Trending Projects

A repository for learning various heap exploitation techniques in C.

A Python tool for discovering URLs and parameters from web archives for bug hunting, fuzzing, and further probing.

A fork of AFL for fuzzing Windows binaries, focused on security research and finding vulnerabilities.

A fast and efficient dork scanner written in Go for bug bounty and security research.

This is an open-source tool for detecting app hardening features in APK files, supporting over 40 vendors.

An automated, modular cryptanalysis tool for security researchers and penetration testers.

A Python-based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

XVWA is a vulnerable web app for security enthusiasts to learn application security.

A DNS enumeration tool that can be used for network reconnaissance and security testing.

This is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

Provides a wordlist, rules, and masks for password cracking and security research.

A C# library to prevent malware from gaining admin privileges through UAC authorization.

A fast and powerful SSL/TLS scanning library for security-focused developers.

Awesome list of step-by-step techniques to achieve Remote Code Execution on various applications.

A collection of CTF (Capture The Flag) challenges and resources for security researchers and developers.

A Python-based password brute force dictionary with keyboard combinations, pinyin, and alphanumeric dictionaries.

A CLI tool for open source and threat intelligence, focused on providing a comprehensive OSINT framework.

A collection of scripts and executables for penetration testing and digital forensics.

A Python library providing the latest CVEs with their Proof of Concept exploits.

A C-based Beacon Object File (BOF) for use in remote operations on compromised systems.

A collection of penetration testing POCs, exploits, scripts, and tools for security research and testing.

A cloud-native SIEM for intelligent security analytics for the entire enterprise.

This is an Android security learning repository, not a developer discovery platform for vibe coders.

The Bug Hunters Methodology is a comprehensive guide for penetration testing and security research.

A privacy-focused Android app to monitor and control trackers and ads on your device.

A collection of smart hosts used to block access to various websites and improve privacy

A C++ library for recovering the encryption key used by the WannaCry ransomware.

A collection of tools and techniques for the Blue Team, focused on incident response and cybersecurity.

An automatic SSTI detection tool with an interactive interface for penetration testing and security research.

An advanced Python tool for email reconnaissance and cybersecurity research.

A webshell management tool for Godzilla that helps bypass traffic detection devices.

A curated list of awesome resources for reverse engineering and malware analysis.

A collaborative, multi-platform red teaming framework for security researchers and penetration testers.

A free and efficient ad-blocker and privacy guard for Windows, macOS, and Linux desktop apps.

A fast sub-domain brute tool for penetration testers and security researchers.

A reverse engineering framework for Flutter, focused on security research and bug bounty programs.

A fast vulnerability scanner that helps pentesters identify potentially vulnerable web servers.

A Perl script that exploits NAT Slipstreaming to bypass victim's firewall and access services on their machine.

A BLE and Bluetooth jammer using nRF24L01 and ESP32 for cybersecurity research and pentesting.

A collection of open-source web security scanners for developers to assess web application vulnerabilities.

A powerful SQL injection vulnerability scanner for web applications written in Python.

PoC for a local privilege escalation vulnerability in the pkexec command of the polkit library (CVE-2021-4034)

A curated list of awesome cloud security resources for developers and security professionals

Buttercup is a Python tool that finds and patches software vulnerabilities.

Pilot program for submitting CVE records through GitHub, ending on 6/30/2023.

A collection of various JSP webshell implementation methods for security researchers and penetration testers.

A command-line tool for cracking password hashes using the popular Hashcat library.

This is a Python project that analyzes a backdoor vulnerability in the Linksys WAG200G router.

A collection of security engineer interview questions from Glassdoor.com for job preparation.

A comprehensive toolkit for penetration testing and exploitation of VMware vCenter Server vulnerabilities.