Trending Projects

A Python library that makes it easy to pop remote shells and leverage penetration testing tools.

This is the Kali NetHunter project, a penetration testing and security framework for Android devices.

Privacy-respecting web frontends for popular services like Reddit, Twitter, and YouTube.

A curated list of resources related to Industrial Control System (ICS) security.

A multi-threaded PDF password cracking utility with password format builders and dictionary attacks.

Malcolm is a powerful network traffic analysis tool suite for PCAP files, Zeek logs, and Suricata alerts.

A Perl script that suggests Linux exploits based on the target system's operating system release number.

A collection of web security tools for penetration testing and vulnerability scanning.

Simple Swift wrapper for Keychain that works across iOS, watchOS, tvOS and macOS.

An automated NoSQL database enumeration and web application exploitation tool for security researchers.

A PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC functions.

An advanced Python tool for email reconnaissance and cybersecurity research.

Noriben is a portable, simple malware analysis sandbox written in Python.

An IIS short filename enumeration tool for security audits and penetration testing.

This repository provides suggestions and code for Capture The Flag (CTF) cybersecurity challenges.

A Raspberry Pi-based toolkit for WiFi hacking and penetration testing.

This is a hacking tool for brute-forcing Instagram passwords, not a developer platform focused on vibe coders.

A privilege escalation tool for Windows domains where LDAP signing is not enforced.

This repository contains a collection of malware samples for analysis purposes, not for malicious use.

This repository contains emergency response notes from a security engineer's perspective.

A Burp Suite extension that adds useful context menu functions for web application penetration testing.

Splunk Security Content is a Python library for cybersecurity detection and response engineering.

This Go-based stealth redirector helps red team operations by providing OPSEC for C2 infrastructure.

This repository contains decrypted content from the Equation Group, a suspected NSA hacking group.

A curated list of threat modeling resources for learning and practicing security review.

A Python-based reconnaissance framework for researching and investigating Telegram.

A collection of 60k+ Nuclei templates to scan WordPress sites for vulnerabilities and CVEs.

A comprehensive guide to Capture The Flag (CTF) competitions for security and hacking enthusiasts.

A Python-based weaponized web shell for penetration testing and security research.

This GitHub repository contains a collection of resources related to Remote Access Tools (RATs) and Command & Control (C&C) infrastructure.

A PHP command-line tool for checking security vulnerabilities in Composer dependencies.

Improve your security and privacy by blocking ads, tracking and malware domains.

A tool that uses the Windows Filtering Platform to block Endpoint Detection and Response (EDR) agents from reporting security events.

Undetectable Windows payload generation tool for penetration testing and security research.

A passive information leakage detection tool for Chrome and Firefox developers using AI tools.

A Python tool for remotely dumping DPAPI credentials from Windows systems.

A Python library for implementing cryptographic attacks and utilities for security research and CTF challenges.

This is a Java project that tests for Remote Code Execution (RCE) vulnerabilities in various Java web frameworks.

An automatic LFI (Local File Inclusion) exploiter and scanner written in Python.

A network monitoring and bandwidth limiting tool for developers without administrative access.

An Assembly-based tool for AV/EDR evasion via direct system calls.

A C++ tool for post-exploitation and malware bypassing antivirus/EDR solutions.

This repository contains information and resources related to IT security that developers may find useful.

A cryptography-powered, open-source toolkit for Zero Trust security in AI-driven infrastructure and applications.

Smap is a drop-in replacement for Nmap that uses Shodan.io to scan and discover devices on a network.

A Python tool that sniffs for sensitive data from network interfaces or PCAP files.

A cryptography toolkit providing a variety of secure algorithms and primitives for developers.

A browser extension for OSINT (Open-Source Intelligence) search, focused on threat intelligence and security.

This repository provides indicators of compromise from Amnesty International's cyber investigations.

This repository is a curated list of advanced Windows exploitation references, not a developer discovery platform for vibe coders.