and credential recovery. The system covers a broad range of operational capabilities, including network packet sniffing, wireless network attacks, and denial-of-service execution. It also incorporates web security testing for identifying SQL injection and cross-site scripting vulnerabilities, alongside utilities for password hash cracking and custom wordlist generation. The environment is managed through a shell-scripted interface that handles system package dependencies and provides options for terminal appearance customization and theme application. - [gotify/server](https://awesome-repositories.com/repository/gotify-server.md) (14,654 ⭐) — Gotify is a self-hosted notification server designed to centralize the receipt and dispatch of real-time messages. It provides a RESTful API and a WebSocket gateway, allowing users to programmatically send alerts and push notifications to connected clients. By maintaining a private infrastructure, the platform ensures full control over message history, data retention, and access management. The system distinguishes itself through a modular, plugin-based architecture that allows for the extension of core functionality, including custom HTTP endpoints and webhook event processing. It supports granular control over system resources through token-based authentication and role-based permissions, ensuring that message visibility is restricted to authorized applications and users. The platform includes comprehensive tools for managing notification delivery, such as rich media support, metadata handling, and interaction triggers. It also incorporates built-in traffic management features, including path-based routing and SSL termination, to simplify deployment and secure communication. The server is distributed as a standalone binary and supports containerized deployment, with all frontend assets embedded directly into the executable to minimize external dependencies. It utilizes a relational database to ensure persistent storage of application state and message history across service restarts. - [strebl/ldap-auth](https://awesome-repositories.com/repository/strebl-ldap-auth.md) (0 ⭐) — Active Directory LDAP Authentication - [drizzle-team/drizzle-orm](https://awesome-repositories.com/repository/drizzle-team-drizzle-orm.md) (34,835 ⭐) — Drizzle ORM is a TypeScript-native database toolkit providing type-safe SQL query building, schema management, and automated migrations across PostgreSQL, MySQL, SQLite, and SingleStore. - [shadow1ng/fscan](https://awesome-repositories.com/repository/shadow1ng-fscan.md) (13,421 ⭐) — Fscan is an automated penetration testing tool designed for internal network reconnaissance and vulnerability assessment. It functions as a comprehensive security framework that maps network infrastructure, identifies active hosts and services, and detects security weaknesses across internal environments. The tool distinguishes itself through a modular plugin architecture that allows for extensible security checks and a stateful asset tracking system that maintains an in-memory registry of discovered infrastructure. It incorporates a dedicated credential brute-force engine for testing password strength and supports proxy-aware traffic routing to facilitate operations within segmented or restricted network segments. Beyond core discovery, the platform provides capabilities for post-exploitation security operations, including system information collection and remote access management. Users can control scan performance through configurable concurrency and rate limits, with options to manage tasks via both command-line execution and a graphical web interface. - [thomaswangweihong/jointnet-a-common-neural-network-for-road-and-building-extraction](https://awesome-repositories.com/repository/thomaswangweihong-jointnet-a-common-neural-network-for-road-and-building-extraction.md) (0 ⭐) — Python implementation of Convolutional Neural Networks (CNNs) proposed in paper - [laardee/video-preview-and-analysis-service](https://awesome-repositories.com/repository/laardee-video-preview-and-analysis-service.md) (0 ⭐) - [clearml/clearml](https://awesome-repositories.com/repository/clearml-clearml.md) (6,740 ⭐) — ClearML is a comprehensive MLOps platform designed to manage the end-to-end machine learning lifecycle, from initial experimentation to production deployment. It provides a suite of integrated tools including a pipeline orchestrator for automating workflows, an experiment tracking tool for logging hyperparameters and metrics, and a metadata-driven data versioning system for managing large-scale datasets and model artifacts. The platform is distinguished by its advanced compute management and serving capabilities. It features a GPU compute manager that supports fractional resource slicing and priority scheduling across hybrid cloud environments. Additionally, it includes a dedicated serving framework for hosting large language models and agentic workflows through secure APIs with integrated autoscaling. The system covers a broad range of operational capabilities, including real-time infrastructure cost tracking, multi-tenant resource isolation, and automated execution environment reproduction. It also provides observability tools for monitoring inference endpoints, auditing AI workflows, and analyzing system-level hardware utilization. The orchestration engine can be deployed via containerized or cloud-image based installations to host the platform's lifecycle infrastructure. - [six2dez/reconftw](https://awesome-repositories.com/repository/six2dez-reconftw.md) (7,226 ⭐) — reconftw is an attack surface management framework and reconnaissance workflow orchestrator designed to automate the discovery, mapping, and monitoring of external digital assets. It operates as a modular tool-chain pipeline that coordinates a sequence of security tools to perform intelligence gathering and vulnerability scanning. The project distinguishes itself through a cloud-native deployment model that parallelizes scanning workloads across a fleet of remote VPS instances to bypass local resource constraints. It utilizes container-based environment isolation to ensure consistent execution across different cloud providers and features a checkpoint system to resume interrupted workflows from the last point of failure. The toolkit covers a broad range of capabilities, including passive and active subdomain enumeration, open-source intelligence gathering, and network infrastructure analysis. It also incorporates automated vulnerability scanning for common web flaws and CVEs, differential asset tracking to identify new targets, and the generation of security reports using artificial intelligence. The environment can be deployed via container orchestration and integrated into CI/CD pipelines for recurring security checks. - [allegroai/clearml](https://awesome-repositories.com/repository/allegroai-clearml.md) (6,733 ⭐) — ClearML is a comprehensive MLOps platform designed to manage the entire machine learning lifecycle. It functions as an experiment tracking tool, a data versioning system, and a pipeline orchestrator, while providing infrastructure for GPU cluster management and model serving. The platform is distinguished by its ability to handle hybrid-cloud compute scheduling and fractional GPU allocation, allowing multiple workloads to share a single hardware accelerator. It employs a metadata-based approach to data versioning, using virtual views to track large datasets and artifacts without duplicating raw files. The system covers a broad range of capabilities including automated machine learning pipeline orchestration via task-graph dependencies, hyperparameter optimization, and distributed model training. It also provides an integrated AI workbench for remote development and a centralized control plane for tracking models from training through to production deployment. Governance and observability are integrated through multi-tenant resource isolation, role-based access control, and real-time monitoring of compute resources and model performance. - [jasonxtn/argus](https://awesome-repositories.com/repository/jasonxtn-argus.md) (3,254 ⭐) — Argus is a modular network reconnaissance framework designed for gathering network intelligence, mapping infrastructure, and assessing security postures through automated discovery tasks. It operates as a containerized security toolset that allows for the consistent execution of specialized information-gathering modules across different operating systems. The system functions as an infrastructure audit tool and a web application security scanner, performing tasks such as DNS lookups, port scanning, and the inspection of HTTP headers to detect vulnerabilities. It also serves as a threat intelligence integrator by connecting to external security APIs to enrich reconnaissance data with global asset reputation and threat feeds. The framework covers network infrastructure reconnaissance, security configuration auditing for cryptographic setups and SSL/TLS fingerprints, and web intelligence gathering. It includes capabilities for interacting with network protocols such as SNMP, SSH, and LDAP to retrieve remote system and directory data. The software supports automated installation and deployment via Docker images to ensure environment isolation.