Trending Projects

A Python tool for scanning IP and domain names to find weakly protected internal systems.

Jok3r v3 BETA 2 is a comprehensive network and web penetration testing automation framework.

A repository that collects interesting APT reports and special IOCs for cybersecurity researchers and threat hunters.

Open source platform for adversary emulation and exposure validation to enhance cybersecurity posture.

A refactored and improved password spraying tool that uses FireProx APIs to stay anonymous and beat throttling.

A collection of resources for penetration testing and securing Microsoft's cloud platform Azure.

AWSGoat is a Damn Vulnerable AWS Infrastructure for security testing and research.

SocialBox is a Bruteforce Attack Framework for Facebook, Gmail, Instagram, and Twitter.

A Python tool to test for the CVE-2020-1472 vulnerability, which is a critical security issue.

A Python library that generates random DNS and HTTP/HTTPS traffic to create network noise and obfuscate online activities.

An automated security and vulnerability scanning tool for security professionals and red teams.

A C/C++ source obfuscator for bypassing antivirus detection, not a developer discovery platform for vibe coders.

A popular browser extension that provides enhanced security and privacy features for web browsing.

A database of vulnerable Ruby Gems, helping Ruby developers stay secure.

A collection of utilities for the MITRE ATT&CK framework, used for adversary emulation and red team testing.

Securely and anonymously share files, host websites, and chat using the Tor network.

This is a Python script for brute-force attacking Instagram accounts, not a tool for vibe coders.

AdGuard browser extension to block ads, trackers, and protect user privacy across Chrome and Firefox.

A Wi-Fi/LAN intruder detector that checks connected devices and alerts on unknown or disconnected devices.

An open-source drone pentesting framework console written in Python for security researchers.

A collection of Aggressor scripts for Cobalt Strike, a popular penetration testing framework.

An open-source OSINT tool to find breached emails, databases, pastes, and other relevant information.

A tool for generating undetectable webshells, which can be useful for security testing and penetration tasks.

A collection of PowerShell scripts with 100% AV bypass capability for security research and pen-testing.

An open-source collection of incident response methodologies and frameworks for security professionals.

A file-sharing tool that allows you to find the responsible person in case of a data leakage.

This repository provides information on how to find leaked credentials, which can be useful for security research.

This repository contains the source code for the book 'Violent Python' focused on cybersecurity and ethical hacking tools.

A Python cryptography package that provides low-level access to cryptographic primitives and recipes.

Yakit is an all-in-one cybersecurity platform for security researchers and penetration testers.

An open-source security tool for automating XSS scanning and exploiting, focused on bugbounty and devsecops.

An open-source project that provides privacy-focused guides and tools to protect data against global surveillance.

A comprehensive library of cybersecurity resources for developers and security professionals.

This is a fork of the Reaver WPS (Wi-Fi Protected Setup) tool for security research and testing.

A tool that uses the Windows Filtering Platform to block Endpoint Detection and Response (EDR) agents from reporting security events.

A Python tool that provides quick suggestions for SQLMap tampering techniques to bypass SQL injection defenses.

ThePhish is an automated tool for analyzing and detecting phishing emails, providing cybersecurity professionals with a comprehensive solution.

Weak password scanner for various services like FTP, SSH, SQL databases, and more.

Proof of Concept for an advanced in-memory evasion technique to hide injected shellcode from scanners.

An open-source collection of security products such as IDS, IPS, WAF, and honeypots.

This is a GitHub repository for a security vulnerability in Microsoft Teams that allows for remote code execution.

Unix Privesc Check is a shell script that checks for common Unix privilege escalation vectors.

A Python CLI tool for multi-cloud and multi-SaaS asset management, security posture monitoring, and attack surface reduction.

pwncat is a powerful penetration testing tool that offers advanced features like firewall and IDS/IPS evasion, bind and reverse shell, and port forwarding.

Open source metadata repository for security events, useful for security researchers and analysts.

A cheatsheet for bypassing a browser's XSS filter, useful for security researchers and penetration testers.

Active Directory assessment and privilege escalation script for security researchers and penetration testers.

A collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+, a popular red team toolkit.

This repository contains a collection of tools and resources for penetration testing and security research.

Sleepy Puppy is a security-focused XSS payload management framework for developers.