Trending Projects

This C# program demonstrates various process injection techniques for security research and testing.

A tool that helps developers easily trace classes, functions, and modify method return values on iOS platforms.

A curated list of resources for social engineering, a technique used to manipulate people into divulging sensitive information.

A Python tool for discovering URLs and parameters from web archives for bug hunting, fuzzing, and further probing.

This is an evil RAT (Remote Administration Tool) for macOS / OS X, built with Python.

A Perl script that exploits NAT Slipstreaming to bypass victim's firewall and access services on their machine.

This is a tool for finding open databases by leveraging the Binaryedge.io platform.

A set of tools for detecting and preventing cloud storage data leaks across major cloud providers.

This is a penetration testing framework written in Python for security professionals.

Single-file PHP shell for penetration testing and system exploration.

A curated list of resources for bypassing Endpoint Detection and Response (EDR) solutions for ethical hacking.

Anubis is a subdomain enumeration and information gathering tool for security professionals.

This is an open-source tool for detecting app hardening features in APK files, supporting over 40 vendors.

Lantern is a free and open-source internet circumvention tool that provides secure and fast access to the open internet.

This is a C# project that scans for and exploits two CVE vulnerabilities (CVE-2021-42287/CVE-2021-42278).

A security tool to help identify potentially vulnerable web services affected by the log4j vulnerabilities.

A PHP library that scans php.ini files to check for security best practices.

Forseti Security is a tool for managing security and compliance on the Google Cloud Platform.

This repository provides a tool for remotely accessing webcams, which can be used for malicious purposes.

This is a free, open-source CTF tutorial for beginners, covering various CTF challenges and network security topics.

A Raspberry Pi-based toolkit for WiFi hacking and penetration testing.

This repository provides a collection of hacking tools and backdoor generators for security research and penetration testing.

A Python-based tool to help developers test and bypass Web Application Firewalls (WAFs) before attackers do.

This is an IPv6 attack toolkit for penetration testing and security research.

A repository that automatically aggregates and classifies the latest Nuclei vulnerability POCs from Github.

A suite of tools for hacking social media accounts, including brute-force, phishing, and reporting attacks.

A curated list of writeups from the Google VRP Bug Bounty program, useful for security researchers and bug hunters.

An automation tool that enumerates subdomains and scans for web vulnerabilities.

Implements the CobaltStrike Beacon in Go for security research and reverse engineering purposes.

An IIS short filename enumeration tool for security audits and penetration testing.

Automated JavaScript recon tool for bug bounty hunters and security researchers.

A C++ tool that can terminate all EDR/XDR/AVs processes, potentially used for security research.

This GitHub repository is focused on Awesome-Red-Team-Operations, which is related to cybersecurity and penetration testing.

SharpDPAPI is a C# port of Mimikatz DPAPI functionality for interacting with Windows Data Protection API.

This repository is a collection of documents leaked by Edward Snowden, a former NSA contractor and whistleblower.

A Python toolkit for conducting phishing campaigns and security testing, not suitable for vibe coders.

A comprehensive cheatsheet for Red Team activities and penetration testing techniques.

A Python library that helps developers bypass URL parsing restrictions and security checks.

This repository contains detailed adversary simulation APT campaigns targeting various critical sectors.

This repository is a comprehensive list of web application security resources, tools, and techniques.

A tool that exploits locked/password protected computers over USB, drops a persistent backdoor, and siphons cookies.

Next generation web scanner for security research and penetration testing

A censorship circumvention tool to evade detection by authoritarian state adversaries.

A privacy-focused Android app to monitor and control trackers and ads on your device.

This repository is a collection of resources and tools for penetration testing and security research.

This repository is a collection of malware samples gathered from honeypots, useful for malware analysis.

A collection of BadUSB payloads for the DigiSpark Attiny85 microcontroller, useful for penetration testing and security research.

A collection of wordlists and tools for bruteforcing and penetration testing purposes.

A Python tool that provides quick suggestions for SQLMap tampering techniques to bypass SQL injection defenses.

A comprehensive collection of cybersecurity and infosec resources for developers.