Trending Projects

A high-performance, comprehensive credentials bruteforcing and enumeration tool for security research.

A Python tool to test for the CVE-2020-1472 vulnerability, which is a critical security issue.

This repository is a collection of exploits and hacking tools, not a vibe coder platform.

This is a repository focused on learning Ethereum Virtual Machine (EVM) attacks, useful for security audits and smart contract development.

A library of BadUSB payloads for the Flipper Zero device, primarily written in PowerShell.

This repository contains personal notes on Active Directory penetration testing, not a developer discovery platform for vibe coders.

A Python tool that helps find interesting Amazon S3 buckets by monitoring certificate transparency logs.

This repository provides a curated list of tutorials and resources for hacking online games.

A passive Shiro detection plugin for the BurpSuite security tool, used for web application security testing.

A comprehensive guide to privacy settings for popular software and services.

An Assembly-based tool for AV/EDR evasion via direct system calls.

This Python repository provides a suite of online tools for security scanning, including CMS identification, information leakage, and port scanning.

This repository is a collection of malware samples gathered from honeypots, useful for malware analysis.

BlueDucky is a Python implementation of a security vulnerability (CVE-2023-45866) that allows unauthenticated code execution using a HID keyboard.

An open-source 802.11 attack tool written in Rust for security researchers and penetration testers.

Phishing catcher tool that uses Certificate Transparency to detect and report suspicious SSL/TLS certificates.

A curated list of awesome security hardening techniques for Windows.

JA4+ is a suite of network fingerprinting standards for cybersecurity and network forensics analysis.

A collection of PDF/books about modern web application security and bug bounty programs.

A comprehensive OSINT cheat sheet and repository of tools, datasets, and resources for security researchers and hackers.

An open-source USB Rubber Ducky project that can be used for pen-testing and security research.

A reverse tunneling tool for pentesters, built with Go, to easily establish secure connections.

A secure and scalable network traffic analysis framework written in Go for security and monitoring.

A Python script for checking Linux privilege escalation vulnerabilities for security testing.

A reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications.

A Python-based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

An evasion framework for bypassing anti-virus and endpoint detection and response (EDR) tools.

A comprehensive guide for web application penetration testing and bug bounty hunting.

A high-value vulnerability collection and notification service for developers, integrating with popular chat platforms.

An all-in-one hacking tool for Linux and Android (Termux) to turn your environment into a hacking machine.

A Python-based YARA rule generator for malware analysis and research.

A curated list of Google Dorks for bug bounty, web application security, and penetration testing.

A security audit tool to assess and improve cybersecurity posture.

This repository contains publications from the security research firm Trail of Bits, covering academic papers and conference presentations.

WeblogicTool is a GUI tool for Weblogic vulnerability detection, command execution, webshell injection, and password decryption.

An open-source dataset of Advanced Persistent Threat (APT) group information and analysis.

This is a remote access tool (RAT) focused on obtaining interactive shells, not a developer discovery platform.

Librefox is a Firefox-based browser with privacy enhancements for security-conscious users.

A DOM fuzzer built in Python that helps security researchers and developers discover vulnerabilities in web applications.

A simple FOFA client written in JavaFX for security researchers and red teams.

A Python library that tracks the real IP address behind Cloudflare, Sucuri, and Incapsula proxy services.

A Python library that generates random DNS and HTTP/HTTPS traffic to create network noise and obfuscate online activities.

This project provides a basic anti-detection frida-server solution for developers.

A Python library that provides one-liners for various penetration testing and privilege escalation tasks.

This is a hacking tool for brute-forcing Instagram passwords, not a developer platform focused on vibe coders.

A Python library for intercepting and monitoring RDP (Remote Desktop Protocol) connections for security and penetration testing.

A cryptography toolkit providing a variety of secure algorithms and primitives for developers.

Comprehensive scanning tool for security testing and penetration testing of websites and web applications.

The SpecterOps project management and reporting engine focused on information security and penetration testing.

A Go-based security testing tool that includes vulnerability scanning, port scanning, web directory scanning, and security compliance checks.