Trending Projects

Cryptomator for Android is an open-source file encryption tool for secure cloud storage access.

A collection of resources for learning about Linux kernel security and exploitation.

A PowerShell script for enumerating privilege escalation vulnerabilities on Windows systems.

An Arch Linux-based distribution for penetration testers and security researchers.

A Python tool to test for the CVE-2020-1472 vulnerability, which is a critical security issue.

A Frida-based Android app privacy compliance detection tool for developers.

An integrated BurpSuite vulnerability detection plugin for security researchers.

A Python-based password brute force dictionary with keyboard combinations, pinyin, and alphanumeric dictionaries.

This repository contains the public open-source code of the malware Stuxnet, also known as MyRTUs.

This repository provides a comprehensive collection of resources and tools for cellular network hacking.

An automated security and vulnerability scanning tool for security professionals and red teams.

A file-sharing tool that allows you to find the responsible person in case of a data leakage.

A collection of tools and resources for web hackers and bug hunters.

Arachni is a powerful open-source web application security scanner framework for penetration testing and vulnerability detection.

An OSINT project to automate Google dorks search for finding information about specific websites.

Enhance the security and privacy of your Windows 10 and Windows 11 deployments with an optimized, hardened, and debloated script.

A cheatsheet for bypassing a browser's XSS filter, useful for security researchers and penetration testers.

A tool for cloning and running the popular WiFi Pineapple security device on generic hardware.

A simple C++ tool to encrypt and hide files inside images using Least-Significant-Bit encoding.

This repository contains write-ups for iOS vulnerabilities that have been released.

macOS security and privacy guide for developers

Automation tool to assess M365 tenant security against CISA baselines for cybersecurity compliance.

JA4+ is a suite of network fingerprinting standards for cybersecurity and network forensics analysis.

XVWA is a vulnerable web app for security enthusiasts to learn application security.

This repository provides principles and guidance for designing and deploying a zero trust architecture.

This is a Java web security repository, likely focused on web application security research and testing.

AutoPWN Suite is a Python-based project for scanning vulnerabilities and automatically exploiting systems.

A Python project that reverse-engineers the new 'captchaless' ReCaptcha system.

A Python script for brute-forcing WPA/WPA2 WiFi passwords, not suitable for vibe coders.

A reverse shell microservice that can be used for security testing and pentesting purposes.

Frida scripts to rewrite mobile applications at runtime to directly MitM all HTTPS traffic

ServerScan is a high-concurrency network scanning and service detection tool written in Golang.

A collection of PowerShell functions for hackers and penetration testers.

A cross-platform honeypot web server designed to punish and deter unruly HTTP bots and spammers.

Jok3r v3 BETA 2 is a comprehensive network and web penetration testing automation framework.

This Python library provides a comprehensive set of tools for penetration testing and offensive security.

Iris-web is a collaborative incident response platform for digital forensics and incident response teams.

This GitHub repository contains a hidden desktop tool for the Cobalt Strike penetration testing framework.

A collection of scripts and executables for penetration testing and digital forensics.

Hemmelig is an encrypted secrets management tool that keeps sensitive information secure in chat logs, emails, and more.

A webshell management tool for Godzilla that helps bypass traffic detection devices.

A curated list of awesome resources for threat detection and incident response.

Hayabusa is a Rust-based threat hunting and forensics timeline generator for Windows event logs.

A Python-based tool to search and analyze known vulnerabilities in software systems.

A Python library that provides AV/EDR evasion capabilities via direct system calls for vibe coders.

A BLE and Bluetooth jammer using nRF24L01 and ESP32 for cybersecurity research and pentesting.

A collection of over 60 BadUSB scripts for the FlipperZero device, focused on security research and penetration testing.

Bandit is a static code analysis tool that helps find security issues in Python code.

This repository provides a collection of cheatsheets for various penetration testing tools and techniques.

This is a Python library for cracking WPA passwords using precomputed data.