Awesome List Updates on Aug 31 - Sep 06, 2020

47 awesome lists updated this week.

🏠 Home · 🔍 Search · 🔥 Feed · 📮 Subscribe · ❤️ Sponsor

1. ALL About RSS

an IMAGE to explain what RSS is

• The Power of RSS: an image

a VIDEO to explain what RSS is

• RSS Made Easy

a WEBPAGE (in English) to explain what RSS is

• Wikipedia: RSS

a WEBPAGE (in Chinese) to explain what RSS is

• 如何使用 RSS

• RSS 是干什么的？

• RSS 订阅傻瓜式教程

• RSS - 高效率的阅读方式

• RSS 工具和应用场景

Apps / Outline Processor Markup Language

• feeder ^{340, 446, , 783}

• Super Simple RSS Reader (ssRSS Reader)

• RSS Menu

• Aktuell

• Web Subscriber

Hosted Readers / Outline Processor Markup Language

• Feed Wrangler

• weloverss ⁷⁸⁰

• Rivered ⁷⁸⁵

Terminal-based / programmable RSS readers / Outline Processor Markup Language

• neix (⭐200) ⁷⁸⁸

Telegram / Telegram RSS bots

• EventsAggregatorBot

🔱 Workflow Automation / 酷Q Plugin

• IFTTT ^{260, 436, 561, 784}

universally from / search results

• Google Alerts ^{303, 784}

RSS2KINDLE / Docsify

• Calibre ⁷⁸¹

RSS2NEWSLETTER / Docsify

• Feedbutler ⁷⁸⁹

RSS2WIDGET / For browser

• Epiboard (⭐335) ⁷⁸²

RSS2DISCORD / RSS2GitHubProfile

• MonitoRSS ⁷⁸⁷

Multi-subject / Crypto or Blockchain relevant

• Reabble.cn 推荐的热门订阅源

• theChenWen 整理的 4 份 OPML ⁷⁷⁵

Tutorials when knowing how to run code / Crypto or Blockchain relevant

• For Python coders ^{166, 330, 356, 367, 565, 776}

Aggregators of Podcasts / Podcast Navigation / Crypto or Blockchain relevant

• 分享你人为值得订阅的内容 by Notion中文社区

2. Awesome R Learning Resources

Topic Areas / Uncategorized

• Subreddit - r/Rlanguage - R Programming Language - A Reddit subreddit focused on implementing the R programming language for statistics and data science.

• Subreddit - r/programming - The R Project for Statistical Computing - A Reddit subreddit focused on using R for statistical computing.

Blogs / Uncategorized

• Avery Robbins - Avery Robbins loves to learn and to share useful or awesome things that have benefited him personally. This website is a tool for him to actively do just that: share knowledge, ideas, and tips that are helpful.

• Tony ElHabr - Tony ElHabr is passionate mostly about energy markets and sports analytics. His blog provides detailed tutorials, project explanations, and presentations.

• Data meets Narrative - Rebecca Barter enjoys making sense of complex, messy and sometimes nonsensical datasets, such as electronic health records, and insurance claims. Her dual passions are explaining “seemingly complicated” concepts to others in plain English, and exploring and uncovering the stories that underlie complex datasets.

• HighlandR - John Mackintosh's blog is a place for him to showcase demonstrations or workshops, notes he's learned at work, chart makeovers, and techniques and technology that he doesn't currently use in his role.

• Julia Silge - Julia Silge is a data scientist and software engineer at RStudio where she work on open source modeling tools. She is passionate about making beautiful charts, the statistical programming language R, Jane Austen, black coffee, and red wine.

• rweekly - Weekly Updates from the Entire R Community by Bruce Zhao, Colin Fay, Eric Nantz, Hao Zhu, Jon Calder, Jonathan Carroll, Maëlle Salmon, Ryo Nakagawara, and Wolfram Qin.

• r-bloggers - R-Bloggers.com was created by Tal Galili and is a blog aggregator of content contributed by bloggers who write about R (in English). The site helps R bloggers and users to connect and follow the R blogosphere.

• Ryo Nakagawara - Ryo Nakagawara is a Data Scientist and has been doing work as both a reporting analyst and a software developer in R and SQL to improve ACDI and VOCA data pipelines, create R packages, reproducible reports, dashboards, and Shiny apps to communicate how his projects worldwide are progressing.

• Statistics Globe - Joachim Schork started this platform to share his statistical know-how and to improve his own statistical skills by discussing with other statisticians and programmers.

Books / Uncategorized

• A Sufficient Introduction to R - This book is intended to guide people that are completely new to programming along a path towards a useful skill level using R. Author: Derek L. Sonderegger.

• An Introduction to Statistical Learning - This book provides an introduction to statistical learning methods. Authors: Gareth James, Daniela Witten, Trevor Hastie and Robert Tibshirani.

• An Introduction to R - This introduction to R is derived from an original set of notes describing the S and S-Plus environments written in 1990–2 by Bill Venables and David M. Smith when at the University of Adelaide.

• Exploratory Data Analysis with R - This book covers the essential exploratory techniques for summarizing data with R. These techniques are typically applied before formal modeling commences and can help inform the development of more complex statistical models. Author: Roger D. Peng.

• ggplot2: Elegant Graphics for Data Analysis - This book provides a hands-on introduction to ggplot2 with lots of example code and graphics. It also explains the grammar on which ggplot2 is based. Author: Hadley Wickham.

• Introduction to R & Spatial Data with Raster and Terra - This document provides a concise introduction to R. It emphasizes what you need to know to be able to use the language in any context. Author: Professor Robert Hijmans.

• Learning Statistics with R - Learning Statistics with R covers the contents of an introductory statistics class, as typically taught to undergraduate psychology students, focusing on the use of the R statistical software. Author: Danielle Navarro.

• Modern R with the tidyverse - The idea of Chapters 1 to 7 is to make you efficient with R as quickly as possible, especially if you already have prior programming knowledge. Starting with Chapter 8 you will learn more advanced topics, especially programming with R. Author: Bruno Rodrigues.

• Practical Regression and Anova using R - The emphasis of this text is on the practice of regression and analysis of variance. The objective is to learn what methods are available and more importantly, when they should be applied. Author: Julian Faraway.

• Practicals and Exercises - This series of exercises reviews some of the content discussed during the author's lectures, and introduces some other basic concepts about working with data in R. Author: Charles DiMaggio, PhD.

• R Packages - In this book you will learn how to turn your code into packages that others can easily download and use. Author: Hadley Wickham.

• R Programming for Data Science - This book brings the fundamentals of R programming to you, using the same material developed as part of the industry-leading Johns Hopkins Data Science Specialization. Author: Roger Peng.

• Statistical Inference via Data Science - This is intended to be a gentle introduction to the practice of analyzing data and answering questions using data the way data scientists, statisticians, data journalists, and other researchers would. Authors: Chester Ismay and Albert Y. Kim.

• Text Mining with R - This book serves as an introduction of text mining using the tidytext package and other tidy tools in R. Authors: Julia Silge and David Robinson.

• The Art of R Programming - This book is for those who wish to learn about developing software in R. Author: Norman Matloff.

• The R Inferno - A book about trouble spots, oddities, traps, and glitches in R. Author: Patrick Burns.

• The R Language - An introduction to R written by the authors of the R language.

Podcasts / Uncategorized

• Not so Standard Deviations - A data science podcast where Roger Peng and Hilary Parker talk about the latest in data science and data analysis in academia and industry.

• The R-Podcast - Practical advice on how to take advantage of R to accomplish innovative and robust data analyses. Hosted by Eric Nantz.

3. Awesome Earth

Carbon Reduction

• Patch - Patch is the API for negative emissions. Developers can use Patch's API to make any transaction carbon neutral with a wide range of negative emission methods (e.g. direct air carbon capture, bio-oil geosequestration, enhanced weathering, reforestation and more).

4. Awesome Elm

Learning Guides

• Elm patterns - A collection of common patterns in Elm.

5. Awesome Eslint

Plugins / CSS in JS

• CSS-modules (⭐153) - Lint undefined or unused rules for css modules.

• Styled Components
  • Better Styled Components (⭐66) - Auto fixable ESlint's rules for styled components.
  • styled-components-a11y (⭐151) - A11y for Styled Components.

6. Public Apis

Development

• API: MicroENV

  Description: Fake Rest API for developers

  Auth: No

  HTTPS: Yes

  CORS: Unknown

Government

• API: Brazilian Chamber of Deputies Open Data

  Description: Provides legislative information in Apis XML and JSON, as well as files in various formats

  Auth: No

  HTTPS: Yes

  CORS: No

7. Awesome Godot

GDScript/C# editor support / Godot version unknown

• Emacs (⭐345) - Syntax highlighting, code folding, indentation and autocompletion.

• Vim (⭐545) - Syntax highlighting, autocompletion and linting using the LSP server provided by the Godot editor. Also supports the Godot shader language.

8. Awesome Interview Questions

Programming Languages/Frameworks/Platforms / Angular

• Angular Interview Questions (2020)

Programming Languages/Frameworks/Platforms / JavaScript

• Javascript Interview Questions and Answers (2020)

9. Awesome Jupyter

Rendering/Publishing/Conversion

• nbdev (⭐5.1k) - Develop, package and distribute Python packages to PyPI using Jupyter as a Literate Programing environment.

10. Awesome Android Ui

List / Grid

• Name: Kiel - Declarative RecyclerView Adapters (⭐371)

  License: Apache License V2

  Demo:

SeekBar

• Name: RangeSeekBar (⭐2.6k)

  License: Apache License V2

  Demo:

Other

• Name: CircleTimer (⭐32)

  License: Apache License V2

  Demo:

11. Awesome Security

Network / Scanning / Pentesting

• monsoon (⭐484) - Very flexible and fast interactive HTTP enumeration/fuzzing.

12. Awesome Actions

GitHub Tools and Management / Docker Container Actions

• Create/Update/Delete a GitHub Wiki Page Based on Any File (⭐82)

• Check GitHub Status in your Workflow (⭐39)

• Manage Labels on GitHub (create/rename/update/delete) as Code (⭐151)

Utility / Docker Container Actions

• Upload and Scan Files with VirusTotal (⭐186)

• Import a GPG Key (⭐352)

• Compress with UPX (⭐61) - The Ultimate Packer for eXecutables.

• Pull the New Go Module Version Into the Proxy Cache (⭐26) - Ensures the latest version of your Go module is in the proxy cache. Also updates the pkg.go.dev documentation upon release.

• Delete Run Artifacts - Deletes all artifacts at the end of a workflow run.

• GitHub Environment Variables Action (⭐188) - Expose environment variables such as the branch/tag name, repository slug, and ref slug.

• GitHub Action Locks (⭐16) - Guarantee atomic execution of your GitHub Action workflows.

Utility / Dependencies

• Install NPM Dependencies with Caching (⭐668)

• Highlight New NPM Dependencies (⭐27) - Comments on pull requests newly added NPM dependencies information.

• Cache NPM Dependencies (⭐19)

• Cache Yarn Dependencies (⭐92)

Static Analysis / Linting

• Validate Fastlane Supply Metadata Against the Play Store Guidelines (⭐25)

Pull Requests / Code Coverage

• Set PR Reviewers Based on Assignees (⭐123)

• Open or Update PR on Branch Push (with Branch Selection) (⭐173)

• Automatically Rebase a PR (⭐697)

• Label PR once it has a Specified Number of Approvals (⭐192)

• Add Labels to a PR based on Matched File Patterns (⭐63)

• Auto-Approve PRs (⭐448)

• Automatically add Reviewers to PR based on the Configuration File (⭐351)

• Add Labels to a PR based on Branch Name Patterns (⭐258)

• Add Labels to a PR based on Total Size of the Diff (⭐92)

• Automatically merge PRs That Are Ready (⭐892)

• Verify That PRs Contain a Ticket Reference (⭐76)

• Create a PR for Changes to your Repository in the Actions Workspace (⭐2.4k)

• Lint a PR (⭐120)

• ChatOps for PRs (⭐75)

• Prefix Title and Body of a PR Based on Text Extracted from Branch Name (⭐82)

• Merge Pal - Automatically Update and Merge PRs (⭐32)

• Pull Request Stuck Notifier

• Ticket Check Action (⭐50) - Automatically add a ticket or issue number to the start of all Pull Request titles.

• Pull Request Landmines (⭐33)

• Annotate a GitHub Pull Request Based on a Checkstyle XML-Report (⭐195)

• Pull Request Stats (⭐382) - Print relevant stats about reviewers.

GitHub Pages / Code Coverage

• Deploy to GitHub Pages with Advanced Settings (⭐480)

Notifications and Messages / Code Coverage

• Send an SMS from GitHub Actions using Clockworksms (⭐3)

Deployment / Docker

• Convert Branch or Tag Name Into Docker-Compatible Image Tag (⭐5)

• Update a Container Repository Description From README.md - Supported Registries: Docker Hub, Quay, Harbor.

Deployment / Kubernetes

• Create a Kubernetes Cluster for Testing Using Krucible (⭐4)

Machine Learning Ops / Terraform

• Automatically Dockerize A Data-Science Repo As A Jupyter Server (⭐145)

• Azure Machine Learning With GitHub Actions (⭐130)

13. Awesome Fp Js

Libraries

• omg-curry (⭐137) - Comprehensive Curry Library with Operator Curry, Curry from functions, Decurry and Infifnite Curries.

14. Awesome Ruby

Image Processing

• ImageProcessing (⭐901) - High-level image processing wrapper for libvips and ImageMagick/GraphicsMagick

15. Awesome Ansible

Official resources

• Latest Ansible Documentation - Latest user guide and documentation for Ansible.

Tutorials

• Ansible Tutorial by leucos (⭐2.3k) - 12 Step Tutorial for Ansible.

• Ansible TopTechSkills.com Tutorial Series on Ansible - Tutorials on how to Install and use Ansible.

Videos

• Ansible YouTube Channel - Official Ansible YouTube channel.

• Introduction to Ansible - Introduction to Ansible by Cloud Academy.

Tools

• Mitogen for Ansible - Speed up Ansible substantially with Mitogen.

• Molecule - Molecule aids in the development and testing of Ansible roles.

• Excel Ansible Inventory (⭐100) - Turn any Excel Spreadsheet into an Ansible Inventory.

16. Awesome Prisma

🦺 Community Prisma Tools

• Schematics to add Prisma support to a NestJS application (⭐25)

17. Awesome Lockpicking

Locksport associations and organizations

• Sportsfreunde der Sperrtechnik - Deutschland e.V. - German lock picking sports club who hosts the german lock picking masters and offers workshops on how to pick locks.

Novel lock attack techniques and research

• SpiKey - Acoustic-based physical key inference.

18. Awesome Python

Science

• SimPy - A process-based discrete-event simulation framework.

19. Awesome Smart Tv

Testing / Official resources

• Suitest - Test automation solution for Smart TVs, gaming consoles, streaming sticks etc.

20. Awesome Web Security

Webshell / Server-Side Request Forgery

• PhpSploit (⭐2.4k) - Full-featured C2 framework which silently persists on webserver via evil PHP oneliner by @nil0x42.

21. Awesome Stock Resources

Icons / Icons Packages and Collections

• Heroicons - ©️ Beautiful, free SVG icons from the makers of Tailwind CSS.

22. Awesome Firebase

Mobile

• 🔌 FlutterFire (⭐9k) - Collection of Firebase plugins for Flutter apps.

23. Awesome Mac

Utilities / Productivity

• iCMD - Fuzzy menubar search and vim/easymotion emulation which works globally for every native MacOS app.

24. Awesome Appimage

AppImage consumption tools / Linux distributions

• Deepin - When you double-click an AppImage or any other executable file that lacks execute permissions, a user-friendly dialog explains the situation and asks for your permission to set the execute permission and execute the executable.

• Nitrux - Promotes the use of AppImage as the main format for getting applications, has a built in app center featuring AppImages.

AppImage developer tools / Templates

• mini-qml (⭐47) - Minimal Qml application template with deployment for Linux (AppImage), Windows, macOS and WebAssembly.

25. Awesome Jmeter

Automation / Conversion

• swaggerjmx (⭐114) - Tool to convert Swagger UI specification into JMeter test plans.

26. Awesome Regression Testing

Blog posts (a-z↓)

• theheadless.dev - Blog with practical guides and runnable examples on Playwright and Puppeteer.

27. Awesome Quant

Python / Indicators

• finta (⭐2.2k) - Common financial technical analysis indicators implemented in Pandas.

Python / Trading & Backtesting

• Pandas TA - Pandas TA is an easy to use Python 3 Pandas Extension with 115+ Indicators. Easily build Custom Strategies.

28. Colorful

Color Palettes / Web App

• ColorsWall - Place to store your color Palettes and generate tool.

29. Awesome Tall Stack

Examples

• 🔓 aw-studio.de - repository - Built using Laravel & Tailwind CSS.

• 🔓 driesvints.com - repository (⭐74) - Built using Laravel & Tailwind CSS.

• 🔓 fullstackbelgium.be - repository (⭐17) - Built using Laravel & Tailwind CSS.

• 🔓 fullstackeurope.com - repository (⭐39) - Built using Laravel, Alpine.js & Tailwind CSS.

• 🔓 novapackages.com - repository (⭐337) - Discover new Laravel Nova packages.

• 🔐 pingping.io - Website uptime && SSL monitoring.

30. Awesome Engineering Team Management

Career / Presentations

• My questions for prospective employers (Director/VP roles) - Be prepared to ask them as a recruiter or being asked about them for senior management roles.

Career / Performance Reviews

• Incentive Pay Considered Harmful - “Incentives (or bribes) simply can't work in the workplace. (…) Most software managers have no choice but to go along with performance review systems that are already in place. If you're in this position, the only way to prevent teamicide is to simply give everyone on your team a gushing review”.

• “If anything in your performance review is a surprise, then I have failed as a manager.” (source).

• “This is what I loved about working at Netflix. We didn't have performance reviews. It was assumed that your performance was good to excellent, otherwise you wouldn't be working there anymore. You had a constant feedback loop with your manager on performance, but nothing was ever formal.” (source).

• “The system a software developer works in shapes their performance so much more than individual differences.” (source).

31. Awesome Lowcode

Automation

• Appian - Discover the power of low-code automation.

Visual programming

• Softr - From zero to a website in 5 minutes, using building blocks.

32. Open Source Flutter Apps

Contents / Finance

• Bank Git (⭐36) - An app to manage bank account by breaking it into branches by Yash Johri.

33. Awesome Prometheus

Blog posts and opinions

• Alerting issues with Alertmanager - Addressing alert flapping and duplicates in Alertmanager by Ali Sattari.

34. Awesome Bigdata

Videos

• Data warehouse schema design - dimensional modeling and star schema - Introduction to schema design for data warehouse using the star schema method.

35. Awesome Static Website Services

Search / Provided by the Host

• Jets.js - Native CSS search engine

36. Awesome Swift

UI / Barcode

• Arale (⭐46) - A custom stretchable header view for UIScrollView or any its subclasses with UIActivityIndicatorView support for content reloading.

• BetterSafariView (⭐627) - A better way to present a SFSafariViewController or start a ASWebAuthenticationSession in SwiftUI.

37. Awesome Vue

Resources / Tutorials

• Vue.JS ile NASA API'ını Kullanarak Veri Çekme on YouTube

Resources / Examples

• VueJS Example Projects on Github

Projects Using Vue.js / Apps/Websites

• DevSnap.me - A website that helps web developers find tons of free and open source HTML, CSS, and JavaScript assets.

Components & Libraries / UI Components

• vue-quintable (⭐30) - A responsive and highly configurable table based on Vue 2.x and Bootstrap 4.x

Components & Libraries / UI Utilities

• vue-lazy (⭐3) - Lightweight Image/Picture lazyload based on Intersection API

38. Webcomponents the Right Way

Case Studies

• Web Development At Scale: Composable Applications With Web Components

Components

• <api-viewer> - API documentation and live playground for Web Components.

• <chess-board> - Standalone chess board web component.

• <css-doodle> - Web component for drawing patterns with CSS.

• <dark-mode-toggle> - Custom element that allows to create a dark mode toggle or switch.

• <emoji-picker> - Lightweight emoji picker, distributed as a web component.

• <file-viewer> - Web component built with Svelte to view files.

• <json-viewer> - Web component to visualize JSON data in a tree view.

• <lite-youtube> - Lite YouTube embed with a focus on visual performance.

• <midi-player> - MIDI file player and visualizer web components.

• <model-viewer> - Web component for rendering interactive 3D models.

• <progressive-image> - Custom element to progressively enhance image placeholders.

• <range-slider> - Accessible range slider custom element with keyboard support.

• <rapi-doc> - Web component for creating documentation from OpenAPI Specification.

• <shader-doodle> - Web component for writing and rendering shaders.

• <trix-editor> - Rich text editor custom element for everyday writing.

• <web-vitals> - Bring web vitals (⭐8.1k) quickly into your page using custom elements.

Component Libraries

• Warp View (⭐8) - Collection of charting web components for Warp 10.

Design Systems

• Lyne Components (⭐55) - Building blocks of the Lyne Design System are based on Web Components.

Class Based

• Panel (⭐277) - Web Components + Virtual DOM: web standards for powerful UIs.

39. Awesome Unity

Frameworks

• uFrame (Paid) - Create maintainable games faster, better, more stable, and consistent than ever before.

Tips and Tricks

• Unity Labs' Super Science (⭐726) - Gems of Unity Labs for user education.

40. Awesome Robotic Tooling

Sensor Processing / Machine Learning

• tf-agents (⭐2.9k) - A reliable, scalable and easy to use TensorFlow library for Contextual Bandits and Reinforcement Learning.

Simultaneous Localization and Mapping / Vector Map

• gdal (⭐5.4k) - GDAL is an open source X/MIT licensed translator library for raster and vector geospatial data formats.

Network and Middleware / Controller Area Network

• canopen (⭐492) - A Python implementation of the CANopen standard. The aim of the project is to support the most common parts of the CiA 301 standard in a Pythonic interface.

41. Awesome Geek Podcasts

In English

• Azure Friday - Scott Hanselman sits down with the actual engineers who build Azure on his journey to learn how to program the cloud. No marketing, no BS, just two engineers and a laptop in short manageable chunks.

• Bootstrapped - Both Ian and Andrey are experienced startup founders, both have had major blows and successes in their career. You can learn a lot listening to them.

• Defensive Security Podcast - Defensive Security is a Cyber Security Podcast covering breaches and strategies for defense.

• DevelopersHangout - Two Developers talk about challenges, articles, news, books and other podcasts that came across their radar every 2 weeks. Laravel, PHP are two key topics, and other great podcasts like the ones listed above.

• Eat Sleep Code Podcast - On the show we’ll be talking to passionate people about a wide range of developer-related topics.

• Surveillance Report - A weekly security and privacy news roundup to keep you up-to-speed on important updated in our digital world. Uploaded every weekend!.

• The Bug Bounty Podcast - A Podcast about bugs, bounties and its researchers. Hosted by Fisher.

• The CyberWire Daily - The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also included interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.

• The Cybrary Podcast - It discusses about industry leaders and professionals from all aspects on the cybersecurity and IT fields give insight into how they got where they are today and what new and emerging technology we should be taking notice of.

42. Awesome Blazor

2D/3D Rendering engines / Others

• Stl.Fusion (⭐1.9k) - .NET Core and Blazor library that attempts to dramatically improve the way we implement real-time and high-load services by introducing a novel kind of "computed observables" - immutable, thread-safe, and most importantly, almost invisible for developers. Samples (⭐164). Overview (⭐1.9k).

• Blazor-DragDrop (⭐418) - Easy-to-use Drag and Drop library for Blazor.

• BlazorTransitionableRoute (⭐177) - Allows current and previous route to exist enabling transition animations of UI/UX design systems.

• Blazor.Grids (⭐46) - Component library for CSS grids with extra features, such as moving and resizing interactively. Create your own dashboard with ease. (Demo).

• Blazor.TreeViews (⭐74) - Component library for tree views. (Demo).

Tools & Utilities / Others

• Blazor I18n/Localization Text (⭐275) - Localizing contents text in Blazor (Demo).

• MvvmBlazor (⭐244) - BlazorMVVM is a small framework for building Blazor and BlazorServerside apps. With it's simple to use MVVM pattern you can boost up your development speed while minimizing the hazzle to just make it work.

43. Awesome Opensource Apps

Laravel

• Name: Tinre (⭐72)

  Description: A fast and powerful URL Shortener built with Laravel, VueJS, and Tailwind CSS.

  Link: https://github.com/devpri/tinre (⭐72)

  :

44. Awesome Libgdx

Resources / Algorithms and AI

• Simple Graphs (⭐48) - A java library for graph data structures and algorithms (including fast pathfinding).

Resources / Physics

• jbump (⭐35) - Easy to implement AABB collision detection useful for platformers and other simple 2D games.

45. Awesome Cpp

JSON

• jsoncons (⭐781) - A C++ header-only library for JSON and JSON-like binary formats with JSONPointer, JSONPatch, JSONPath and JMESPath. [Boost]

46. Awesome Aws

Open Source Repos / Lambda

• lambda-refarch-webapp 🔥🔥🔥🔥 (⭐1.6k) - Reference Architecture for creating a Web Application.

Open Source Repos / Security

• salesforce/policy_sentry 🔥🔥🔥🔥 (⭐2.1k) - IAM Least Privilege Policy Generator.

47. Awesome Pentest

Android Utilities

• cSploit - Advanced IT security professional toolkit on Android featuring an integrated Metasploit daemon and MITM capabilities.

• Fing - Network scanning and host enumeration app that performs NetBIOS, UPnP, Bonjour, SNMP, and various other advanced device fingerprinting techniques.

Anonymity Tools

• What Every Browser Knows About You - Comprehensive detection page to test your own Web browser's configuration for privacy and identity leaks.

Books / Tor Tools

• Android Hacker's Handbook by Joshua J. Drake et al., 2014

• BTFM: Blue Team Field Manual by Alan J White & Ben Clark, 2017

• Car Hacker's Handbook by Craig Smith, 2016

• RTFM: Red Team Field Manual by Ben Clark, 2014

• The Database Hacker's Handbook, David Litchfield et al., 2005

• The Mac Hacker's Handbook by Charlie Miller & Dino Dai Zovi, 2009

• The Mobile Application Hacker's Handbook by Dominic Chell et al., 2015

• iOS Hacker's Handbook by Charlie Miller et al., 2012

CTF Tools / Malware Analysis Books

• CTF Field Guide - Everything you need to win your next CTF competition.

• Ciphey (⭐20k) - Automated decryption tool using artificial intelligence and natural language processing.

Conferences and Events / Malware Analysis Books

• CTFTime.org - Directory of upcoming and archive of past Capture The Flag (CTF) competitions with links to challenge writeups.

Exfiltration Tools / Zealandia

• DET (⭐829) - Proof of concept to perform data exfiltration using either single or multiple channel(s) at the same time.

• Iodine - Tunnel IPv4 data through a DNS server; useful for exfiltration from networks where Internet access is firewalled, but DNS queries are allowed.

• TrevorC2 (⭐1.3k) - Client/server tool for masking command and control and data exfiltration through a normally browsable website, not typical HTTP POST requests.

• dnscat2 (⭐3.6k) - Tool designed to create an encrypted command and control channel over the DNS protocol, which is an effective tunnel out of almost every network.

• pwnat (⭐3.6k) - Punches holes in firewalls and NATs.

• tgcd - Simple Unix network utility to extend the accessibility of TCP/IP based network services beyond firewalls.

Exploit Development Tools / Zealandia

• Magic Unicorn (⭐3.8k) - Shellcode generator for numerous attack vectors, including Microsoft Office macros, PowerShell, HTML applications (HTA), or certutil (using fake certificates).

• Pwntools (⭐13k) - Rapid exploit development framework built for use in CTFs.

• Wordpress Exploit Framework (⭐1k) - Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.

Hash Cracking Tools / Zealandia

• duplicut (⭐942) - Quickly remove duplicates, without changing the order, and without getting OOM on huge wordlists.

Industrial Control and SCADA Systems / Zealandia

• Industrial Exploitation Framework (ISF) (⭐1.1k) - Metasploit-like exploit framework based on routersploit designed to target Industrial Control Systems (ICS), SCADA devices, PLC firmware, and more.

Intentionally Vulnerable Systems / Intentionally Vulnerable Systems as Docker Containers

• Damn Vulnerable Web Application (DVWA) - docker pull citizenstig/dvwa.

• OWASP Juice Shop - docker pull bkimminich/juice-shop.

• OWASP Mutillidae II Web Pen-Test Practice Application - docker pull citizenstig/nowasp.

• OWASP NodeGoat (⭐2k) - docker-compose build && docker-compose up.

• OWASP Security Shepherd - docker pull ismisepaul/securityshepherd.

• OWASP WebGoat Project 7.1 docker image - docker pull webgoat/webgoat-7.1.

• OWASP WebGoat Project 8.0 docker image - docker pull webgoat/webgoat-8.0.

• Vulnerability as a service: Heartbleed - docker pull hmlio/vaas-cve-2014-0160.

• Vulnerability as a service: SambaCry - docker pull vulnerables/cve-2017-7494.

• Vulnerability as a service: Shellshock - docker pull hmlio/vaas-cve-2014-6271.

• Vulnerable WordPress Installation - docker pull wpscanteam/vulnerablewordpress.

macOS Utilities / Intentionally Vulnerable Systems as Docker Containers

• Bella (⭐195) - Pure Python post-exploitation data mining and remote administration tool for macOS.

• EvilOSX (⭐2.4k) - Modular RAT that uses numerous evasion and exfiltration techniques out-of-the-box.

Network Tools / Network Reconnaissance Tools

• RustScan (⭐17k) - Lightweight and quick open-source port scanner designed to automatically pipe open ports into Nmap.

Network Tools / Wireless Network Tools

• WiFi Pineapple - Wireless auditing and penetration testing platform.

• pwnagotchi (⭐8.4k) - Deep reinforcement learning based AI that learns from the Wi-Fi environment and instruments BetterCAP in order to maximize the WPA key material captured.

Online Resources / Other Lists Online

• Blue Team (⭐4.8k) - Awesome resources, tools, and other shiny things for cybersecurity blue teams.

Open Sources Intelligence (OSINT) / Penetration Testing Report Templates

• DataSploit (⭐3.1k) - OSINT visualizer utilizing Shodan, Censys, Clearbit, EmailHunter, FullContact, and Zoomeye behind the scenes.

• GyoiThon (⭐769) - GyoiThon is an Intelligence Gathering tool using Machine Learning.

• Intrigue - Automated OSINT & Attack Surface discovery framework with powerful API, UI and CLI.

• Maltego - Proprietary software for open sources intelligence and forensics.

• PacketTotal - Simple, free, high-quality packet capture file analysis facilitating the quick detection of network-borne malware (using Zeek and Suricata IDS signatures under the hood).

• Skiptracer (⭐1.1k) - OSINT scraping framework that utilizes basic Python webscraping (BeautifulSoup) of PII paywall sites to compile passive information on a target on a ramen noodle budget.

• Sn1per (⭐8.9k) - Automated Pentest Recon Scanner.

• Spiderfoot - Multi-source OSINT automation tool with a Web UI and report visualizations.

• creepy (⭐1.3k) - Geolocation OSINT tool.

• gOSINT (⭐648) - OSINT tool with multiple modules and a telegram scraper.

• image-match (⭐3k) - Quickly search over billions of images.

• recon-ng (⭐4.8k) - Full-featured Web Reconnaissance framework written in Python.

• sn0int (⭐2.3k) - Semi-automatic OSINT framework and package manager.

Open Sources Intelligence (OSINT) / Data Broker and Search Engine Services

• Hunter.io - Data broker providing a Web search interface for discovering the email addresses and other organizational details of a company.

• Threat Crowd - Search engine for threats.

• Virus Total - Free service that analyzes suspicious files and URLs and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware.

• surfraw (⭐73) - Fast UNIX command line interface to a variety of popular WWW search engines.

Open Sources Intelligence (OSINT) / Dorking tools

• BinGoo (⭐229) - GNU/Linux bash based Bing and Google Dorking Tool.

• dorkbot (⭐526) - Command-line tool to scan Google (or other) search results for vulnerabilities.

• github-dorks (⭐3k) - CLI tool to scan GitHub repos/organizations for potential sensitive information leaks.

• GooDork (⭐139) - Command line Google dorking tool.

• Google Hacking Database - Database of Google dorks; can be used for recon.

• dork-cli (⭐146) - Command line Google dork tool.

• dorks (⭐201) - Google hack database automation tool.

• fast-recon (⭐166) - Perform Google dorks against a domain.

• pagodo (⭐3k) - Automate Google Hacking Database scraping.

• snitch (⭐385) - Information gathering via dorks.

Open Sources Intelligence (OSINT) / Email search and analysis tools

• SimplyEmail (⭐957) - Email recon made fast and easy.

• WhatBreach (⭐1.3k) - Search email addresses and discover all known breaches that this email has been seen in, and download the breached database if it is publicly available.

Open Sources Intelligence (OSINT) / Metadata harvesting and analysis

• FOCA (Fingerprinting Organizations with Collected Archives) - Automated document harvester that searches Google, Bing, and DuckDuckGo to find and extrapolate internal company organizational structures.

• metagoofil (⭐1.1k) - Metadata harvester.

• theHarvester (⭐13k) - E-mail, subdomain and people names harvester.

Open Sources Intelligence (OSINT) / Network device discovery tools

• Censys - Collects data on hosts and websites through daily ZMap and ZGrab scans.

• Shodan - World's first search engine for Internet-connected devices.

• ZoomEye - Search engine for cyberspace that lets the user find specific network components.

Open Sources Intelligence (OSINT) / OSINT Online Resources

• CertGraph (⭐353) - Crawls a domain's SSL/TLS certificates for its certificate alternative names.

• GhostProject - Searchable database of billions of cleartext passwords, partially visible for free.

• NetBootcamp OSINT Tools - Collection of OSINT links and custom Web interfaces to other services.

• OSINT Framework - Collection of various OSINT tools broken out by category.

• WiGLE.net - Information about wireless networks world-wide, with user-friendly desktop and web applications.

Open Sources Intelligence (OSINT) / Source code repository searching tools

• vcsmap (⭐140) - Plugin-based tool to scan public version control systems for sensitive information.

• Yar (⭐238) - Clone git repositories to search through the whole commit history in order of commit time for secrets, tokens, or passwords.

Privilege Escalation Tools / Web application and resource analysis tools

• Active Directory and Privilege Escalation (ADAPE) (⭐1.1k) - Umbrella script that automates numerous useful PowerShell modules to discover security misconfigurations and attempt privilege escalation against Active Directory.

• LinEnum (⭐7.5k) - Scripted local Linux enumeration and privilege escalation checker useful for auditing a host and during CTF gaming.

• Postenum (⭐288) - Shell script used for enumerating possible privilege escalation opportunities on a local GNU/Linux system.

• unix-privesc-check (⭐1.1k) - Shell script to check for simple privilege escalation vectors on UNIX systems.

Reverse Engineering / Reverse Engineering Books

• Gray Hat Hacking The Ethical Hacker's Handbook by Daniel Regalado et al., 2015

• Hacking the Xbox by Andrew Huang, 2003

• Practical Reverse Engineering by Bruce Dang et al., 2014

• Reverse Engineering for Beginners by Dennis Yurichev

• The IDA Pro Book by Chris Eagle, 2011

Reverse Engineering / Reverse Engineering Tools

• WDK/WinDbg - Windows Driver Kit and WinDbg.

Shellcoding Guides and Tutorials / Reverse Engineering Tools

• Exploit Writing Tutorials - Tutorials on how to develop exploits.

• Shellcode Examples - Shellcodes database.

• Shellcode Tutorial - Tutorial on how to write shellcode.

• The Shellcoder's Handbook by Chris Anley et al., 2007

Social Engineering / Social Engineering Books

• Ghost in the Wires by Kevin D. Mitnick & William L. Simon, 2011

• No Tech Hacking by Johnny Long & Jack Wiles, 2008

• Social Engineering in IT Security: Tools, Tactics, and Techniques by Sharon Conheady, 2014

• The Art of Deception by Kevin D. Mitnick & William L. Simon, 2002

• The Art of Intrusion by Kevin D. Mitnick & William L. Simon, 2005

• Unmasking the Social Engineer: The Human Element of Security by Christopher Hadnagy, 2014

Social Engineering / Social Engineering Online Resources

• Social Engineering Framework - Information resource for social engineers.

Steganography Tools / Social Engineering Tools

• Cloakify (⭐1.6k) - Textual steganography toolkit that converts any filetype into lists of everyday strings.

• StegCracker (⭐572) - Steganography brute-force utility to uncover hidden data inside files.

Vulnerability Databases / Social Engineering Tools

• Microsoft Security Advisories and Bulletins - Archive and announcements of security advisories impacting Microsoft software, published by the Microsoft Security Response Center (MSRC).

Web Exploitation / Web Exploitation Books

• The Browser Hacker's Handbook by Wade Alcorn et al., 2014

• The Web Application Hacker's Handbook by D. Stuttard, M. Pinto, 2011

Windows Utilities / Web Exploitation Books

• Sysinternals Suite - The Sysinternals Troubleshooting Utilities.

• Prev: Sep 07 - Sep 13, 2020
• Next: Aug 24 - Aug 30, 2020