Trending Projects

A toolset to simulate an APT attack on a system, useful for security testing and research.

A Windows password auditing tool that supports multi-threaded batch checks to quickly detect weak passwords and accounts.

A comprehensive collection of hardening settings and scripts for securing Windows systems.

A Python-based tool to search and analyze known vulnerabilities in software systems.

The 1Password Extension for iOS Apps allows developers to integrate 1Password's secure password management into their mobile apps.

A C-based JWT brute force cracker for security testing and research.

A Swift obfuscator that protects iOS apps against reverse engineering attacks.

A collection of common system vulnerabilities encountered in red team operations.

A curated collection of Windows Event Log samples for security research and threat hunting.

Matsuri is an Android app and toolchain for bypassing internet censorship using Shadowsocks and V2Ray.

OpenKeychain is an open-source OpenPGP implementation for secure communication on Android.

This is an Android GUI application that provides tools for wireless network cracking and monitoring, not a developer platform for vibe coders.

A framework for detecting command and control communication through network traffic analysis.

Privaxy is a next-generation ad and tracker blocker that blocks ads and trackers by MITMing HTTP(s) traffic.

Picocrypt is a small, secure encryption tool for developers focused on privacy and security.

A secure clipboard sharing tool that allows copying and pasting anything over the network.

This repository appears to contain C-based exploit code and is not related to a developer discovery platform focused on vibe coders.

A Go-based tool for checking if a website is vulnerable to the Heartbleed OpenSSL bug (CVE-2014-0160).

A security and network analysis tool for penetration testing and man-in-the-middle attacks.

An open-source OSINT tool for finding profiles by username across various social media platforms.

A private messaging system that hides metadata, built with Go, focused on privacy and research.

SSRF (Server Side Request Forgery) testing resources for security professionals.

The Python Cryptography Toolkit provides a set of cryptographic primitives and utilities for developers.

A Python-based honeypot framework for setting up and managing modern honeypot sensors.

Easy-to-follow tutorials for beginners on using Shadowsocks to bypass internet restrictions.

A hardware U2F security token optimized for physical security, affordability, and style.

ArcherySec is an open-source vulnerability management and security testing platform for DevSecOps teams.

Fibratus is a powerful security tool for adversary tradecraft detection, protection, and hunting on Windows.

This repository contains information about the Cobalt Strike malware framework, which is not a developer tool for building AI-powered applications.

A Java security audit plugin that helps developers find security vulnerabilities in web and Android apps.

Portspoof is a C++ library that generates fake open ports to detect and mitigate network scanning attempts.

RootMyTV is an exploit for rooting/jailbreaking LG webOS smart TVs.

Android reverse engineering tool for unpacking apps via memory analysis and code extraction.

A Python script for finding sensitive data (API keys, access tokens, JWTs) and searching JavaScript files.

An offensive software exploitation course focused on developing exploitation techniques.

A comprehensive tool for exploiting Shiro deserialization vulnerabilities, including command execution and memory shell injection.

A tool for automating brute-force attacks on services found through various scanning techniques.

This is a repository of penetration testing tools for security researchers and developers.

A fast vulnerability scanner that helps pentesters identify potentially vulnerable web servers.

A Python-based toolkit for security researchers and hackers, providing tools for penetration testing and network analysis.

This is a one-click script to set up Shadowsocks/ShadowsocksR and enable BBR kernel acceleration on Ubuntu/CentOS/Debian.

This is a Firefox extension that demonstrates HTTP session hijacking attacks, not a vibe coder tool.

Malcolm is a powerful network traffic analysis tool suite for PCAP files, Zeek logs, and Suricata alerts.

Sudomy is a subdomain enumeration tool for bug hunting and pentesting, providing automated reconnaissance.

The OWASP MASVS is the industry standard for mobile app security verification and testing.

A Python library for security researchers and penetration testers to automate web application testing.

Automatically brute force all services running on a target, useful for security researchers and bug bounty hunters.

This is a collection of hacking and cybersecurity-related books, not a developer tool platform.

This is a collection of tools and resources for developers to bypass internet censorship and access restricted content.

Privacy-respecting web frontends for popular services like Reddit, Twitter, and YouTube.