FreeDATA is a versatile, open-source platform designed specifically for HF communications, leveraging Codec2 data modes for robust global digital communication. It features a network-based server-client architecture, a REST API, multi-platform compatibility, and a messaging system. It looks like a desktop app that also has a local REST API. Specifically namechecks working the HF bands.
AutoKitteh is a developer platform for workflow automation and orchestration. It is an easy-to-use, code-based alternative to no/low-code platforms (such as Zapier, Workato, Make.com, n8n) with unlimited flexibility. You write in vanilla Python, we make it durable. Once installed, AutoKitteh is a scalable "serverless" platform (with batteries included) for DevOps, FinOps, MLOps, SOAR, productivity tasks, critical backend business processes, and more.
Provides interfaces for building projects (workflows), deploying them, triggering the code with webhooks or schedulers, executing the code as durable workflows, and managing these workflows. All services are available via gRPC / HTTP. Has a CLI as well.
Beszel is a lightweight server monitoring platform that includes Docker statistics, historical data, and alert functions. It has a friendly web interface, simple configuration, and is ready to use out of the box. It supports automatic backup, multi-user, OAuth authentication, and API access.
Smaller and less resource-intensive than leading solutions. Easy setup, no need for public internet exposure. Configurable alerts for CPU, memory, disk, bandwidth, temperature, and status. Users manage their own systems. Admins can share systems across users. Supports many OAuth2 providers. Password auth can be disabled. Save and restore data from disk or S3-compatible storage.
Consists of a hub built on PocketBase that provides a dashboard for viewing and managing connected systems and an agent that runs on each system you want to monitor, creating a minimal SSH server to communicate system metrics to the hub.
Seems to be designed with system monitoring in mind, and as such isn't really that flexible.
The CVEDB API offers a quick way to check information about vulnerabilities in a service. You can search using either the CVE-ID or CPE23.
A vulnerability lookup service by SHODAN.
Free for non-commercial use (i.e., selling the data). You don't need a SHODAN API key.
An open source threat intel and sharing platform. Lots of ad-hoc visualization methods are available to make sense of data. Includes lots of taxonomies to organize data and do some of the work for you.
You can store your IOCs in a structured manner, and thus enjoy the correlation, automated exports for IDS, or SIEM, in STIX or OpenIOC and synchronize to other MISPs. You can now leverage the value of your data without effort and in an automated manner. The primary goal of MISP is to be used. This is why simplicity is the driving force behind the project. Storing and especially using information about threats and malware should not be difficult. MISP is there to help you get the maximum out of your data without unmanageable complexity. MISP will make it easier for you to share with, but also to receive from trusted partners and trust-groups. Sharing also enabled collaborative analysis and prevents you from doing the work someone else already did before.
Threat Intelligence is much more than Indicators of Compromise. This is why MISP provides metadata tagging, feeds, visualization and even allows you to integrate with other tools for further analysis thanks to its open protocols and data formats. Having access to a large amount of Threat information through MISP Threat Sharing communities gives you outstanding opportunities to aggregate this information and take the process of trying to understand how all this data fits together telling a broader story to the next level. We are transforming technical data or indicators of compromise (IOCs) into cyber threat intelligence. MISP comes with many visualization options helping analysts find the answers they are looking for.
Github: https://github.com/MISP/
Of interest:
- MISP/MISP is the core platform (the analytics and dashboard part)
- MISP/misp-galaxy looks like the correlation engine
- MISP/PyMISP is the supported Python module for interacting with the API
- MISP/misp-taxonomies are used for organizing information
- MISP/misp-galaxy does the work of clustering data points to find patterns
- MISP/misp-modules are additional functional units (because of course there are)
- MISP/misp-warninglists looks like sets of known false positives for cutting things down a bit.
There are more repos but I haven't gone through them yet.
Protomaps is an open source system for interactive web maps, deployable as a single static file on cloud storage. Protomaps can optionally be delivered through an edge network like AWS Cloudfront and Cloudflare for ultra-low latency, using Lambda or Workers. First-class support for mapping libraries like Leaflet and MapLibre GL to enable vector cartography and visualization of your own geodata. Your map-based projects and sites don't depend on a third party service or API keys, and work offline, forever. Protomaps also maintains a Tiles API - get a free API key. It's free for non-commercial use, or commercial use paired with a GitHub sponsorship.
Github: https://github.com/protomaps
While xthulu is intended to be a community server with multiple avenues of interaction (e.g. terminal, browser, REST API), its primary focus is to provide a modern SSH terminal interface which pays homage to the bulletin boards of the 1990s. Rather than leaning entirely into DOS-era nostalgia, modern character sets (UTF-8) and terminal capabilities are taken advantage of.
Documentation for Open Weathermap's geocoding/reverse geocoding REST API.
IndexNow is an easy way for websites owners to instantly inform search engines about latest content changes on their website. In its simplest form, IndexNow is a simple ping so that search engines know that a URL and its content has been added, updated, or deleted, allowing search engines to quickly reflect this change in their search results.
Without IndexNow, it can take days to weeks for search engines to discover that the content has changed, as search engines don’t crawl every URL often. With IndexNow, search engines know immediately the "URLs that have changed, helping them prioritize crawl for these URLs and thereby limiting organic crawling to discover new content."
IndexNow is offered under the terms of the Attribution-ShareAlike Creative Commons License and has support from Microsoft Bing, Naver, Seznam.cz, Yandex, Yep.
IndexNow-enabled search engines shares immediately all URLs submitted to all other IndexNow-enabled search engines, so you just need to notify one endpoint.
Add dynamic content, forms or personalization to your static site, manage smart home, monitor server room temperatures in hundreds of locations using Raspberry Pi, or simply play with the API - JsonStorage is super simple and scales up to your needs.
The Polaric Server is mainly a web based service to present live tracking information (APRS, AIS, etc) on maps and where the information is updated in realtime. It is originally targeted for use by radio amateurs in voluntary search and rescue service in Norway. It consists of a web application and a server program (APRS daemon). It runs on e.g. aprs.no as a online service on the internet, but we could also bring it with us out in the field in a portable computer, possibly with its own LAN, APRS modems and radios. A goal is that it should be able to work without always being online with a good connection to the internet.
Github: https://github.com/orgs/PolaricServer/repositories
Lots of Java, unfortunately.
Alexandria.org is a non-profit, ad-free search engine. Our goal is to provide the best available information without compromise. The index is built on data from Common Crawl and the engine is written in C++. The source code is available. We are still at an early stage of development and running the search engine on a shoestring budget.
Github:
- Search engine: https://github.com/alexandria-org/alexandria
- REST API: https://github.com/alexandria-org/alexandria-api
- Front end: https://github.com/alexandria-org/alexandria-frontend
In theory you can set up your own instance. In practice, I don't know how practical that would be.
High performance self-hosted and fully customizable authentication service. In the early stages. Depends on Redis and MongoDB. Docker-first webshit but it can probably be broken out.
Under heavy development.
Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD).
Vulnerability Lookup is also a collaborative platform where users can comment on security advisories and create bundles.
Consolidates vulnerabilities from multiple sources.
Github: https://github.com/cve-search/vulnerability-lookup
API: https://vulnerability.circl.lu/doc
At present, 13 different sources and four output formats. You can also download dumps from any of those sources as raw data.
Each source has its own RSS feed that can be monitored. Not every entry has an immediately obvious title, and not every entry has a description, so you'll want to pull the URL in the link field and analyze from there.
A utility for exporting pages from a Bookstack wiki using the API. Can keep the wiki's existing tree structure intact by making folders from Shelves, Books, Chapters and attachments (including attachments from external links). Can export multiple formats at once. Experimentally, it can update markdown files before saving them to point to the downloaded image files instead of remote urls. The authorization token is loaded from a text file. Can set a custom HTTP User-Agent header to bypass filtering based on that header.
OSS Index is a free catalogue of open source components and scanning tools to help developers identify vulnerabilities, understand risk, and keep their software safe.
They have a public REST API (https://ossindex.sonatype.org/doc/rest) that scanning tools can patch into.
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Says there's a GraphQL API. Ew.
Github repo for the advisories: https://github.com/github/advisory-database
Their REST API is a huge pain to work with.
Welcome to Monolith Tracker, a collaborative effort on tracking the Monoliths that are appearing around the world. We need your help report new monoliths that we are missing.
On November 18th 2020, a group of Utah DWR Biologists were flying in Southwest Utah on an assignment to count Bighorn Sheep in the area. What they saw next kickstarted possibly the most ‘2020’ news story the world has ever seen. A large metal monolith, approximately 9.8 feet tall, was standing in the middle of the desert, miles from the nearest town of Moab, Utah.
They kept appearing. There have been 19 total monoliths, plus an additional 5 confirmed fakes, and they are seemingly growing exponentially. Are they all connected? Which ones are real, which are simply knockoffs? This mystery is far from over. With the way that 2020 has been going, it is likely just beginning.
Read-only JSON API: https://monolithtracker.com/json-export
Query next passes for a given satellite above you. Uses Skyfield to predict passes, and Celestrak GP API to get updated TLE data.