GitHub – juliocesarfort/public-pentesting-reports: Curated list of public penetration test reports released by several consulting firms and academic security groups
各知名厂商渗透测试报告模板

GitHub – codejanus/ToolSuite: Security tools
安全工具合集

GitHub – mthbernardes/ARTLAS: Apache Real Time Logs Analyzer System
apache实时日志分析器（on Telegram, Zabbix and Syslog/SIEM）

GitHub – Nummer/Destroy-Windows-10-Spying: Destroy Windows Spying tool
Destroy-Windows-10-Spying

GitHub – rfxn/linux-malware-detect: Linux Malware Detection (LMD)
linux下恶意代码检测包

GitHub – facebook/osquery: SQL powered operating system instrumentation, monitoring, and analytics.
操作系统运行指标可视化框架

https://github.com/jipegit/OSXAuditor
Mac OS下取证工具

GitHub – cuckoosandbox/cuckoo: Cuckoo Sandbox is an automated dynamic malware analysis system
恶意代码分析系统

GitHub – Netflix/Scumblr
定期搜索及存储web应用，可搜漏洞讨论等等

GitHub – google/grr: GRR Rapid Response: remote live forensics for incident response
事件响应框架（focus on 远程取证）

GitHub – mozilla/MozDef: MozDef: The Mozilla Defense Platform
The Mozilla Defense Platform

GitHub – ossec/ossec-hids: OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
综合主机监控检测平台（包含主机防火墙，日志监控，SIEM等）

GitHub – Yelp/osxcollector: A forensic evidence collection & analysis toolkit for OS X
OS X远程取证与分析工具包

GitHub – mozilla/mig: Distributed & real time digital forensics at the speed of the cloud
分布式实时数字取证系统

GitHub – sleuthkit/sleuthkit: The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
Microsoft & Unix 文件系统及硬盘取证工具

https://github.com/OpenSCAP/openscap
Open Source Security Compliance Solution

https://github.com/wgliang/logcool开源准实时日志采集器

https://github.com/goldshtn/etracewindows实时ETW事件处理工具

GitHub – Microsoft/perfview: PerfView is a performance-analysis tool that helps isolate CPU- and memory-related performance issues.

CPU及内存相关性能分析工具