Trending Projects

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

An offensive web testing framework that helps security researchers and pentesters find and exploit vulnerabilities in web applications.

Open source platform to enhance security and observability of cloud native applications and infrastructure

Conpot is a Python-based ICS/SCADA honeypot for security research and defensive purposes.

This C-based library helps developers discover and exploit buffer overflow vulnerabilities.

A script that performs local Linux enumeration and privilege escalation checks.

Metasploitable3 is a vulnerable virtual machine for security research and testing purposes.

A C++ library for loading and executing shellcode, likely used for security research and penetration testing.

Picocrypt is a small, secure encryption tool written in Go that can be used for file encryption and privacy.

This Go-based GitHub leak scanning system helps developers and security teams monitor for leaked credentials and sensitive data.

C# implementation of the PowerView framework for Windows domain enumeration and lateral movement

A Go-based tool to fetch known URLs from various threat intelligence sources for security analysis.

A knowledge base for vulnerability PoCs with over 1000 vulnerabilities.

A collection of security-related presentations and research reports shared at various conferences and events.

A command-line tool for retrieving information about any IP address, useful for security and information gathering.

A large repository of cybersecurity-related links, but not focused on AI coding tools or platforms.

This repository provides downloads for various VPN software across different platforms.

A next-generation enumeration tool for security professionals and CTF players, with additional features like JSON/YAML export.

This Python project generates Gmail keyloggers for Windows, primarily used for penetration testing.

A fast, open-source CORS misconfiguration vulnerability scanner written in Python.

Cryptomator for Android is an open-source file encryption tool for secure cloud storage access.

This is a script for hacking Instagram accounts using a brute-force password cracking technique.

XX-Net is a proxy tool to bypass GFW with multi-platform support and traffic obfuscation.

A CLI tool that helps developers inspect Android APK files and bypass HTTPS certificate pinning

A Python tool for enumerating and abusing Active Directory Certificate Services (ADCS).

A curated collection of Windows Event Log samples for security research and threat hunting.

A suite of tools for hacking social media accounts, including brute-force, phishing, and reporting attacks.

JA4+ is a suite of network fingerprinting standards for cybersecurity and network forensics analysis.

This is an Albanian hacking tool with various functionalities for ethical hacking and information gathering.

This repository provides a collection of advanced XSS payloads for penetration testing and security research.

A Python-based tool for finding exploit code from various exploit databases.

A comprehensive OSINT tool written in Go that allows searching anyone's digital footprint across 300+ websites.

Security Onion is a Linux distribution for threat hunting, enterprise security monitoring, and log management.

A .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers.

This is an open-source EDR (Endpoint Detection and Response) repository, not a developer discovery platform for vibe coders.

This Python repository provides a JSON file for performing user enumeration on various websites.

XploitSPY is an Android monitoring tool for malicious activities and remote access.

A Golang command and control framework for post-exploitation tooling and red team operations.

Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers.

This repository appears to be a collection of articles related to penetration testing, not a developer discovery platform focused on vibe coders.

A free, open-source password manager compatible with KeePass, with cross-platform support.

A collection of tools and resources for web hackers and bug hunters.

An advanced Python-based tool for automating the detection and exploitation of SQL injection vulnerabilities.

In-depth repository of Telegram OSINT resources covering tools, techniques and tradecraft.

A Burp Suite plugin for testing web applications by spoofing IP addresses in case of server misconfigurations.

A collection of SaaS attack techniques to help defenders understand the threats they face.

This Python repository provides a proof-of-concept for brute-forcing Apple ID login credentials.

This is a Docker-based environment for reproducing and testing IoT firmware vulnerabilities.

A decentralized VPN written in Go that provides secure, privacy-preserving internet access.

Athena OS is a Arch/Nix-based Linux distribution focused on cybersecurity learning and penetration testing.