Trending Projects

Attify OS is a Linux distro for penetration testing and exploiting IoT devices.

A Python tool to search popular search engines for security research and reconnaissance.

A comprehensive cheatsheet for various Man-in-the-Middle (MITM) attack techniques for penetration testing.

This is a collection of commonly used commands for penetration testing, not a developer tool.

Actionable analytics and threat intelligence tools for incident response and threat hunting.

A comprehensive collection of hacking tools, resources, and references for practicing ethical hacking.

An affordable WiFi hacking platform for testing and learning about network security.

A comprehensive security assessment tool that supports scanning for common web vulnerabilities and custom PoCs.

A collection of setup scripts for security research tools, useful for penetration testing and ctf challenges.

Leaked source code for the Mirai botnet, for research and indicator of compromise (IoC) development purposes.

An open-source project focused on tracking and exposing Huawei's alleged misdeeds.

A powerful network penetration testing tool that can be used to automate various pentesting tasks.

A comprehensive list of privacy-focused alternatives to Google products.

This is a C-based tool for bypassing Windows User Account Control (UAC) security features.

Easily identify emails, IP addresses, and more from text or PCAP files with this cybersecurity-focused Python library.

Automatic Linux privilege escalation tool that exploits common vulnerabilities and misconfigurations.

A comprehensive resource for bug bounty hunters, covering payloads, bypasses, and other security techniques.

This is a collection of security-related mind maps, not a developer discovery platform for vibe coders.

A compilation of resources from the Practical Ethical Hacking Udemy course, focused on Python-based security tools.

This repository contains course materials for learning modern binary exploitation techniques.

An automated email OSINT tool for gathering information about email addresses and associated accounts.

A set of SQL injection labs to test different types of SQL injection vulnerabilities.

A Python library for detecting homograph phishing attacks, typo squatting, and brand impersonation through domain name permutation.

A scalable fuzzing infrastructure to find vulnerabilities and improve software stability.

Snyk CLI scans and monitors projects for security vulnerabilities, helping developers secure their applications.

Open Source Cloud Native Application Protection Platform (CNAPP) for securing cloud-native applications

This is an Android app that detects and fights against IMSI-Catchers, StingRays, and silent SMS attacks.

A toolkit for reverse engineering and malware analysis on Windows systems.

Digital Privacy is a comprehensive collection of resources for information protection and open-source intelligence (OSINT)

A C++ cheat/skin changer tool for the game League of Legends, used for modding and reverse-engineering.

An open-source web vulnerability scanner that helps developers audit and secure web applications.

A powerful penetration testing tool for LLMNR, NBT-NS and MDNS poisoning with rogue authentication servers.

This repository provides a collection of tools and techniques for attacking and defending Active Directory using modern adversary tradecraft.

This GitHub repository provides a collection of free security and hacking ebooks for developers.

A free, open-source honeypot solution for enterprise-level security monitoring and threat hunting.

A frida tool to dump dex in memory to support security engineers analyzing malware.

This is an archived repository that provides a web crawler and search engine for the now-defunct Wooyun security vulnerability database.

This repository provides a cheat sheet for web application security attacks and techniques.

This repository provides a collection of deals and discounts for InfoSec-related software and tools during the Black Friday season.

A collection of Kali Linux scripts for penetration testing and security research.

This repository provides resources for learning web security concepts like SQL injection and XSS.

P4wnP1 A.L.O.A. is a Raspberry Pi Zero W framework for penetration testing, red teaming, and physical engagements.

Arachni is a powerful open-source web application security scanner framework for penetration testing and vulnerability detection.

Course materials for Malware Analysis, focused on reverse engineering and understanding malicious software.

Boundary enables identity-based access management for dynamic infrastructure.

A social media enumeration and correlation tool for security researchers and penetration testers.

A powerful network reconnaissance framework that allows you to build your own self-hosted alternatives to Shodan, ZoomEye and more.

A project documenting the history and providing a tutorial on the Shadowsocks proxy server.

A collection of security testing tools and payloads for web application penetration testing.

A simple and lightweight library for performing encryption and decryption in PHP.