Trending Projects

This is an open-source tool for performing various types of spam and DDoS attacks, primarily targeting Discord, email, and SMS.

A collection of Beacon Object Files (BOFs) for situational awareness tasks on compromised systems.

This is a Java security repository focused on secure coding and code auditing.

A collection of security-related datasets for security research and analysis.

This project provides ESP8266 firmware for performing deauthentication attacks on wireless networks.

An easy-to-set-up SSH honeypot that logs the activity of anyone who connects to it.

An offline Wi-Fi Protected Setup brute-force utility for security researchers and penetration testers.

An alternative method for executing shellcode via callbacks in C++.

A comprehensive guide for cybersecurity professionals preparing for job interviews.

This repository contains a Linux eBPF backdoor over TCP, allowing remote access and exploitation.

This is a Python script that installs hacking tools for the Android platform, specifically for the Termux app.

Collection of KQL queries for Advanced Hunting, Detection, and Threat Hunting in Azure Sentinel and Defender for Endpoint.

This C# project demonstrates an attack technique to retrieve NTLM hashes without touching LSASS.

Nym is a decentralized, privacy-preserving network that enables anonymous transactions and strong network-level privacy.

Curated DevSecOps resources and tooling for secure software development.

An interactive cheat sheet of offensive security tools and commands for Windows/AD environments.

A shell script that transparently encrypts files within a Git repository to securely manage secrets.

This is a collection of detailed tutorials on using various VPN/proxy services like Shadowsocket, V2Ray, and Trojan for secure internet access.

HackBar is a Burpsuite plugin that provides a user-friendly interface for web application penetration testing.

A password cracking tool with a single rule to crack all passwords, or at least try to.

This Python library provides a comprehensive set of tools for penetration testing and offensive security.

A comprehensive cryptography library with implementations and challenges for security researchers and CTF participants.

This is a repository containing notes on penetration testing, not a developer discovery platform.

A library for protecting against prototype pollution vulnerabilities in JavaScript applications.

This repository provides access to the latest proxy/VPN resources for developers who need to bypass censorship or access restricted content.

This repository provides methods to bypass 403/401 errors and includes bash automation scripts.

This repository contains a collection of malware samples, which is not recommended for developers to use or distribute.

Advanced dork Search & Mass Exploit Scanner for security testing and vulnerability discovery.

VECTR is a tool that helps track red and blue team testing activities to measure detection and prevention capabilities.

A semi-automated tool for rapidly searching public GitHub data for sensitive secrets and information leaks.

A next-generation enumeration tool for security professionals and CTF players, with additional features like JSON/YAML export.

A collection of incident response playbooks mapped to MITRE ATT&CK tactics and techniques.

Remote video eavesdropping using a software-defined radio platform, not a vibe coder tool.

This Python tool is a Facebook hacking tool, not a developer discovery platform for vibe coders.

An open-source Instagram OSINT tool for collecting and analyzing data from Instagram.

A shell script tool to send anonymous SMS messages, useful for developers who need to test SMS functionality.

This repository provides tools and configurations for accessing censorship-circumvention services like Shadowsocks, Clash, and Trojan.

Crowbar is a Python-based brute forcing tool for penetration testing, supporting protocols not covered by other tools.

A collection of security POCs and exploits maintained by the Baize Sec security team.

A WebSocket-based memory shell/webshell tool for developers interested in security research.

A tool for enumerating, escalating privileges, and escaping Docker containers through a suite of exploits.

An open-source remote access tool (RAT) developed in C#, providing a comprehensive set of features for remote system management.

A Python library to completely block Google and its services for improved privacy and reduced tracking.

An open-source OSINT tool for recon and security research without API keys

A demonstration of phishing by abusing the browser autofill feature.

AD Miner is an Active Directory audit tool that uncovers security weaknesses using Bloodhound graph data.

Picocrypt is a small, secure encryption tool written in Go that can be used for file encryption and privacy.

OWASP Mutillidae II is a deliberately vulnerable web app for web-security training and assessment.

A collection of tools to perform advanced searches on GitHub for security research and bug bounty.

A pentest reporting tool written in Python to free developers from Microsoft Word.