Trending Projects

ADB-Toolkit V2 is a collection of ADB scripts and tools for Android hacking and pentesting

A curated list of cybersecurity datasets for security researchers and machine learning practitioners.

A network monitoring and bandwidth limiting tool for developers without administrative access.

A library of BadUSB payloads for the Flipper Zero device, primarily written in PowerShell.

A collection of Beacon Object Files (BOFs) for situational awareness tasks on compromised systems.

This GitHub repository is focused on Awesome-Red-Team-Operations, which is related to cybersecurity and penetration testing.

A modular penetration testing framework written in Python for security researchers and hackers.

A next-generation enumeration tool for security professionals and CTF players, with additional features like JSON/YAML export.

This is a database of known phishing domains and URLs that can be used to validate and detect phishing attacks.

A curated list of resources for bypassing Endpoint Detection and Response (EDR) solutions for ethical hacking.

An open-source remote access tool (RAT) developed in C#, providing a comprehensive set of features for remote system management.

A Python tool to dump information from Active Directory via LDAP, useful for security research and penetration testing.

Bypass GFW using TLS-based protocols

A Python library for web fuzzing and parameter discovery, useful for pentesting and security research.

A cheatsheet of default credentials to help blue/red teamers identify devices with default passwords

This repository contains course materials for learning modern binary exploitation techniques.

A Python-based tool to suggest Windows exploits based on installed updates and patches.

P4wnP1 A.L.O.A. is a Raspberry Pi Zero W framework for penetration testing, red teaming, and physical engagements.

A collection of web attack payloads for security research and penetration testing.

OSCP cheatsheet for penetration testing and offensive security

A Python tool to generate malicious PDF files with phone-home functionality for penetration testing.

A tool to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems.

A privacy-focused Android app to monitor and control trackers and ads on your device.

A suite of tools for hacking social media accounts, including brute-force, phishing, and reporting attacks.

A hardened memory allocator designed for modern systems, with integration into Android's Bionic libc.

OnionSearch is a Python script that scrapes URLs from different .onion search engines for open-source intelligence.

OSINT-SPY is a Python tool for performing in-depth information gathering on email, domain, IP, and organization targets.

PhoneInfoga is a tool for advanced phone number information gathering and validation using free resources.

A collection of 60k+ Nuclei templates to scan WordPress sites for vulnerabilities and CVEs.

This is a Shell script that sets up a TLS proxy for the Signal messaging app, likely for security and privacy purposes.

A curated list of resources for detection engineering, a cybersecurity function for proactively identifying malicious activity.

A powerful SMS and call bomber tool for Linux and Termux, designed for hacking and spamming purposes.

An automated email OSINT tool for gathering information about email addresses and associated accounts.

An enterprise-friendly tool for detecting and preventing secrets in code.

A social media enumeration and correlation tool for security researchers and penetration testers.

This repository provides a comprehensive guide to the OSCE3 (OSWE, OSEP, OSED, OSEE) offensive security certifications.

A comprehensive collection of Android and iOS mobile security resources and tools for developers.

A Python tool for discovering URLs and parameters from web archives for bug hunting, fuzzing, and further probing.

This GitHub repository appears to be a collection of leaked QQ user data, not a developer tool.

CeWL is a Ruby library for generating custom word lists, useful for password cracking.

UFONet is a Denial of Service toolkit that can be used to disrupt and disrupt networks and servers.

An open-source penetration testing framework and vulnerability exploitation tools for Spring Boot applications.

Automatically brute force all services running on a target, useful for security researchers and bug bounty hunters.

This is a collection of hacking and cybersecurity-related books, not a developer tool platform.

A C-based loader that mitigates VMware Hardened VM detection to bypass anti-VM protections.

DomainPasswordSpray is a PowerShell tool for performing password spray attacks against a domain.

A comprehensive guide to privacy settings for popular software and services.

This repository contains publications from the security research firm Trail of Bits, covering academic papers and conference presentations.

The SpecterOps project management and reporting engine focused on information security and penetration testing.

A curated list of resources related to AWS security, including books, tutorials, and security tools.