Hackerspaces (also hacklabs, hackspaces) are community-operated physical places, where people share their interest in tinkering with technology, meet and work on their projects, and learn from each other. https://hackerspaces.org/
UrBackup
“UrBackup is an easy to setup Open Source client/server backup system, that through a combination of image and file backups accomplishes both data safety and a fast restoration time.” https://www.urbackup.org
Mobile Verification Toolkit (MVT)
“Mobile Verification Toolkit (MVT) is a collection of utilities designed to facilitate the consensual forensic acquisition of iOS and Android devices for the purpose of identifying any signs of compromise. MVT’s capabilities are continuously evolving, but some of its key features include:”Mobile Verification Toolkit (MVT) is a collection of utilities designed to facilitate the consensual […]
Rootkit Scanners
rkhunter “rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of important files with known good ones in online databases, searching for default directories (of rootkits), wrong permissions, hidden files, suspicious strings in kernel modules, and special tests for Linux and […]
Lynis
“Lynis is a battle-tested security tool for systems running Linux, macOS, or Unix-based operating system. It performs an extensive health scan of your systems to support system hardening and compliance testing. The project is open source software with the GPL license and available since 2007.” Since Lynis is flexible, it is used for several different […]
CrackStation
“CrackStation is a security awareness project started by Defuse Security. Its purpose is to raise awareness about insecure password storage in web applications, and to provide guidance to implementors of user authentication systems. By making large hash lookup tables freely available to the public, we make it easier for security researchers to demonstrate why password […]
Hackers For Charity
“Hackers doing good.” https://hackersforcharity.org/
SpiderFoot
https://github.com/smicallef/spiderfoot
ITAM/ITAD Resources
ASCDI “The Association of Service, Communication, Data, and ITAD Providers is a not for profit association of companies that buy, sell, service, and recycle computer, telecom, and other technical equipment and solutions. In the year 2000 the ASCDI, CDLA, DDA, ECLAT and ITRA merged into one global IT support, leasing and sales organization. In 2012 […]
Zabbix and Zeek
Zabbix “Zabbix is an open-source software tool to monitor IT infrastructure such as networks, servers, virtual machines, and cloud services. Zabbix collects and displays basic metrics.” –Wikipedia https://www.zabbix.com/ Zeek “An Open Source Network Security Monitoring ToolZeek (formerly Bro) is the world’s leading platform for network security monitoring” “Flexible, open source, and powered by defenders.” https://zeek.org/
Microsoft Activation Scripts (MAS)
A Windows and Office activator using HWID / KMS38 / Online KMS activation methods, with a focus on open-source code and fewer antivirus detections. https://github.com/massgravel/Microsoft-Activation-Scripts PowerShell
JET
A Bat to EXE Converter https://github.com/lightning-speed/JET
Exploit-DB, VulDB, AND Vulners
Exploit-db The Exploit Database is a CVE compliant archive of public exploits and corresponding vulnerable software, developed for use by penetration testers and vulnerability researchers. Our aim is to serve the most comprehensive collection of exploits gathered through direct submissions, mailing lists, as well as other public sources, and present them in a freely-available and […]
Aircrack-ng
Aircrack-ng is a complete suite of tools to assess WiFi network security. It focuses on different areas of WiFi security: All tools are command line which allows for heavy scripting. A lot of GUIs have taken advantage of this feature. It works primarily on Linux but also Windows, macOS, FreeBSD, OpenBSD, NetBSD, as well as […]
Domain Info
https://observatory.mozilla.org/ https://ns.tools/ https://mxtoolbox.com/ https://dnschecker.org/ https://dnslytics.com/ https://dnsdumpster.com/ https://www.ipvoid.com/ https://osint.sh/ https://www.ipaddress.com/ https://blacklistchecker.com/ https://www.dnsblacklist.org/
Browser Extensions
Privacy/Security uBlock Origin Free, open-source ad content blocker. https://ublockorigin.com/ Decentraleyes Protects you against tracking through “free”, centralized, content delivery. https://decentraleyes.org/ Privacy Badger Privacy Badger is a browser extension that automatically learns to block invisible trackers. https://privacybadger.org/ Dark Reader Dark mode everywhere https://darkreader.org/ NoScript This browser extension allows JavaScript and other potentially harmful content to be […]
CISA and NIST
CISA CISA works with partners to defend against today’s threats and collaborates to build a more secure and resilient infrastructure for the future. https://www.cisa.gov/ CISA US-CERT https://www.cisa.gov/uscert Known Exploited Vunerabilites (KEV) Catalog https://www.cisa.gov/known-exploited-vulnerabilities-catalog Free Services and Tools https://www.cisa.gov/free-cybersecurity-services-and-tools NIST The National Institute of Standards and Technology (NIST) was founded in 1901 and is now part […]
7-Zip
7-Zip is free software with open source. The most of the code is under the GNU LGPL license. Some parts of the code are under the BSD 3-clause License. Also there is unRAR license restriction for some parts of the code. Read 7-Zip License information. You can use 7-Zip on any computer, including a computer […]
Python
Python is a programming language that lets you work quickly and integrate systems more effectively. Python is powerful… and fast;plays well with others;runs everywhere;is friendly & easy to learn;is Open. https://www.python.org/
LibreWolf
A custom version of Firefox, focused on privacy, security and freedom. This project is a custom and independent version of Firefox, with the primary goals of privacy, security and user freedom. LibreWolf is designed to increase protection against tracking and fingerprinting techniques, while also including a few security improvements. This is achieved through our privacy […]
Nikto
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index […]
w3af
w3af is a Web Application Attack and Audit Framework. The project’s goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities. https://w3af.org/
Wapiti
Wapiti allows you to audit the security of your websites or web applications.It performs “black-box” scans (it does not study the source code) of the web application by crawling the webpages of the deployed webapp, looking for scripts and forms where it can inject data.Once it gets the list of URLs, forms and their inputs, […]
RapidScan
It is quite a fuss for a pentester to perform binge-tool-scanning (running security scanning tools one after the other) sans automation. Unless you are a pro at automating stuff, it is a herculean task to perform binge-scan for each and every engagement. The ultimate goal of this program is to solve this problem through automation; […]
WPScan
The WPScan CLI tool is a free, for non-commercial use, black box WordPress security scanner written for security professionals and blog maintainers to test the security of their sites. The WPScan CLI tool uses our database of 38,379 WordPress vulnerabilitie https://wpscan.com/ https://wpscan.org/?s..= https://github.com/wpscanteam/wpscan https://www.kali.org/tools/wpscan/
Metasploit
The Metasploit Framework is a Ruby-based, modular penetration testing platform that enables you to write, test, and execute exploit code. The Metasploit Framework contains a suite of tools that you can use to test security vulnerabilities, enumerate networks, execute attacks, and evade detection. At its core, the Metasploit Framework is a collection of commonly used […]
Live Train/Bus Tracking
https://tracker.geops.ch/
Cain & Abel
Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols. https://github.com/xchwarze/Cain
Dstrike
Dstrike.com
ungoogled-chromium
ungoogled-chromium GitHub A lightweight approach to removing Google web service dependency Downloads (GitHub)
Mobile Basics
Blokada Blokada is the popular ad blocker and privacy app for Android and iOS. It’s being supported and actively developed by the amazing open source community. Signal Say “hello” to a different messaging experience. An unexpected focus on privacy, combined with all of the features you expect. AuroraOSS Aurora Apps Open-Source Software. Inspired byyou. Built […]
InfoCon
InfoCon is a community supported, non-commercial archive of all the past hacking related convention material that can be found. https://infocon.org/ http://w27irt6ldaydjoacyovepuzlethuoypazhhbot6tljuywy52emetn7qd.onion/
Vehicle Info
Vehiclehistory.com Vindecoded.com NICB VINCheck
Calyx Institute and Riseup
Calyx Institute Riseup
Computer Aided Design (CAD)
FreeCAD FreeCAD is an open-source parametric 3D modeler made primarily to design real-life objects of any size. Parametric modeling allows you to easily modify your design by going back into your model history and changing its parameters. https://www.freecadweb.org/ LibreCAD LibreCAD is a free Open Source CAD application for Windows, Apple and Linux. Support and documentation […]
RTL-SDR (RTL2832U Software Defined Radio)
HARDWARE: https://www.rtl-sdr.com/ https://airspy.com/ https://www.nooelec.com/ SOFTWARE: SDR++ Gqrx SDRangel SatDump sdrtrunk dump1090 OTHERS: https://awesomeopensource.com/projects/rtl-sdr
Alternate Frontends
YouTube Invidious Piped Beatbump (YouTube Music) Spotify psst Twitter Nitter Reddit Libreddit Teddit The Hacker News HackerWeb Others alternative-front-ends
sqlmap
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the […]
Nmap
Nmap (“Network Mapper”) is a free and open source utility for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available […]
Scanner/Radio Feeds
Broadcastify https://www.broadcastify.com/ RadioReference https://www.radioreference.com/
Live Satellite Tracking
https://satellitetracker.net/ https://zoom.earth/ https://www.n2yo.com/
Live Naval/Marine Tracking
https://www.vesselfinder.com/ https://www.marinetraffic.com
Live Flight Tracking
ADS-B Exchange Flightradar24 RadarBox FlightAware LiveATC
Competitive Hacking Sites
Hack The Box TryHackMe CTFtime
Bitmask
https://bitmask.net/ Bitmask is an open source application to provide easy and secure encrypted communication with a VPN. You can choose among different providers or start your own. The Bitmask application is designed to have a friendly interface with automatic configuration. You simply start the application, register with the compatible service provider of your choice, and […]
Search FCC Databases
https://www.fcc.gov/licensing-databases/search-fcc-databases Explore granular search interfaces into more than 40 specialized FCC databases such as radio call signs and equipment authorization.
U.S. Energry Atlas
https://atlas.eia.gov/ The U.S. Energy Atlas is a comprehensive reference for data and interactive maps of energy infrastructure and resources in the United States.
Web Editors
KompoZer KompoZer combines web file management and easy-to-use WYSIWYG (what you see is what you get) web page editing tools to help you create an attractive, professional-looking web site without needing to know HTML or web coding. BlueGriffon The next-gen Web and EPUB Editor based on the rendering engine of Firefox® openElement Pilot your website […]
Firewalls
PeerBlock PeerGuardian simplewall TinyWall Pi-Hole OPNsense pfSense Snort UFW (Uncomplicated Firewall)
Firefox Profilemaker
https://ffprofile.com/ This tool will help you to create a Firefox profile with the defaults you like. You select which features you want to enable and disable and in the end you get a download link for a zip-file with your profile template. You can for example disable some functions, which send data to Mozilla and […]
Web Application Scanner GUIs
OWASP Zed Attack Proxy (ZAP) https://www.zaproxy.org/ Vega https://subgraph.com/vega/
Remote Access
https://remmina.org/ https://rport.io/ https://mremoteng.org/ https://guacamole.apache.org/ https://www.freerdp.com/ http://xrdp.org/ https://tigervnc.org/ https://uvnc.com/ https://winscp.net https://filezilla-project.org/ https://www.chiark.greenend.org.uk/~sgtatham/putty/ http://www.9bis.net/
LibreOffice
LibreOffice is a free and powerful office suite, and a successor to OpenOffice.org (commonly known as OpenOffice). Its clean interface and feature-rich tools help you unleash your creativity and enhance your productivity. https://www.libreoffice.org/
PC Hardware Resources
SPECS: https://en.wikichip.org https://www.cpuid.com https://www.techpowerup.com https://www.notebookcheck.net https://laptopmedia.com https://specspro.net https://mobilespecs.net https://gadgetaz.com https://snlookup.com PARTS: https://www.waresphere.com https://www.impactcomputers.com https://cmicomputer.com Apple/Mac: https://everymac.com https://beetstech.com Chromebook: https://chromebookdb.com/ BIOS passwords: https://bios-pw.org Gamepads on Linux: AntimicroX
Live OSs and PEs (ISOs)
Hiren’s BootCD PE Linux Lite Windowsfx/Linuxfx Linux Mint ParrotOS/ParrotSec Kali Ubuntu Debian
DBeaver universal database tool
https://dbeaver.io
SSL/TLS Tests
https://observatory.mozilla.org/ https://www.ssllabs.com/ssltest/ https://www.fairssl.net/en/ssltest https://www.immuniweb.com/ssl/ https://geekflare.com/tools/tls-test
Aweosme Open Source
https://awesomeopensource.com/ Find Open Source By Searching, Browsing and Combining 571,474 Topics Across 59 Categories And 9,266,255 Projects On Github
Background Checks
https://www.cyberbackgroundchecks.com/ https://www.fastpeoplesearch.com
Electronic Frontier Foundation (EFF)
https://www.eff.org/ The leading nonprofit defending digital privacy, free speech, and innovation.
Atlas of Surveillance
https://atlasofsurveillance.org Documenting Police Tech in Our Communities with Open Source Research
iSpy: Open Source Camera Security Software
https://www.ispyconnect.com/ “A new video surveillance solution for the Internet Of Things.Available on Windows, Mac, Linux and ARM.” “Agent DVR is the only DVR solution that doesn’t need port forwarding.That means no fiddly router setup or network security compromise for remote access.UI works on all modern devices from phones to tablets and desktops.” VR MODE!
Bellingcat Radar Interference Tracker
https://ollielballinger.users.earthengine.app/view/bellingcat-radar-interference-tracker This map shows interference from ground based radar systems as red and blue streaks. Most of these are military radars. Click on the map to generate a historical graph of Radio Frequency Interference (RFI) at a particular location https://github.com/bellingcat/sar-interference-tracker “Many military radars interfere with open source satellite imagery when they’re turned on. A new […]
Online Web Scanners
https://www.virustotal.com/gui/home/upload https://www.virustotal.com/old-browsers/ (Minimal “Vanilla” interface) https://snyk.io/website-scanner/ https://quttera.com/website-malware-scanner
Online Device Tests
https://devicetests.com/
Guerrilla Mail disposable inbox
Guerrilla Mail – Disposable Temporary E-Mail Address https://www.guerrillamail.com
ISO tools
Ventoy https://www.ventoy.net Easy2Boot https://easy2boot.xyz Rufus https://rufus.ie
Tor
Browse Privately. Explore Freely. Defend yourself against tracking and surveillance. Circumvent censorship. https://www.torproject.org/ Tor, short for “The Onion Router,” is free and open-source software for enabling anonymous communication. It directs Internet traffic via a free, worldwide, volunteer overlay network that consists of more than seven thousand relays. Using Tor makes it more difficult to trace […]
ClamAV
Alternate scanners: ClamTK ClamWin Immunet Commercial Alternatives: Bitdefender Trend Micro Malwarebytes
BleachBit
https://www.bleachbit.org/ Clean Your System and Free Disk Space When your computer is getting full, BleachBit quickly frees disk space. When your information is only your business, BleachBit guards your privacy. With BleachBit you can free cache, delete cookies, clear Internet history, shred temporary files, delete logs, and discard junk you didn’t know was there. Designed […]
Bitwarden
https://bitwarden.com/
Open Proxy Space
https://openproxy.space/
OSINT Framework
https://osintframework.com/
Shodan and Cenys
Shodan https://www.shodan.io/ Censys https://search.censys.io/
Breach data checks
https://haveibeenpwned.com/ https://www.breachdirectory.org/ https://monitor.firefox.com/
Icecat
https://icecat.biz/ syndicator of product information via global open catalog with more than 12064057 data-sheets & 31286 brands
OpenCorporates
https://opencorporates.com/ The Open Database Of The Corporate World
Protonmail+VPN
https://protonmail.com/ secure email https://protonvpn.com/ secure VPN
Browser Tests
https://browserleaks.com/ https://www.ipaddress.com https://webbrowsertools.com/ https://www.dnsleaktest.com/ https://www.routersecurity.org/ https://coveryourtracks.eff.org/ https://centralops.net/co/ https://www.ip-lookup.org/ IP Lookup: Check, Find My IP Address Location https://www.ipvoid.com/
Windows
WINDOWS 11 Windows 11 iso WINDOWS 10 Windows 10 iso
Practice and Testing Sites
Vulnweb OverTheWire Hack This Site HellBound Hackers VulnHub scanme.nmap.org
RockYou! wordlists
RockYou 2009 RockYou was a company that developed widgets for MySpace and implemented applications for various social networks and Facebook. Since 2014, it has engaged primarily in the purchases of rights to classic video games; it incorporates in-game ads and re-distributes the games. In December 2009, the company experienced a data breach resulting in the […]
Password Lists and Dictionaries
SecLists keyspace.md (PSKracker) Kali wordlists
WIP
Work In Progress