Trending Projects

A powerful OSINT tool for gathering open-source intelligence and performing online investigations.

An interactive CTF exploration tool focused on reverse-engineering and Windows security research.

A comprehensive SOAR (Security Orchestration, Automation and Response) platform for efficient security automation without coding.

This repository provides tools and tutorials for cracking WPA/WPA2 Wi-Fi passwords, which is not recommended for general use.

A security tool to detect publicly disclosed vulnerabilities in application dependencies.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

A collection of 'Proof of Concept or GTFO' articles and magazines for hackers and security researchers.

A C# Command & Control framework for security research and penetration testing

A Python tool to automate Google Hacking Database scraping and searching for bug bounty and OSINT purposes.

A comprehensive roadmap and resources for those interested in pursuing a career in cybersecurity.

Kunai is a threat-hunting tool for Linux that uses eBPF to detect and monitor security threats.

Securely and anonymously share files, host websites, and chat using the Tor network.

This is a Python script for brute-force attacking Instagram accounts, not a tool for vibe coders.

A cheatsheet for penetration testing with the Kali Linux distribution, useful for security-focused developers.

A collection of RSS feeds for cybersecurity and information security news, blogs, and social media.

Linux/Windows post-exploitation framework with advanced stealth and rootkit capabilities for penetration testing.

A Burp Suite plugin for testing web applications by spoofing IP addresses in case of server misconfigurations.

BinaryAlert is a serverless, real-time and retroactive malware detection tool powered by AWS Lambda and Terraform.

A secure, native-level encryption library for Android that uses the ChaCha20-Poly1305 algorithm and the libsodium library.

A comprehensive security assessment tool that supports scanning for common web vulnerabilities and custom PoCs.

OWASP CRS (Core Rule Set) is a web application firewall (WAF) security ruleset for detecting and preventing common web vulnerabilities.

AWSGoat is a Damn Vulnerable AWS Infrastructure for security testing and research.

An OSINT tool that generates username lists for companies on LinkedIn to aid in penetration testing and security research.

A collection of SaaS attack techniques to help defenders understand the threats they face.

This repository provides a comprehensive collection of resources and tools for cellular network hacking.

A middleware to create a flexible proxy pool, providing a fixed request address for long-term use.

A modern reverse shell sessions manager written in Go for security researchers and penetration testers.

Web and mobile application security training platform focused on secure coding practices.

An initial access and post-exploitation tool for AAD and O365 with a browser-based GUI

A cheat sheet for common Windows Active Directory enumeration and attack methods

A collection of tools that integrate with Cobalt Strike for advanced C2 framework development.

A collection of setup scripts for security research tools, useful for penetration testing and ctf challenges.

An open-source web vulnerability scanner that helps developers audit and secure web applications.

A large repository of cybersecurity-related links, but not focused on AI coding tools or platforms.

This Python repository provides a JSON file for performing user enumeration on various websites.

In-depth repository of Telegram OSINT resources covering tools, techniques and tradecraft.

XX-Net is a proxy tool to bypass GFW with multi-platform support and traffic obfuscation.

A Python-based cybersecurity tool for hacking wireless connections using built-in Kali Linux tools.

A handbook for securing your cryptocurrency against the 'dark forest' of blockchain threats.

A Go-based tool to fetch known URLs from various threat intelligence sources for security analysis.

A repository that collects interesting APT reports and special IOCs for cybersecurity researchers and threat hunters.

HackBar is a Burpsuite plugin that provides a user-friendly interface for web application penetration testing.

A BLE and Bluetooth jammer using nRF24L01 and ESP32 for cybersecurity research and pentesting.

A Go utility to generate malicious network traffic patterns for security testing and evaluation.

A curated collection of awesome tools and resources for securing APIs, benefiting the entire community.

A Python library for analyzing and securing drone systems against security vulnerabilities.

This repository contains the public open-source code of the malware Stuxnet, also known as MyRTUs.

Bypass GFW using TLS-based protocols

SocialBox is a Bruteforce Attack Framework for Facebook, Gmail, Instagram, and Twitter.

A collection of Google Dorks to find websites with responsible disclosure programs or bug bounty programs.