Trending Projects

A Python library that declutters URL lists for web crawling and penetration testing tasks.

Security tools and apps for Android, focused on hacking, penetration testing, and cybersecurity.

An all-in-one hacking tool for Linux and Android (Termux) to turn your environment into a hacking machine.

A Python tool for stealthy data exfiltration using DNS requests.

A Go-based security testing framework for generating and testing PoCs for vulnerabilities.

A security tool for analyzing vulnerabilities, malware, and anomalous activities in Docker images and containers.

An OSINT project to automate Google dorks search for finding information about specific websites.

A large open-source database for detecting secrets, API keys, passwords, and more, useful for security-focused vibe coders.

Beagle is a Python-based incident response and digital forensics tool that transforms security logs and data into graphs.

A curated collection of periodic cyber security newsletters covering the latest news, research, and best practices.

A security knowledge framework maintained by the ffffffff0x team, covering web security, ICS security, forensics, and more.

Automatically brute force all services running on a target, useful for security researchers and bug bounty hunters.

Deprecated JavaScript implementation of the Signal Protocol, now replaced by the TypeScript-based libsignal-client.

A curated list of web3 security resources for penetration testers and bug hunters.

PhoneInfoga is a tool for advanced phone number information gathering and validation using free resources.

A curated collection of top-tier penetration testing tools and productivity utilities for security researchers and bug bounty hunters.

Collection of KQL queries for Advanced Hunting, Detection, and Threat Hunting in Azure Sentinel and Defender for Endpoint.

An open-source Instagram OSINT tool for collecting and analyzing data from Instagram.

An OSINT tool for finding profiles by username, useful for security research and information gathering.

An open-source Go library that uncovers unexpected SSH server exposures and vulnerabilities.

This is a collection of OSINT and penetration testing tools for security researchers and red teams.

P4wnP1 is a highly customizable USB attack platform based on a Raspberry Pi Zero or Raspberry Pi Zero W.

A collection of Kali Linux scripts for penetration testing and security research.

A collection of Linux, macOS, and Windows kernel privilege escalation vulnerabilities with compilation environments, demos, and details.

A curated collection of cybersecurity RSS feeds to help developers stay up-to-date on the latest security news and best practices.

This repository provides a port of ParrotSec's stealth and anonsurf modules to Kali Linux for anonymous web browsing.

A repository that provides tips and tricks for pwn (binary exploitation) in CTF challenges.

A C++ project that removes various kernel callbacks to bypass antivirus and endpoint detection and response (EDR) tools.

A curated list of resources for detection engineering, a cybersecurity function for proactively identifying malicious activity.

Comprehensive security guide for developers covering common vulnerabilities and best practices

Automation tools for internal Windows penetration testing and Active Directory security research.

A collection of Google Dorks that can be used to find vulnerable websites indexed in Google Search results.

A collection of defenses and detections against Cobalt Strike, a popular penetration testing tool.

A collection of CTF (Capture The Flag) tools for cryptography, web security, and more.

An open-source repository of payloads for the Hak5 Bash Bunny, a multi-function USB attack platform.

A privilege escalation tool that can be used to gain SYSTEM access on Windows systems.

A tool for creating vulnerable environments to simulate attacks and collect data into Splunk for security research and detection.

Secure and firewall-agnostic networking library for building hacking and networking tools.

This is a Python-based tool for cracking WiFi passwords, not a developer platform for vibe coders.

A demonstration of phishing by abusing the browser autofill feature.

An iOS security testing framework for penetration testing and vulnerability assessment of mobile apps.

Pillager is an information gathering tool for post-exploitation purposes.

A Python tool for LinkedIn reconnaissance and data extraction.

A real-world malware collection for researchers to understand and analyze malware threats.

A comprehensive repository covering security engineering principles and practices to systematically secure anything.

A simple keylogger for Windows, Linux and Mac used for hacking and penetration testing.

A collection of RSS feeds for cybersecurity and information security news, blogs, and social media.

A Python library that provides AV/EDR evasion capabilities via direct system calls for vibe coders.

OSINT-SPY is a Python tool for performing in-depth information gathering on email, domain, IP, and organization targets.

A curated list of writeups from the Google VRP Bug Bounty program, useful for security researchers and bug hunters.