Trending Projects

An open-source, lightweight, and cross-platform website vulnerability scanning tool to help developers quickly detect security risks.

A collection of security-focused tools and projects for developers working on security-related tasks.

Enhance the security and privacy of your Windows 10 and Windows 11 deployments with an optimized, hardened, and debloated script.

A Python library providing the latest CVEs with their Proof of Concept exploits.

A fast sub-domain brute tool for penetration testers and security researchers.

A curated list of awesome security hardening techniques for Windows.

This project provides a basic anti-detection frida-server solution for developers.

A Python2 tool for detecting and exploiting Struts2 vulnerabilities across all versions.

An open-source intelligence (OSINT) framework for researchers and security professionals.

Hayabusa is a Rust-based threat hunting and forensics timeline generator for Windows event logs.

An automatic SSTI detection tool with an interactive interface for penetration testing and security research.

This C-based library helps developers discover and exploit buffer overflow vulnerabilities.

Cameradar is a Go library that allows developers to hack into RTSP video surveillance cameras for security testing.

An open-source vulnerability intelligence platform that provides data and insights on CVEs and vulnerabilities.

A framework for detecting command and control communication through network traffic analysis.

A multifunctional Telegram-based Android RAT (Remote Access Tool) without port forwarding.

ClatScope is a powerful OSINT tool for investigators, penetration testers, and researchers to retrieve geolocation, DNS, WHOIS, phone, email, and data breach information.

An open-source guideline to help embed security as part of the development pipeline.

Leaked source code for the Mirai botnet, for research and indicator of compromise (IoC) development purposes.

High-quality Sysmon configuration template for advanced Windows security monitoring and threat hunting

A collection of PDF/books about modern web application security and bug bounty programs.

EgeBalci/amber is a reflective PE packer written in Go, useful for security researchers and penetration testers.

OpenKeychain is an open-source OpenPGP implementation for secure communication on Android.

DRAKVUF Sandbox is an automated hypervisor-level malware analysis system for reverse-engineering and security research.

A collection of over 60 BadUSB scripts for the FlipperZero device, focused on security research and penetration testing.

A powerful toolkit for security professionals and hackers, offering a wide range of scanning and analysis tools.

A PowerShell script for enumerating privilege escalation vulnerabilities on Windows systems.

This repository appears to contain C-based exploit code and is not related to a developer discovery platform focused on vibe coders.

A platform for exploiting Java vulnerabilities, including deserialization, JNDI, and Log4j RCE.

Tool for bypassing Discord server verification checks on low-spec machines.

This Python project generates professional phishing emails for social engineering and hacking purposes.

This is a Linux kernel CVE exploit analysis tool with a debugger environment, not focused on AI coding tools.

This is a Java web security repository, likely focused on web application security research and testing.

A utility to find AES keys in running processes, useful for security research and testing.

A free, open-source password manager compatible with KeePass, with cross-platform support.

GmSSL is a cryptographic toolbox supporting Chinese national cryptography standards including SM2, SM3, SM4, SM9 and SSL/TLS protocols.

This repository provides resources for learning web security concepts like SQL injection and XSS.

Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation.

Security Onion is a Linux distribution for threat hunting, enterprise security monitoring, and log management.

An Assembly-based tool for AV/EDR evasion via direct system calls.

A collection of security-related datasets for security research and analysis.

Secure Boot for NixOS, a Rust-based project for the Nix community.

A Python-based reconnaissance framework for researching and investigating Telegram.

This repository provides a collection of cheatsheets for various penetration testing tools and techniques.

A Python library for detecting homograph phishing attacks, typo squatting, and brand impersonation through domain name permutation.

A curated collection of awesome PHP security resources for developers.

A Python script for brute-forcing WPA/WPA2 WiFi passwords, not suitable for vibe coders.

A Magisk/KernelSU module that automatically adds user certificates to the system root CA store

A Python library that tracks the real IP address behind Cloudflare, Sucuri, and Incapsula proxy services.

A Burpsuite plugin for automating the bypass of authentication and WAF protections.