Trending Projects

This Go-based stealth redirector helps red team operations by providing OPSEC for C2 infrastructure.

This project is a Remote Access Trojan (RAT) that provides full remote command-line access, allowing for the download and execution of programs, and the spreading of viruses and malware.

A cheatsheet of default credentials to help blue/red teamers identify devices with default passwords

The leading security assessment framework for Android, providing a comprehensive toolkit for penetration testing.

An open-source library for creating security detection rules and threat hunting content.

A Python script to track location with live address and accuracy using Termux on Linux platforms.

This GitHub repository provides instructions to install the Metasploit Framework 6 on the Termux Android terminal emulator.

An easy-to-set-up SSH honeypot that logs the activity of anyone who connects to it.

A modern reverse shell sessions manager written in Go for security researchers and penetration testers.

A machine learning security engine that automatically prevents threats against web apps and APIs.

An open-source remote access tool (RAT) developed in C#, providing a comprehensive set of features for remote system management.

A tool for enumerating, escalating privileges, and escaping Docker containers through a suite of exploits.

A Rust implementation of the Noise Protocol Framework for secure communication.

A Rust-based tool for rapidly searching and hunting through Windows forensic artifacts.

A comprehensive toolkit for Windows penetration testing, including a range of security tools and utilities.

AFWall+ is an open-source Android firewall app that allows users to control network access and block unwanted traffic.

An open-source penetration testing framework and vulnerability exploitation tools for Spring Boot applications.

A Python library for spoofing Apple BLE proximity pairing messages, likely used for security research.

Python reference implementation of The Update Framework (TUF), a library for securing software update systems

Free and open-source BadUSB payloads for the Flipper Zero hacking device, supporting Windows, Linux, and iOS.

A powerful mobile security testing framework for automating instrumentation and dynamic analysis of mobile apps.

AndroRAT is a Remote Administrator Tool for hacking Android devices, allowing remote control and exploitation.

This is a database of known phishing domains and URLs that can be used to validate and detect phishing attacks.

OSINT-SPY is a Python tool for performing in-depth information gathering on email, domain, IP, and organization targets.

A Go-based security testing framework for generating and testing PoCs for vulnerabilities.

A collection of CTF (Capture The Flag) tools for cryptography, web security, and more.

An ESP32 firmware that revolutionizes pentesting with a focus on security research and penetration testing.

Streamline your security workflows with this automated pentest reporting tool with custom templates and project tracking.

Kunai is a threat-hunting tool for Linux that uses eBPF to detect and monitor security threats.

A collection of study notes and resources for learning web hacking and security.

This Rust-based repository provides tools and resources for offensive security and penetration testing.

A collection of Burpsuite plugins, articles, and usage tips for web security testing and penetration testing.

APKiD is a tool for identifying Android apps that have been packed, obfuscated, or secured using various techniques.

This repository contains a C# library for abusing Active Directory certificate functionality.

This is a Python-based penetration testing framework for discovering vulnerabilities.

Android library that provides a secure way to store sensitive data in shared preferences with encryption.

A web scraper and analyzer for security information sites and security professionals' social accounts.

This project allows you to create up to a thousand WiFi access points with custom SSIDs, useful for security testing.

This repository provides a suite of tools for mapping network assets, scanning ports, and extracting sensitive information from web applications.

This Python tool detects sensitive information leaks by scanning web applications for vulnerable files.

A PowerShell-based utility for creating malicious Office macro documents.

This Java-based tool is a collection of vulnerability detection utilities, not focused on AI coding tools.

This repository provides a collection of Windows kernel exploit samples for penetration testing and security research.

A small, fast, portable TLS/SSL implementation for embedded devices to the cloud.

A Python tool that can discover hidden IP addresses behind Cloudflare using misconfigured DNS and old database records.

An OSINT framework and package manager for security researchers and bug bounty hunters.

A curated list of cybersecurity datasets for security researchers and machine learning practitioners.

This is a Windows kernel and user mode emulation library for malware analysis, not a vibe coder tool.

This repository contains miscellaneous exploit code for security researchers and penetration testers.

A curated list of web3 security resources for penetration testers and bug hunters.