Trending Projects

This repository contains a series of challenges for learning the Frida framework for Android exploitation and reverse engineering.

This is a Chrome extension that demonstrates bypassing Widevine L3 DRM for media content.

This repository contains a tutorial for setting up a phishing toolkit on Kali Linux or Termux.

Tsunami is a general purpose network security scanner for detecting high severity vulnerabilities.

A deliberately vulnerable CI/CD environment to learn CI/CD security through multiple challenges.

An EDR (Endpoint Detection and Response) testing tool for developers to experiment with defense evasion techniques.

linWinPwn is a bash script that streamlines the use of Active Directory security tools for penetration testing.

This is a comprehensive security handbook covering web vulnerabilities, exploitation, code auditing, and penetration testing.

A modern cryptographic primitives and protocols library written in C for security and TLS applications.

A Python tool to help MySQL client file reading and JDBC client Java deserialization for security testing.

This GitHub repository provides a Docker environment for testing various versions of the FastJson library for vulnerabilities and exploitation techniques.

This repository appears to be a Java security-focused project, not a developer discovery platform for vibe coders.

A framework for enumerating, spraying, exfiltrating, and backdooring Office 365 accounts, not for AI vibe coders.

A repository containing a list of XSS (Cross-Site Scripting) vectors and payloads for security research and testing.

A collection of tools, tips, and tricks for exploring and securing Industrial Control Systems (ICS) and SCADA systems.

This repository provides an organized list of resources for malware development, which is not recommended for general use.

A Python library for stealing signatures and making invalid signatures for testing purposes.

A comprehensive list of reentrancy attacks on Ethereum smart contracts for security research.

A curated list of resources related to AWS security, including books, tutorials, and security tools.

Captfencoder is an open-source suite of network security tools, including crypto, hashing, and security utilities.

Transmission block list repository to help developers protect their systems from malicious IP addresses.

A tool for cloning and running the popular WiFi Pineapple security device on generic hardware.

An exploitation framework based on Python for Industrial Control System (ICS) and SCADA security research.

Metarget is a Python framework for automatically creating vulnerable infrastructures for security research and testing.

A modern 32/64-bit position independent implant template for security researchers and penetration testers.

This repository contains a collection of kernel exploits, likely not relevant for vibe coders.

A static analyzer for PE executables, useful for malware analysis and security research.

Course materials for Malware Analysis, focused on reverse engineering and understanding malicious software.

A curated collection of Windows Event Log samples for security research and threat hunting.

This is a remote access tool (RAT) focused on obtaining interactive shells, not a developer discovery platform.

This is a Shell script that sets up a TLS proxy for the Signal messaging app, likely for security and privacy purposes.

Blokada is an open-source ad blocker and VPN app for Android and iOS that provides privacy and security features.

A toolset to simulate an APT attack on a system, useful for security testing and research.

An open-source OSINT tool for finding profiles by username across various social media platforms.

Fibratus is a powerful security tool for adversary tradecraft detection, protection, and hunting on Windows.

A Java tool for exploiting JNDI-based attacks and ysoserial payloads for web security testing.

Distributed password cracking tool built on Hashcat for security researchers and penetration testers.

This is a collection of detailed tutorials on using various VPN/proxy services like Shadowsocket, V2Ray, and Trojan for secure internet access.

This is an automated wireless hacking tool written in Python, not a developer discovery platform focused on vibe coders.

A Go-based utility for penetration testing and network security, featuring DHCP, DNS, and other network spoofing capabilities.

A Python framework for wireless penetration testing and network security assessment.

GhostNet is an open-source, privacy-focused network tool for secure communication and anonymous web browsing.

An open-source security guide covering security standards, frameworks, threat models, encryption, and benchmarks.

A .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers.

A Python tool that automates gaining administrative rights in Active Directory environments using offensive tactics.

Tool for bypassing Discord server verification checks on low-spec machines.

The OWASP Top 10 is a standard awareness document for web application security.

A refactored and improved password spraying tool that uses FireProx APIs to stay anonymous and beat throttling.

A wireless penetration testing tool for cracking WPA/WPA2 handshakes and PMKID keys.

A Rust library for offensive security and red team engagements.