Trending Projects

A PowerShell script designed to bypass AMSI and commercial antivirus solutions for penetration testing

This repository contains miscellaneous exploit code for security researchers and penetration testers.

A personal VPN project using Shadowsocks and v2ray to provide a free and secure VPN solution.

AndroRAT is a Remote Administrator Tool for hacking Android devices, allowing remote control and exploitation.

A Go package and command-line tool for analyzing Java archives (JAR files) for Log4j vulnerabilities.

A collection of proof-of-concept exploits for the Linux kernel, focused on privilege escalation.

A Python tool to extract one-time password (OTP) secrets from QR codes exported by 2FA apps like Google Authenticator.

This repository contains a collection of malware samples, which is not recommended for developers to use or distribute.

A curated list of web3 security resources for penetration testers and bug hunters.

GooFuzz is a tool to perform fuzzing with an OSINT approach, enumerating targets without leaving evidence.

Secure Boot for NixOS, a Rust-based project for the Nix community.

Cortex is a powerful open-source engine for observable analysis and active incident response.

Advanced dork Search & Mass Exploit Scanner for security testing and vulnerability discovery.

An anti-DDoS Lua script for Nginx to protect web servers from various attack types using a JavaScript-based authentication puzzle.

VECTR is a tool that helps track red and blue team testing activities to measure detection and prevention capabilities.

A collection of 'Proof of Concept or GTFO' articles and magazines for hackers and security researchers.

A semi-automated tool for rapidly searching public GitHub data for sensitive secrets and information leaks.

A PowerShell Runspace Post Exploitation Toolkit for security research and penetration testing.

A next-generation enumeration tool for security professionals and CTF players, with additional features like JSON/YAML export.

This repository is a curated list of advanced Windows exploitation references, not a developer discovery platform for vibe coders.

Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation.

A comprehensive SOAR (Security Orchestration, Automation and Response) platform for efficient security automation without coding.

A collection of incident response playbooks mapped to MITRE ATT&CK tactics and techniques.

A curated list of resources related to executable packing, useful for malware analysis and security research.

The XSS Hunter service is a portable version of XSSHunter.com, a tool for security researchers and developers.

Remote video eavesdropping using a software-defined radio platform, not a vibe coder tool.

This is a leaked repository of the Zeus trojan horse malware, not for actual use.

An open-source Java-based network intrusion detection and response system for visibility and security.

A tool for bypassing websites protected by CloudFlare WAF, useful for penetration testing and website analysis.

A machine learning security engine that automatically prevents threats against web apps and APIs.

This Python tool is a Facebook hacking tool, not a developer discovery platform for vibe coders.

Hostfile blocklist for ads and tracking, updated regularly to improve privacy and performance.

A toolkit for emulating and analyzing firmware for security vulnerabilities, targeted at IoT and embedded devices.

A simulated phishing system for red-blue team exercises in the field of cybersecurity.

A repository providing free VPN configurations for users in Russia and other regions.

A Python library that declutters URL lists for web crawling and penetration testing tasks.

A comprehensive penetration testing framework with a variety of cybersecurity resources for security professionals.

A collection of Aggressor scripts for Cobalt Strike, a popular penetration testing framework.

This repository provides password cracking rules for Hashcat based on statistics and industry patterns.

Android library that provides a secure way to store sensitive data in shared preferences with encryption.

A subdomain takeover vulnerability checker tool written in Go for bug bounty hunting and security research.

A curated list of resources related to AWS security, including books, tutorials, and security tools.

Free VPN configs for Russia using shadowsocks, v2ray, vless protocols with whitelist bypass

An open-source Instagram OSINT tool for collecting and analyzing data from Instagram.

A shell script tool to send anonymous SMS messages, useful for developers who need to test SMS functionality.

An open-source OSINT tool to find breached emails, databases, pastes, and other relevant information.

Curated list of machine learning tools and resources for cybersecurity professionals.

A comprehensive security checklist for developers, security researchers, and penetration testers.

A Python library that demonstrates a security vulnerability in QR code-based login systems.

An open-source ESP32-powered tool to scan, jam, spoof, and master BLE, Wi-Fi, and 2.4GHz networks.