Trending Projects

A repository that provides tips and tricks for pwn (binary exploitation) in CTF challenges.

Collection of common wordlists for brute force attacks on RDP, SSH, and IP camera passwords.

An open-source web vulnerability scanner and auto-exploiter for Drupal, Joomla, WordPress, and more.

A Python-based Instagram brute force password cracking tool for hacking and security research.

Logging Made Easy (LME) is a no-cost, open-source platform that centralizes log collection, enhances threat detection, and enables real-time alerting for small to medium-sized organizations.

This GitHub repository appears to be a collection of leaked QQ user data, not a developer tool.

A low bandwidth DoS tool written in Python that can be used for penetration testing.

A powerful framework for rogue access point attacks, focused on security research and penetration testing.

A tool to upload arbitrary data via Apple's Find My network, useful for security researchers and data exfiltration.

A command-line tool to quickly search and find exploits in local and online databases for penetration testing.

A collection of automated and manual wordlists for content discovery and bruteforcing.

A Python tool that searches various hash APIs to quickly crack hashes and integrates with HashCat for advanced cracking.

A collection of penetration testing and software development tips for security-focused developers.

A Python script for detecting Windows systems infected with the DOUBLEPULSAR malware implant.

A powerful network reconnaissance framework that allows you to build your own self-hosted alternatives to Shodan, ZoomEye and more.

Advanced DNS filter/blocklists for privacy, security, and clean browsing.

A collection of RSS feeds for cybersecurity and information security news, blogs, and social media.

Run frida-server on boot with Magisk, always up-to-date for Android exploitation and reverse-engineering.

A GUI framework for the Nuclei vulnerability PoC scanner, allowing quick PoC searches and one-click Nuclei runs.

Information Gathering tool for DNS, subdomains, ports, and directory enumeration.

This is a collection of resources for red team and blue team cybersecurity training, not a developer platform.

This Go-based GitHub leak scanning system helps developers and security teams monitor for leaked credentials and sensitive data.

A high-level C2 framework for managing reverse TCP & HoaxShell-based shells with enhanced features

A comprehensive wordlist for web fuzzing and security testing, useful for bug bounty and pentesting.

A general collection of information, tools, and tips regarding CTFs and similar security competitions

A hardened memory allocator designed for modern systems, with integration into Android's Bionic libc.

This repository is a list of Android Remote Access Trojans, not a developer discovery platform for vibe coders.

Comprehensive penetration testing toolkit for web, mobile, APIs, and more, useful for security-focused developers.

Rosenpass is a post-quantum-secure VPN that uses WireGuard to transport the actual data.

This repository appears to be a security research project related to 802.11 wireless network vulnerabilities, not a developer tool for vibe coders.

A Splunk app that guides threat hunting by mapping security telemetry to the MITRE ATT&CK framework.

A root exploit for CVE-2022-0847 (Dirty Pipe), a Linux kernel vulnerability.

A large collection of learning resources and labs for offensive security enthusiasts and professionals.

A compilation of resources from the Practical Ethical Hacking Udemy course, focused on Python-based security tools.

A censorship circumvention tool to evade detection by authoritarian state adversaries.

This repository appears to contain C-based exploit code and is not related to a developer discovery platform focused on vibe coders.

Asset discovery and identification tools to quickly identify web fingerprint information and locate asset types.

A vulnerability scanner that automatically runs 30+ tools on a target, supporting web, system, subdomain, directory, and more scanning.

An open-source 802.11 attack tool written in Rust for security researchers and penetration testers.

A simple reverse ICMP shell written in C for remote system access and control.

A Java library for securely encrypting data into a native .so library for use in your projects.

A modular password spraying tool with threading, proxy support, and more for security researchers.

A Burp plugin that can find reflected XSS vulnerabilities in real-time while browsing a website.

An open-source software supply chain security solution for detecting dependencies, vulnerabilities, and license compliance.

PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)

Clair is a static analysis tool for scanning container images and identifying vulnerabilities.

This C# and Impacket implementation of the PrintNightmare vulnerability (CVE-2021-1675/CVE-2021-34527) allows for privilege escalation on Windows systems.

A DOM fuzzer built in Python that helps security researchers and developers discover vulnerabilities in web applications.

A DNS rebinding attack framework written in JavaScript for security research and testing.

A static analyzer for PE executables, useful for malware analysis and security research.