Trending Projects

A simple SQL injection testing plugin for Burp Suite to help identify SQL injection vulnerabilities.

A proof-of-concept tool to demonstrate the Follina Office RCE vulnerability for testing purposes.

This repository provides a cheat sheet for web application security attacks and techniques.

A collection of tools, scripts, and resources for OSCP (Offensive Security Certified Professional) preparation and penetration testing.

This is a PHP webshell with handy features, not a developer discovery platform for vibe coders.

This is a cheatsheet for Burp Suite, a popular security testing tool used by bug bounty hunters and penetration testers.

This is a sample penetration testing report provided by TCM Security, not a developer discovery platform.

A Python library for tracking the history of USB events on GNU/Linux for forensic and security purposes.

This project appears to be a malicious spyware Trojan program, not a developer tool.

A comprehensive collection of techniques and examples for manually obfuscating PowerShell scripts to evade antivirus detection.

An Active Directory data ingestor for BloodHound Legacy written in Rust, focused on security research and penetration testing.

A Python PoC tool that packages payloads into various output containers to evade detection and demonstrate risks.

A collection of cheatsheets for tools related to pentesting organizations that leverage cloud providers.

Guidelines and training material to write secure smart contracts on the Ethereum blockchain.

An educational resource that explains CSRF tokens and how they work to protect web applications.

A C# library for detecting the presence of malicious strings in .NET applications.

A modded version of the Shellphish tool with colorized text, animations, and extra features for Termux.

An Android plugin tool that automatically encrypts strings in the bytecode to protect app source code.

This is a Python script that installs hacking tools for the Android platform, specifically for the Termux app.

GlobaLeaks is a secure and open-source whistleblowing platform for anyone to set up and maintain.

A Python tool that automatically collects Proof of Concept (POC) or Exploit (EXP) from GitHub based on CVE IDs.

This repository provides a tool for remotely accessing webcams, which can be used for malicious purposes.

A comprehensive library of cybersecurity resources for developers and security professionals.

A collection of bug bounty tools and examples for security researchers and penetration testers.

This Java application is designed for automatic SQL database injection, a common technique used in cybersecurity and penetration testing.

A Firefox extension to protect users from browser fingerprinting.

A modular password spraying tool with threading, proxy support, and more for security researchers.

A Python tool for sending phishing messages and attachments to Microsoft Teams users.

Android library that provides a secure way to store sensitive data in shared preferences with encryption.

This is a shell script for attacking wireless connections using Kali Linux tools.

A DNS rebinding attack framework written in JavaScript for security research and testing.

A Python tool for penetration testers to audit domain passwords.

A Google Chrome extension for passive monitoring of high-risk fingerprinting, honeypot detection, and machine feature obfuscation.

A tool to disable SSL verification and pinning on Android, allowing developers to bypass security checks.

A collection of wordlists and tools for bruteforcing and penetration testing purposes.

This is a collection of hacking tools for Android, Instagram, and wifi, not a developer discovery platform.

A social media enumeration and correlation tool for security researchers and penetration testers.

A comprehensive collection of hardening settings and scripts for securing Windows systems.

Advanced dork Search & Mass Exploit Scanner for security testing and vulnerability discovery.

Enhance the security and privacy of your Windows 10 and Windows 11 deployments with an optimized, hardened, and debloated script.

This repository contains research code and papers from members of the vx-underground community, focused on malware development and research.

Rosenpass is a post-quantum-secure VPN that uses WireGuard to transport the actual data.

This repository is a comprehensive book focused on penetration testing and the ATTCK framework, not a developer discovery platform for vibe coders.

A comprehensive web security dictionary for security researchers and penetration testers.

This is a fork of the Reaver WPS (Wi-Fi Protected Setup) tool for security research and testing.

Powerful and extensible proxy server with anti-censorship functionality for Android devices

An open-source OWASP-based web application security testing checklist to help track completed and pending test cases.

A Python library that protects against fake shops, ads, tracking, and other internet attacks.

Cortex is a powerful open-source engine for observable analysis and active incident response.

PowerShell tools for exploiting MachineAccountQuota and DNS vulnerabilities.