# Active Directory Pentesting Labs > Search results for `map and attack Active Directory in a lab environment` on awesome-repositories.com. 119 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/map-and-attack-active-directory-in-a-lab-environment **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/map-and-attack-active-directory-in-a-lab-environment).** ## Results - [activiti/activiti](https://awesome-repositories.com/repository/activiti-activiti.md) (10,518 ⭐) — Activiti is a workflow engine designed to model, execute, and manage business processes using the BPMN 2.0 standard. It functions as a Java-based framework that embeds process orchestration directly into enterprise applications and microservices to coordinate sequences of tasks and human-centric interactions. The platform utilizes a persistent state machine to maintain the status of long-running workflows in a relational database, ensuring continuity across system restarts. It manages high-volume environments through optimistic concurrency control, which tracks versioning tokens to prevent data corruption during simultaneous process updates. The engine supports complex orchestration by decoupling identity management from core execution, allowing for integration with existing enterprise security and directory services. It provides extensibility through pluggable service task integration, enabling the execution of custom business logic and external service calls at defined transition points within a workflow. - [s1ckb0y1337/active-directory-exploitation-cheat-sheet](https://awesome-repositories.com/repository/s1ckb0y1337-active-directory-exploitation-cheat-sheet.md) (0 ⭐) — This cheat sheet contains common enumeration and attack methods for Windows Active Directory. - [gradio-app/gradio](https://awesome-repositories.com/repository/gradio-app-gradio.md) (42,931 ⭐) — Gradio is a Python library that enables the creation of interactive web applications by converting functions into browser-based interfaces. It functions as a declarative framework where developers define input and output components to automatically generate web forms, visualizations, and data-driven dashboards. By abstracting away manual web markup, the library allows for the rapid construction of interfaces for machine learning models, research demonstrations, and analytical workflows within a single environment. The platform distinguishes itself by automatically exposing internal application logic as web services, generating API endpoints and documentation at runtime. It includes a built-in client library that allows external scripts to interact with these hosted services, facilitating the integration of model outputs into larger software systems. This dual capability enables users to both build interactive front-ends and provide programmatic access to their data processing logic. The framework supports complex application requirements through an event-driven message bus that handles real-time data streaming and state synchronization. It manages long-running tasks via asynchronous job execution to maintain interface responsiveness and provides a dynamic layout engine for rendering visual structures. Developers can further extend the platform by creating custom components to implement specialized controls or unique interface elements beyond the standard library. - [swisskyrepo/payloadsallthethings](https://awesome-repositories.com/repository/swisskyrepo-payloadsallthethings.md) (78,434 ⭐) — This project is a comprehensive, community-sourced knowledge base designed for security professionals and researchers. It functions as a centralized repository of offensive security techniques, providing a structured collection of exploit payloads, attack vectors, and methodologies for conducting vulnerability assessments and penetration testing. The repository distinguishes itself through a cross-platform payload taxonomy that categorizes exploitation methods by vulnerability type and target environment, enabling rapid lookup during security assessments. It maintains high standards of data integrity and collaborative growth by utilizing version-controlled knowledge management and template-driven content generation, ensuring that the research remains current and consistent across a wide range of technical domains. The project covers a broad capability surface, including detailed references for web application security, database injection, insecure deserialization, and AI model security testing. It also aggregates external resources, such as research papers and third-party tools, to provide a holistic view of modern threat analysis and defensive research. The documentation is organized as a hierarchical tree of markdown files, designed for easy navigation and reference during active security engagements. - [cloud-architekt/azuread-attack-defense](https://awesome-repositories.com/repository/cloud-architekt-azuread-attack-defense.md) (2,471 ⭐) - [hmaverickadams/beginner-network-pentesting](https://awesome-repositories.com/repository/hmaverickadams-beginner-network-pentesting.md) (6,205 ⭐) — This is a hands-on lab environment for learning network penetration testing techniques, centered on setting up and attacking a vulnerable Active Directory network. The project provides a structured framework for practicing the full attack chain, from initial reconnaissance and scanning through exploitation, privilege escalation, lateral movement, and credential theft, all within isolated virtual machine labs. The lab environment is designed to simulate real-world attack scenarios, including the ability to compile and execute exploit code directly against targets without relying on Metasploit. It also integrates Metasploit for gaining shell access and maintaining persistence, and includes workflows for applying security patches to demonstrate defensive countermeasures. The project coordinates multiple tools like Nmap, Nessus, and Nikto through scripted pipelines for scanning and enumeration. Beyond the technical attack simulation, the project includes a framework for documenting findings, attack paths, and remediation steps into a structured report suitable for client delivery. The documentation covers building the Active Directory lab, executing the full attack chain, and patching the environment to reinforce defensive practices. - [orange-cyberdefense/goad](https://awesome-repositories.com/repository/orange-cyberdefense-goad.md) (7,464 ⭐) — GOAD is an Ansible-based automation tool and infrastructure orchestrator used to deploy pre-configured networks of vulnerable Windows virtual machines. It serves as a security training environment for practicing Active Directory penetration testing, privilege escalation, and lateral movement across various cloud platforms and local virtualization hypervisors. The project distinguishes itself through a multi-provider infrastructure model and a system of infrastructure recipes that simulate intentional security misconfigurations. It supports the deployment of varied attack scenarios, including vulnerable Active Directory environments, Exchange servers, and SCCM setups, while allowing for custom lab extensions and tiered inventory overrides to adapt the environment to specific provider settings. Broad capabilities include the provisioning of blue team monitoring stacks with EDR solutions and centralized logging for security event analysis. It also provides network access utilities such as SSH jumpboxes and SOCKS proxies to route attack traffic into isolated segments, and simulates specific security challenges like database impersonation and access control list manipulation. - [facebookresearch/map-anything](https://awesome-repositories.com/repository/facebookresearch-map-anything.md) (2,915 ⭐) — Map-anything is a 3D scene reconstruction framework and neural geometry estimator designed to transform two-dimensional images into metric three-dimensional spatial representations using feed-forward neural networks. It provides a specialized toolkit for predicting camera intrinsics and ray directions from single images without requiring external geometric metadata. The project includes a 3D model benchmarking suite that utilizes a unified model wrapper to standardize outputs from diverse reconstruction models. This allows for consistent evaluation and accuracy measurement across various spatial datasets. To facilitate downstream use, it includes a COLMAP data exporter that converts neural reconstruction predictions into formats compatible with photogrammetry and splatting pipelines. The framework covers a broad capability surface including distributed geometry model training, multi-node cluster orchestration, and inference memory optimization. It also provides tools for metric depth visualization, spatial data standardization, and geometry artifact filtering using normal-based masking. - [biwei-huang/causal-discovery-and-forecasting-in-nonstationary-environments](https://awesome-repositories.com/repository/biwei-huang-causal-discovery-and-forecasting-in-nonstationary-environments.md) (0 ⭐) — Causal discovery and forecasting in nonstationary environments with state-space models - [trimstray/the-book-of-secret-knowledge](https://awesome-repositories.com/repository/trimstray-the-book-of-secret-knowledge.md) (228,641 ⭐) — This project serves as a centralized, community-driven repository of technical knowledge and administrative resources. It provides a structured taxonomy that aggregates disparate information into a searchable framework, supporting continuous learning and rapid problem-solving for system administrators and cybersecurity practitioners. By mapping resources across offensive security, infrastructure management, and software development, it offers a unified path for skill acquisition and professional reference. The project is defined by a command-line-first design philosophy, prioritizing terminal-based utilities and scriptable interfaces to facilitate efficient system administration and repeatable security workflows. It distinguishes itself through a platform-agnostic approach, maintaining documentation and operational guides that remain applicable across diverse Unix-like and cloud-based environments. This modular toolchain integration allows users to compose custom environments tailored to specific administrative or security tasks. The repository covers a broad capability surface, including comprehensive toolkits for system auditing, network management, and infrastructure hardening. It provides structured learning paths for cybersecurity skill development, ranging from ethical hacking labs and penetration testing standards to vulnerability assessment and system configuration best practices. The collection also encompasses a wide array of productivity tools, diagnostic utilities, and educational materials designed to streamline routine maintenance and enhance overall security posture. - [sebastianbergmann/environment](https://awesome-repositories.com/repository/sebastianbergmann-environment.md) (6,778 ⭐) — This project is a PHP environment abstraction layer and runtime detection library. It functions as a logic router designed to identify the active execution engine and trigger specific code paths based on the runtime environment. The library enables cross-engine PHP development by routing application logic through different branches and managing behaviors depending on the detected context. This allows for the implementation of environment-specific configurations and conditional execution logic to ensure compatibility across various setups. The system covers runtime detection, execution path management, and provides compatibility for static analysis to help resolve potential execution paths. - [fetchai/innovation-lab-examples](https://awesome-repositories.com/repository/fetchai-innovation-lab-examples.md) (1,028 ⭐) — This project provides a comprehensive framework for building, deploying, and orchestrating autonomous agents within a decentralized network. It serves as a collection of patterns and examples for developing intelligent software entities capable of performing complex tasks, making decisions, and interacting with other agents to achieve shared goals. The framework distinguishes itself through its focus on multi-agent orchestration and decentralized communication. It enables the coordination of specialized agent teams that collaborate on workflows through structured messaging protocols, allowing for task delegation and distributed problem-solving. Furthermore, it integrates financial transaction capabilities, enabling the monetization of agent services by verifying cryptocurrency payments on-chain to gate access to specific tasks or content. The platform covers a broad capability surface, including retrieval-augmented generation for context-aware responses, agentic web automation for interacting with external services, and conversational AI integration for managing multi-turn user dialogues. It also supports advanced operational features such as asynchronous task streaming, containerized service deployment, and the use of standardized context protocols to connect agents with external tools and data sources. The repository includes implementation patterns and configuration examples designed to assist developers in transitioning agents from local development environments to hosted infrastructure. - [llm-attacks/llm-attacks](https://awesome-repositories.com/repository/llm-attacks-llm-attacks.md) (4,509 ⭐) — This repository provides tools and methodologies for studying adversarial attacks on large language models. It focuses on understanding how carefully crafted inputs can manipulate or bypass the safety mechanisms of LLMs, enabling researchers to probe model vulnerabilities and improve their robustness. The project covers techniques for generating adversarial prompts, evaluating model responses under attack conditions, and analyzing the effectiveness of different attack strategies. - [cleverhans-lab/cleverhans](https://awesome-repositories.com/repository/cleverhans-lab-cleverhans.md) (6,443 ⭐) — Cleverhans is an adversarial machine learning library and toolkit designed to generate adversarial examples, incorporate them into training loops, and benchmark the resilience of machine learning models. It provides a gradient-based attack framework for constructing both white-box and black-box attacks to identify model misclassifications. The project includes capabilities for model robustness benchmarking, allowing users to evaluate and verify how models resist evasion attacks and malicious input perturbations. It also facilitates adversarial training to increase a model's resistance to perturbations by integrating malicious examples directly into the training process. The library covers a broad surface of security and testing functions, including gradient-based perturbation, loss-function optimization, and black-box strategies such as substitute-model imitation. These tools are supported by a framework-agnostic backend and command line utilities for applying adversarial functionality to saved models. - [specterops/bloodhound](https://awesome-repositories.com/repository/specterops-bloodhound.md) (2,789 ⭐) — BloodHound is an identity risk management platform and graph-based attack path analyzer used to map identity relationships and permissions in Active Directory. It functions as a security tool for auditing directory services, uncovering unintended privilege relationships, and visualizing sequences of permissions that can lead to domain compromise. The project differentiates itself as a comprehensive adversary emulation framework that coordinates remote agents and executes post-exploitation commands. It includes a reverse proxy for bypassing multi-factor authentication via real-time session hijacking and a system for simulating phishing campaigns to track user interactions. The platform covers a broad set of offensive security capabilities, including credential harvesting from memory and local stores, Kerberos and PKI manipulation, and infrastructure enumeration targeting system management tools. It also provides tools for remote command execution, lateral movement through authentication coercion, and the discovery of privilege escalation vectors across host configurations. The system is deployed as a multi-tier container architecture and can be installed and configured via a command-line utility. - [formbricks/formbricks](https://awesome-repositories.com/repository/formbricks-formbricks.md) (12,391 ⭐) — Formbricks is an open-source survey and feedback platform designed to help teams capture and analyze user insights through targeted, in-app, and website-based interactions. It functions as a comprehensive customer experience analytics system that allows organizations to maintain full control over their data, user attributes, and survey workflows. The platform distinguishes itself through its event-driven architecture, which enables precise behavioral targeting by triggering surveys based on specific user actions or application events. It supports deep integration with external ecosystems by automatically synchronizing response data to CRMs, databases, and communication tools, while providing programmatic interfaces for managing resources and automating feedback loops. Beyond core collection, the system includes advanced logic for conditional branching, scoring, and personalized routing to create adaptive survey experiences. It offers extensive customization options, including white-labeling, CSS overrides, and multi-channel distribution across web, mobile, and email environments. The platform is built for self-hosting, supporting containerized deployments with built-in multi-tenant data isolation and enterprise-grade security features like single sign-on and role-based access control. - [bloodhoundad/bloodhound](https://awesome-repositories.com/repository/bloodhoundad-bloodhound.md) (10,552 ⭐) — BloodHound is a graph-based security analysis tool designed to map trust relationships and attack vectors within Active Directory environments. It functions as an attack path mapper and risk assessment system that uses graph theory to identify hidden relationships and paths leading to high-privilege accounts. The tool specializes in network attack surface mapping and privilege escalation pathfinding. It quantifies security risks by measuring the reliability of attack paths to critical targets, allowing for the prioritization of vulnerability elimination. The system provides capabilities for directed graph visualization and permission-based path analysis. It utilizes query-driven data extraction to pull permission sets and group memberships, storing them in a schema-mapped format to calculate the shortest routes to high-value targets. - [sloria/environs](https://awesome-repositories.com/repository/sloria-environs.md) (1,367 ⭐) — simplified environment variable parsing - [casey/just](https://awesome-repositories.com/repository/casey-just.md) (34,302 ⭐) — This project is a command-line task runner designed to manage project-specific workflows through a centralized, configuration-driven interface. It functions as a declarative tool for organizing build logic, environment variables, and task dependencies into a structured format, enabling the automation of complex development pipelines. The tool distinguishes itself by providing a shell-agnostic execution layer that ensures consistent behavior across Windows, macOS, and Linux. It supports advanced workflow orchestration by constructing directed acyclic graphs to manage task prerequisites, while offering flexible parameter injection and command-line variable overrides to customize execution without modifying source files. Users can also leverage interactive recipe selection and modular configuration imports to navigate and maintain complex project structures. Beyond core execution, the project includes a broad suite of developer utilities such as automated shell completion generation, integrated terminal documentation, and support for diverse script interpreters. It manages environment contexts through variable loading and exporting, while providing granular control over process signals, parallel execution, and output verbosity. The project is distributed as a standalone binary, with documentation and usage details accessible directly through its built-in manual page system. - [hbmartin/directory-swiftui](https://awesome-repositories.com/repository/hbmartin-directory-swiftui.md) (0 ⭐) — A directory demo app written with SwiftUI, Core Data, and Alamofire - [byt3bl33d3r/crackmapexec](https://awesome-repositories.com/repository/byt3bl33d3r-crackmapexec.md) (9,144 ⭐) — CrackMapExec is a network penetration testing framework and automated security scanner designed to assess security postures across large IP ranges. It functions as a multi-protocol security scanner and network protocol auditor used to identify vulnerabilities and misconfigurations. The tool provides capabilities for Active Directory auditing to enumerate users and permissions, as well as post-exploitation enumeration to gather system metadata and discover lateral movement paths. It includes a framework for credential spraying and harvesting across various network services. The system utilizes asynchronous network I/O and parallel execution to manage high volumes of socket connections. It employs a modular protocol implementation and dynamic plugin loading to extend security assessment tools, with a local database for persisting discovered credentials and host metadata. - [adaptivethreat/bloodhound](https://awesome-repositories.com/repository/adaptivethreat-bloodhound.md) (10,552 ⭐) — Bloodhound is an Active Directory attack path mapper and security auditor designed to visualize trust relationships and permission chains. It serves as an attack surface management tool that identifies paths to domain administrator and other high-privileged accounts. The project uses a graph database analyzer to map complex identity and access relationships. It quantifies the risk of privilege escalation by identifying misconfigured permissions and trust links within Windows domains. The system provides capabilities for Active Directory security analysis, identity and access auditing, and network attack path visualization to detect potential security vulnerabilities. - [synrc/active](https://awesome-repositories.com/repository/synrc-active.md) (67 ⭐) — ♾️ ACTIVE: Filesystem Activities - [facebook/react](https://awesome-repositories.com/repository/facebook-react.md) (245,669 ⭐) — React is a JavaScript library for building user interfaces based on a component-driven architecture and unidirectional data flow. - [harvard-edge/cs249r_book](https://awesome-repositories.com/repository/harvard-edge-cs249r-book.md) (20,217 ⭐) — This project is a comprehensive educational framework designed to teach the design, deployment, and performance optimization of machine learning systems. It provides a structured curriculum that covers the full stack of artificial intelligence engineering, ranging from the construction of core framework components like tensors and automatic differentiation engines to the orchestration of large-scale distributed training clusters. The platform distinguishes itself through its integration of physics-grounded systems modeling and interactive simulation environments. Users can experiment with distributed training strategies, analyze communication overhead, and perform economic modeling to estimate the total cost of ownership, energy consumption, and reliability of hardware clusters. By combining these analytical tools with hands-on embedded hardware kits and browser-based notebooks, the project enables students to bridge the gap between theoretical architecture and practical deployment on resource-constrained edge devices. Beyond core training, the project offers a broad suite of capabilities for evaluating machine learning operations. This includes tools for assessing inference latency, quantifying environmental impact, and optimizing production workloads across diverse environments. The curriculum is supported by extensive pedagogical resources, including lecture materials, assessment banks, and interview preparation scenarios that focus on hardware selection and parallel scaling strategies. The project is maintained as an open-source repository, providing version-controlled educational content and modular software components that allow for collaborative development and adaptation by the academic community. - [sindresorhus/package-directory](https://awesome-repositories.com/repository/sindresorhus-package-directory.md) (252 ⭐) — Find the root directory of a Node.js project or npm package - [samsar4/ethical-hacking-labs](https://awesome-repositories.com/repository/samsar4-ethical-hacking-labs.md) (3,397 ⭐) — Ethical-Hacking-Labs is a comprehensive cybersecurity training curriculum and lab suite designed for learning penetration testing, network analysis, and offensive security techniques. It provides a structured environment for practicing the full attack lifecycle, from initial reconnaissance and scanning to exploitation and post-compromise analysis. The project provides instructional materials and guided exercises that cover specific technical domains, including open source intelligence research and network security courseware. It includes a practical workbook for identifying system vulnerabilities and practicing credential cracking and privilege escalation. The suite covers a broad range of security capabilities, including network scanning, vulnerability assessment, and traffic analysis. It also includes utilities for credential access through hash cracking, open source intelligence gathering, and the simulation of attack vectors using malicious payloads. The labs utilize virtualization environment setup to deploy pre-configured security distribution images within isolated virtual networks. - [sketchplugins/plugin-directory](https://awesome-repositories.com/repository/sketchplugins-plugin-directory.md) (3,385 ⭐) — Official Sketch Plugin directory - [voltagent/awesome-claude-code-subagents](https://awesome-repositories.com/repository/voltagent-awesome-claude-code-subagents.md) (21,906 ⭐) — This project provides a framework for managing multi-agent systems, designed to automate complex software development, infrastructure, and business workflows. It functions as a multi-agent workflow orchestrator that routes tasks to domain-specific workers while maintaining state persistence and infrastructure automation. By leveraging large language models, the system decomposes high-level objectives into actionable plans, ensuring that complex operations are executed with consistency and reliability. The framework distinguishes itself through its hierarchical agent registry and policy-driven tool access, which enforce security boundaries by restricting agent operations based on defined functional roles. It utilizes context-aware task routing to match incoming requests with specific agent capabilities and model performance profiles, while implementing deterministic fallback mechanisms to maintain operational continuity when agents encounter errors or context limits. This architecture allows for modular capability expansion and reproducible environment configurations through version-controlled templates. The system covers a broad capability surface, including automated technical documentation, cloud infrastructure management, and security auditing. It supports diverse domains such as API design, database optimization, and system reliability engineering, providing tools for incident response, performance monitoring, and compliance enforcement. These capabilities are integrated into a command-line interface that enables developers to search, fetch, and deploy specialized subagents directly from the repository. - [gitroomhq/postiz-app](https://awesome-repositories.com/repository/gitroomhq-postiz-app.md) (32,271 ⭐) — Postiz is an open-source social media management platform designed to centralize the scheduling, publishing, and analysis of content across diverse social networks, community forums, and blogging platforms. It functions as a unified hub where users can coordinate, review, and distribute content through a shared team workspace, while leveraging integrated artificial intelligence to assist in drafting text and generating multimedia assets. The platform distinguishes itself through a modular architecture that utilizes a provider-specific adapter pattern to ensure consistent content distribution across various external services. It incorporates an AI-driven tool execution model that connects natural language models to internal functions, enabling automated content generation and media configuration. Furthermore, the system provides a programmatic API gateway that allows external applications to interact with its scheduling and management features via structured payloads. Beyond core scheduling, the platform includes comprehensive tools for performance tracking, media storage abstraction, and collaborative workflows. It supports complex content strategies through features like multi-part thread scheduling and automated campaign execution, while maintaining secure identity management through OAuth-based mediation and support for external identity providers. The application is designed for self-hosting and can be deployed into containerized environments using provided configuration charts. - [astronvim/astronvim](https://awesome-repositories.com/repository/astronvim-astronvim.md) (14,355 ⭐) — AstroNvim is a modular Neovim distribution that functions as a comprehensive development environment. It provides a pre-configured framework for managing editor settings, plugin ecosystems, and language server integrations, effectively transforming a base text editor into a full-featured integrated development environment. The project distinguishes itself through a highly customizable Lua-based architecture that emphasizes modularity and performance. It enables users to manage complex editor configurations through a centralized, declarative system that supports lazy loading, community-maintained plugin specifications, and automated environment initialization. By treating the configuration directory as a standard project, it allows for granular control over editor behavior, UI components, and keybindings while maintaining the ability to isolate multiple editor instances. Beyond its core configuration capabilities, the project includes extensive tooling for language analysis, debugging, and workflow automation. It integrates language server protocols to provide real-time code intelligence, diagnostics, and refactoring, alongside a suite of utilities for session management, fuzzy-finding, and terminal integration. The interface is fully extensible, allowing for the composition of custom status lines, dashboard elements, and visual themes to suit specific development needs. The project is distributed as a Git-based repository, allowing users to clone and manage their development environment directly through standard version control workflows. - [z4nzu/hackingtool](https://awesome-repositories.com/repository/z4nzu-hackingtool.md) (77,515 ⭐) — This project is a comprehensive cybersecurity tool collection designed to support security research, penetration testing, and vulnerability assessment. It functions as a unified penetration testing suite, providing a centralized environment where professionals can access a wide range of offensive security utilities to identify system weaknesses and study attack vectors. The platform distinguishes itself through a modular architecture that aggregates disparate security scripts into a single, hierarchical command-line interface. It simplifies the management of these utilities by integrating external repositories, allowing users to fetch and organize third-party tools directly into a structured local directory. By utilizing a categorized menu system and shell-based process execution, the suite enables efficient navigation and direct invocation of specialized tools for tasks ranging from forensic analysis and reverse engineering to exploit development. The toolkit covers a broad spectrum of security domains, including web and wireless attack vectors, cloud security, payload creation, and social media analysis. It also incorporates automated environment setup to handle the installation of necessary system packages and language runtimes, ensuring compatibility across its diverse collection of utilities. - [mail-in-a-box/mailinabox](https://awesome-repositories.com/repository/mail-in-a-box-mailinabox.md) (15,343 ⭐) — Mail-in-a-Box is a self-hosted email server appliance that automates the deployment of SMTP, IMAP, and POP3 services on Linux. It functions as a complete suite including a DNS management server, a spam and abuse filter, and a web-based administrative control panel for managing users, aliases, and storage quotas. The project distinguishes itself through a high degree of automation for email security and authenticity. It automatically provisions and maintains SPF, DKIM, DMARC, and DNSSEC records to prevent domain spoofing, while managing the installation and rotation of TLS certificates and enforcing secure transport policies like DANE and MTA-STS. The system includes integrated tools for server health monitoring, network-level brute-force mitigation, and policy-driven spam filtering using greylisting and IP blacklists. It also provides data management capabilities such as system backups to S3-compatible object storage and the ability to serve static website content over HTTPS. - [fuzzdb-project/fuzzdb](https://awesome-repositories.com/repository/fuzzdb-project-fuzzdb.md) (8,819 ⭐) — fuzzdb is a collection of datasets designed for web application penetration testing and dynamic fuzzing. It provides a fuzzing payload dictionary, a resource discovery wordlist, and a fault injection dataset containing corrupted Unicode, null bytes, and escape codes to trigger application crashes and logic errors. The project includes a security filter bypass list featuring polyglots and encoded strings to evade web application firewalls and input validation filters. It also provides a comprehensive web application penetration testing dataset specifically for identifying flaws such as cross-site scripting, path traversal, and other common security vulnerabilities. The library covers a broad range of capabilities, including server configuration auditing, sensitive data discovery, and security filter evasion. It provides patterns to identify predictable resources, writable directories, and source disclosure vulnerabilities, as well as payloads for injecting OS commands, XPath, and remote file includes. - [a-h/templ](https://awesome-repositories.com/repository/a-h-templ.md) (10,358 ⭐) — Templ is a type-safe HTML templating engine and UI framework for Go. It provides a system for building reusable HTML components that compile into Go code for server-side rendering, ensuring type safety and compile-time validation of data and logic. The project features a dedicated language server that provides autocomplete and syntax validation for template files within supported code editors. It employs compile-time code generation to transform a custom template language into Go source code, enabling the creation of modular HTML fragments and logic blocks. The framework includes automated security mechanisms to prevent cross-site scripting through HTML escaping, CSS class and value sanitization, and resource URL validation. It supports various output targets, including streaming content to response writers for web interfaces or producing standalone files for static site generation. A command line interface is provided to handle the generation of Go source code and the formatting of markup and template files. - [adrianalbert/urban-environments](https://awesome-repositories.com/repository/adrianalbert-urban-environments.md) (0 ⭐) — This repository contains code related to the paper Using convolutional networks and satellite imagery to identify patterns in urban environments at a large scale. A slightly modified version of the paper appears in the proceedings of the ACM KDD 2017 conference. - [s0md3v/photon](https://awesome-repositories.com/repository/s0md3v-photon.md) (12,953 ⭐) — Photon is a command-line web crawler designed for security reconnaissance and information gathering. It systematically traverses websites to discover URLs, map domain infrastructure, and identify associated subdomains by retrieving DNS records. The tool distinguishes itself through its ability to perform deep content analysis, including the extraction of sensitive data such as API keys and authentication tokens using user-defined regular expressions. It supports offline inspection by cloning crawled web content to the local filesystem, allowing for structural analysis without additional network activity. The crawler utilizes multi-threaded execution to maximize throughput during discovery and supports proxy-aware routing to manage traffic origin. Its architecture is built for integration into automated security workflows, allowing users to pipe discovered metadata and extracted patterns directly to standard output or export results into structured files for further processing. - [fingerprintjs/fingerprintjs](https://awesome-repositories.com/repository/fingerprintjs-fingerprintjs.md) (27,334 ⭐) — Fingerprint is a visitor identification and fraud detection platform that generates persistent, unique identifiers by analyzing browser and device attributes. By extracting technical signals from the client environment, it enables reliable user tracking across sessions without relying on traditional cookies. The platform distinguishes itself through its focus on high-accuracy identification and security-first architecture. It employs edge-side proxying to bypass ad-blockers and privacy restrictions, ensuring consistent data collection. To maintain data integrity, it uses cryptographic payload sealing and server-side verification flows, which prevent tampering by ensuring that identification data is processed securely on the backend rather than solely on the client. Beyond core identification, the project provides a comprehensive suite for bot detection and security. It analyzes network metadata, device reputation, and behavioral patterns to identify malicious traffic, AI agents, and automated scrapers. These capabilities are supported by granular risk assessment tools, including confidence scoring and protection rulesets that allow for automated blocking of suspicious interactions. The platform offers extensive administrative and integration features, including multi-environment resource isolation, regional data residency controls, and programmatic API management. It supports diverse deployment environments through framework-specific SDKs, mobile integration, and automated proxy infrastructure deployment. - [httptoolkit/openapi-directory-js](https://awesome-repositories.com/repository/httptoolkit-openapi-directory-js.md) (0 ⭐) — This repo builds & bundles the OpenAPI Directory, so you can easily find, require and use any OpenAPI spec from the directory in your JS projects. - [dexidp/dex](https://awesome-repositories.com/repository/dexidp-dex.md) (10,902 ⭐) — Dex is an OpenID Connect provider and identity federation proxy that translates authentication signals from various upstream sources into a unified OpenID Connect interface. It functions as a multi-protocol identity broker, enabling client applications to implement a single standard while delegating user verification to external identity providers. The project distinguishes itself through a pluggable connector architecture that bridges disparate protocols including LDAP, SAML, and OAuth2. It provides specific integrations for services such as GitHub, Google, GitLab, and Microsoft, while offering the ability to normalize provider-specific attributes and resolve recursive group memberships into consistent identity tokens. The system covers broad capability areas including OAuth 2.0 client management, identity token issuance, and access filtering based on domains or group memberships. It also provides specialized gateway functionality for Kubernetes cluster authentication, mapping OIDC claims to Kubernetes identities for API server validation. Configuration and session state can be persisted across multiple backends, including SQL databases, etcd, or Kubernetes Custom Resource Definitions. - [fatoomre/calm-attack](https://awesome-repositories.com/repository/fatoomre-calm-attack.md) (0 ⭐) — Calm Attack is an open-source Flutter-based mobile application designed to be a lifeline for individuals experiencing Panic Attacks. Empowering you to reclaim your strength and find peace in the storm, this app offers scientifically-backed grounding exercises to help you regain control when… - [projectdiscovery/subfinder](https://awesome-repositories.com/repository/projectdiscovery-subfinder.md) (13,105 ⭐) — Subfinder is a security reconnaissance framework designed for subdomain enumeration and attack surface management. It functions as a discovery engine that identifies and maps internet-exposed infrastructure, cloud-hosted assets, and network ranges to maintain a comprehensive inventory of an organization's digital footprint. The project distinguishes itself through a modular, template-driven scanning engine that executes security checks against discovered assets. It leverages cloud-native asset discovery to query provider APIs and infrastructure metadata, while supporting distributed agent orchestration to parallelize discovery workloads across remote nodes. For dynamic web application analysis, the tool incorporates headless browser rendering to execute client-side code and capture visual state. The platform provides a broad capability surface for security operations, including asynchronous interaction monitoring to detect blind vulnerabilities and server-side request forgery. It features a domain-specific language for granular filtering of scan results and supports pipeline-oriented data streaming to integrate findings into external security tools and reporting systems. The software is implemented in Go and provides a command-line interface for executing discovery tasks and managing security workflows. - [honojs/hono](https://awesome-repositories.com/repository/honojs-hono.md) (30,994 ⭐) — Hono is a lightweight web framework built on Web Standard APIs that executes across JavaScript runtimes including Cloudflare Workers, Deno, Bun, and Node.js. - [llsourcell/a-guide-to-deepminds-starcraft-ai-environment](https://awesome-repositories.com/repository/llsourcell-a-guide-to-deepminds-starcraft-ai-environment.md) (0 ⭐) — This is the code for "A Guide to DeepMind's StarCraft AI Environment" by Siraj Raval on Youtube - [usestrix/strix](https://awesome-repositories.com/repository/usestrix-strix.md) (20,138 ⭐) — Strix is an automated security research and vulnerability scanning platform that leverages language models to orchestrate complex security analysis tasks. It functions as a comprehensive framework for penetration testing and continuous security integration, allowing users to embed automated vulnerability research directly into development pipelines or execute it within isolated, containerized environments. The platform distinguishes itself through a multi-agent orchestration engine that coordinates specialized autonomous agents to perform parallel security assessments. By integrating LLM-agnostic routing, it supports a wide range of local and cloud-based model providers, enabling users to tailor analysis depth and reasoning capabilities to their specific security requirements. This orchestration is complemented by the ability to inject structured knowledge packages into agents, allowing for highly targeted vulnerability research and customized testing methodologies. The system provides a broad capability surface that combines static code analysis with dynamic runtime testing. It includes integrated headless browser automation for simulating user behavior, proxy-based traffic interception for inspecting and replaying network communication, and infrastructure mapping tools for reconnaissance. These features are unified within a sandboxed environment that supports custom script execution, terminal access, and real-time telemetry export for auditing and reporting. The project is designed for integration into existing development workflows, offering features like incremental codebase analysis, secret detection, and pipeline-native exit code reporting. It provides a centralized interface for managing scan intensity, authenticated testing, and the generation of structured security reports with proof-of-concept evidence. - [coderamp-labs/gitingest](https://awesome-repositories.com/repository/coderamp-labs-gitingest.md) (13,979 ⭐) — Gitingest is a Git repository analysis and conversion service that transforms code repositories into structured plain-text summaries optimized for large language model consumption. It provides HTTP API endpoints and Python functions to integrate repository processing into AI pipelines and applications, with S3-compatible storage for persisting and retrieving generated digests. The service is packaged as a Docker container with all dependencies bundled for consistent deployment across environments. The project distinguishes itself through asynchronous processing of multiple repositories concurrently using a worker pool for high throughput, and the ability to stream repository digests via HTTP endpoints for real-time consumption in AI workflows. It includes comprehensive monitoring through Prometheus metrics and Sentry exception tracking to track performance and detect issues in digest generation workflows, while maintaining security best practices through non-root execution and vulnerability reporting mechanisms. Gitingest offers a command-line interface for triggering repository conversions without programming, along with development tools for faster iteration including hot reload support. The system is designed to preserve code hierarchy and snippets during repository conversion, ensuring the generated digests maintain the structural integrity of the original codebase for more accurate AI analysis. The project is implemented in Python and can be deployed as a containerized service in CI/CD pipelines with all dependencies included. - [joke2k/django-environ](https://awesome-repositories.com/repository/joke2k-django-environ.md) (3,159 ⭐) — Django-environ allows you to utilize 12factor inspired environment variables to configure your Django application. - [techarohq/anubis](https://awesome-repositories.com/repository/techarohq-anubis.md) (17,067 ⭐) — Anubis is a command-line security reconnaissance framework designed for subdomain enumeration and attack surface mapping. It functions as a utility for security professionals to identify, catalog, and visualize the external digital footprint of an organization by discovering all subdomains associated with a target domain. The tool distinguishes itself through a modular resolver pipeline that integrates passive reconnaissance from third-party security APIs and public certificate transparency logs. It combines this data with active discovery methods, including recursive DNS brute-forcing and algorithmic pattern-based permutation generation, to uncover hidden infrastructure that is not publicly indexed. To maintain efficiency during large-scale assessments, the software utilizes asynchronous concurrent scanning to perform thousands of simultaneous DNS lookups. A built-in deduplication engine normalizes and filters these results to provide a clean, unique list of discovered assets for further vulnerability research. - [goradd/maps](https://awesome-repositories.com/repository/goradd-maps.md) (53 ⭐) — map library using Go generics that offers a standard interface, go routine synchronization, and sorting - [subfinder/subfinder](https://awesome-repositories.com/repository/subfinder-subfinder.md) (13,859 ⭐) — Subfinder is a passive subdomain enumeration tool and DNS asset discovery utility designed for mapping the external attack surface of a domain. It functions as a passive reconnaissance framework that identifies subdomains by querying curated third-party data sources and APIs without interacting directly with the target infrastructure. The tool utilizes a modular provider interface to integrate various passive sources and employs concurrent request orchestration to manage simultaneous network queries. It includes wildcard DNS filtering to identify and remove catch-all records, ensuring the resulting list contains unique and valid hosts. The utility is designed for security toolchain integration, supporting pipeline-based data streaming through standard input and output chaining. It provides capabilities for multi-format result export and includes a software development kit to embed the enumeration engine into other applications.