Trending Projects

Fluxion is an AI-powered tool for cybersecurity researchers and penetration testers, focused on evil-twin attacks and captive portal exploits.

A collection of Google Dorks to find websites with responsible disclosure programs or bug bounty programs.

Automated Red Team Infrastructure deployment using Docker for penetration testing and security research.

A collection of captive portals for phishing using a WiFi Pineapple, focused on penetration testing and security research.

An open-source project focused on tracking and exposing Huawei's alleged misdeeds.

This is a tool for hacking Android pattern locks from the Termux terminal, likely used for phishing and penetration testing.

A Python library that declutters URL lists for web crawling and penetration testing tasks.

This is a hacking tool that can track a user's location, capture their picture, and collect device information.

A Python tool to monitor GitHub for new CVEs, security updates, and more, with multi-channel notifications.

This project has been deprecated, but the ChatSecure iOS project continues. For Android, Conversations or Zom are recommended alternatives.

A comprehensive study plan to become a successful cybersecurity engineer across various roles.

This is an advanced phishing tool for Linux, not a developer platform focused on AI tools.

An OSINT tool that generates username lists for companies on LinkedIn to aid in penetration testing and security research.

A Splunk app that guides threat hunting by mapping security telemetry to the MITRE ATT&CK framework.

This Go-based GitHub leak scanning system helps developers and security teams monitor for leaked credentials and sensitive data.

Streamline your security workflows with this automated pentest reporting tool with custom templates and project tracking.

An open-source post-exploitation framework for students, researchers and developers.

OSCP cheatsheet for penetration testing and offensive security

A collection of nightly builds of common C# offensive tools, built and released in a CI/CD fashion.

A penetration testing tool for finding 'delicious candy' (sensitive data) on systems.

ARL (Asset Reconnaissance Lighthouse) is a security tool for quickly investigating and building an asset information library for penetration testing and vulnerability assessment.

A Python library that provides one-liners for various penetration testing and privilege escalation tasks.

EgeBalci/amber is a reflective PE packer written in Go, useful for security researchers and penetration testers.

A Python library for analyzing and securing drone systems against security vulnerabilities.

A password cracking tool for Windows that can bypass authentication without privileges

A repository showcasing security research and bug bounty case studies, not focused on vibe coders.

This is a Python library for cracking WPA passwords using precomputed data.

This repository contains a comprehensive checklist of web and API vulnerabilities for bug bounty hunters and security researchers.

A vulnerable Windows & Linux kernel driver for security research and exploit development.

Daily feed of bad IP addresses with blacklist hit scores for security and threat monitoring.

Open source platform for adversary emulation and exposure validation to enhance cybersecurity posture.

A Java library that unpacks malicious backdoors and exploits used by the Chinese e-commerce company Pinduoduo.

An enterprise-friendly tool for detecting and preventing secrets in code.

A Python library that provides various UAC bypass, elevation, and persistence methods for Windows.

A fork of AFL for fuzzing Windows binaries, focused on security research and finding vulnerabilities.

A Python tool that can identify the type of hash, including common ones like MD5 and SHA256, for developers working in cybersecurity and CTF challenges.

A collection of tools for offensive and defensive security on the Azure AD/Microsoft Entra platform.

This is a repository containing notes on penetration testing, not a developer discovery platform.

A Python library that demonstrates a security vulnerability in QR code-based login systems.

A Python library to discover subdomains of a target domain, useful for security researchers and pentesters.

This GitHub repository contains a hidden desktop tool for the Cobalt Strike penetration testing framework.

This repository provides a suite of tools for mapping network assets, scanning ports, and extracting sensitive information from web applications.

An easy-to-use encryption library for JavaScript, utilizing RSA and AES algorithms.

A powerful network penetration testing tool that can be used to automate various pentesting tasks.

Automated all-in-one OS command injection exploitation tool for security researchers and penetration testers.

This GitHub repository provides a collection of free security and hacking ebooks for developers.

This project hosts security advisories and proof-of-concepts related to research conducted at Google.

A tool that extracts various credentials and sensitive data from network packets or live interfaces.

This is a tool to bypass passwords on Windows and Linux systems from a bootable USB, not a developer discovery platform.

A repository containing indicators of compromise (IOCs) from malware investigations.