A proposed standard that allows websites to define security policies.
☆1,855Dec 9, 2022Updated 3 years ago
Alternatives and similar repositories for security-txt
Users that are interested in security-txt are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Reconnaissance tool for GitHub organizations☆6,159Sep 20, 2022Updated 3 years ago
- Find interesting Amazon S3 Buckets by watching certificate transparency logs.☆1,803Feb 28, 2025Updated last year
- HTTPLeaks - All possible ways, a website can leak HTTP requests☆2,102Jan 3, 2026Updated 3 months ago
- SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)☆2,988Jun 28, 2024Updated last year
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,502Jan 28, 2026Updated 2 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- XRay is a tool for recon, mapping and OSINT gathering from public networks.☆2,296Jul 10, 2024Updated last year
- This tool can be used to brute discover GET and POST parameters☆1,393Aug 24, 2019Updated 6 years ago
- A Tool for Domain Flyovers☆5,921May 22, 2022Updated 3 years ago
- A toolset to track and organize output of reconnaissance tools☆348Jan 3, 2018Updated 8 years ago
- DNS Takeover tool written in Go☆2,046Mar 16, 2026Updated last month
- ☆2,320Dec 8, 2023Updated 2 years ago
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆162Apr 24, 2025Updated 11 months ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,624Feb 8, 2025Updated last year
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆304Oct 14, 2018Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren…☆9,236Oct 4, 2023Updated 2 years ago
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,104Apr 9, 2026Updated last week
- Security Tool to Look For Interesting Files in S3 Buckets☆1,459Apr 10, 2024Updated 2 years ago
- Testing TLS/SSL encryption anywhere on any port☆8,983Apr 9, 2026Updated last week
- Find secrets with Gitleaks 🔑☆25,935Mar 25, 2026Updated 3 weeks ago
- An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the r…☆3,268Nov 20, 2025Updated 4 months ago
- A curated list of the most common and most interesting robots.txt disallowed directories.☆1,484Aug 22, 2022Updated 3 years ago
- A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications☆2,205Dec 25, 2020Updated 5 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆628Feb 5, 2019Updated 7 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- A Well-Known URL for Changing Passwords☆907Feb 12, 2025Updated last year
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,483Jan 9, 2025Updated last year
- Probe a rendering engine for vulnerabilities and other features☆368Oct 13, 2021Updated 4 years ago
- A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform☆164Sep 14, 2024Updated last year
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,568Jul 21, 2025Updated 8 months ago
- The Most Comprehensive Docker Security Scanner☆1,535Updated this week
- Nginx configuration static analyzer☆8,550Jul 28, 2024Updated last year
- Nameserver DNS poisoning attacks made easy☆525Feb 26, 2017Updated 9 years ago
- Checklist of the most important security countermeasures when designing, testing, and releasing your API☆23,209Feb 10, 2026Updated 2 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A script to enumerate virtual hosts on a server.☆691Dec 28, 2017Updated 8 years ago
- Analyze the security of any domain by finding all the information possible. Made in python.☆1,862Dec 29, 2022Updated 3 years ago
- Most advanced XSS scanner.☆14,891Apr 26, 2025Updated 11 months ago
- Memorable site for testing clients against bad SSL configs.☆2,998May 16, 2024Updated last year
- Infection Monkey - An open-source adversary emulation platform☆6,986May 1, 2025Updated 11 months ago
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.☆3,954Feb 28, 2025Updated last year
- A Burp Suite content discovery plugin that add the smart into the Buster!☆378Oct 12, 2020Updated 5 years ago