Trending Projects

Key and Lock Decoding Tools for developers interested in cryptography and security.

A vulnerable server used for learning software exploitation, written in C.

A powerful OSINT tool for gathering open-source intelligence and performing online investigations.

Burp extension that can bypass TLS fingerprinting, WAF, and spoof any browser for penetration testing.

In-depth repository of Telegram OSINT resources covering tools, techniques and tradecraft.

Hostfile blocklist for ads and tracking, updated regularly to improve privacy and performance.

A C# tool for discovering and exploiting SQL injection vulnerabilities across various databases.

Open-source tool to enforce privacy and security best practices across Windows, macOS, and Linux

JexBoss is a tool to verify and exploit Java deserialization vulnerabilities in JBoss and other Java applications.

An open-source penetration testing framework and vulnerability exploitation tools for Spring Boot applications.

Powerful and extensible proxy server with anti-censorship functionality for Android devices

This repository provides a detailed analysis of the reported backdoors in the Pinduoduo e-commerce platform.

An open-source OSINT tool to find breached emails, databases, pastes, and other relevant information.

A tool to dump cookies and credentials directly from Chrome/Edge process memory.

GPU-based Onion Hash generator for developers working with cryptography and anonymity tools.

A Go tool that manipulates compiled executables to avoid detection from EDRs.

A collection of resources for penetration testing and securing Microsoft's cloud platform Azure.

A fast and powerful SSL/TLS scanning library for security-focused developers.

Awesome free cloud native security learning labs with CTF, self-hosted workshops, and guided vulnerability research.

A Rust-based security tool for Linux exploitation that aims to leave zero traces on system logs and filesystem timestamps.

This Python repository generates customized word lists for a variety of use cases, including penetration testing.

A deprecated client for the Privacy Pass protocol, providing unlinkable cryptographic tokens for browser extensions.

Keybase Filesystem (KBFS) is a secure, distributed file system with end-to-end encryption.

This Rust library provides a framework for using Notion as a platform for offensive operations.

A fast, open-source CORS misconfiguration vulnerability scanner written in Python.

A Python library for parsing Cobalt Strike beacon data, useful for security analysis and incident response.

A database of vulnerable Ruby Gems, helping Ruby developers stay secure.

An open-source drone pentesting framework console written in Python for security researchers.

Buttercup is a Python tool that finds and patches software vulnerabilities.

GUAC aggregates software security metadata into a high fidelity graph database.

A PowerShell module for conducting security audits on Microsoft 365, Azure, and Azure AD resources.

A library providing comprehensive web security concepts and best practices for developers.

Open-source tool to identify capabilities in executable files for malware analysis and reverse engineering.

A curated collection of resources, tools, and shiny things for cybersecurity blue teams.

This GitHub repository contains cheatsheets and resources for internal penetration testing and Active Directory security.

An open-source ESP32-powered tool to scan, jam, spoof, and master BLE, Wi-Fi, and 2.4GHz networks.

A tool for extracting browser passwords, with plans for additional functionality.

A demo of overriding a user's clipboard content, which can be used for security research.

An open-source tool for network exploitation and information gathering using the powerful Nmap scanner.

An active defense and EDR software to empower blue teams and detect security threats on Windows systems.

A curated collection of periodic cyber security newsletters covering the latest news, research, and best practices.

A Python-based syscall shellcode loader, a work-in-progress security research project.

A CLI tool for open source and threat intelligence, focused on providing a comprehensive OSINT framework.

A privacy-preserving home security camera that uses end-to-end encryption.

A pentest reporting tool written in Python to free developers from Microsoft Word.

An easy-to-use encryption library for JavaScript, utilizing RSA and AES algorithms.

A comprehensive penetration testing framework for security researchers and red teams.

An open-source Android app that tests for recent device vulnerabilities to improve Android security.

The Browser Exploitation Framework Project is a penetration testing tool for web applications.

Reverse engineering and pentesting tool for analyzing Android applications