Trending Projects

A simple keylogger for Windows, Linux and Mac used for hacking and penetration testing.

A unified repository for different Metasploit Framework payloads.

A Python library for spoofing Apple BLE proximity pairing messages, likely used for security research.

A high-value vulnerability collection and notification service for developers, integrating with popular chat platforms.

This is a Java security repository focused on secure coding and code auditing.

This repository provides an organized list of resources for malware development, which is not recommended for general use.

A comprehensive list of web security and code audit resources for developers.

Proof of concept for CVE-2019-0708, a critical remote code execution vulnerability in Microsoft's Remote Desktop Protocol (RDP).

This project appears to be a malicious spyware Trojan program, not a developer tool.

A collection of Kali Linux scripts for penetration testing and security research.

This is a collection of custom Bash scripts for automating various penetration testing tasks, including reconnaissance, scanning, enumeration, and malicious payload creation, for use with Kali Linux.

This is an open-source EDR (Endpoint Detection and Response) repository, not a developer discovery platform for vibe coders.

UFONet is a Denial of Service toolkit that can be used to disrupt and disrupt networks and servers.

This is a comprehensive security handbook covering web vulnerabilities, exploitation, code auditing, and penetration testing.

A Go tool to leak git repositories from misconfigured websites for security research and penetration testing.

A Firefox extension to protect users from browser fingerprinting.

A passive information leakage detection tool for Chrome and Firefox developers using AI tools.

A secure, fast, and enterprise-level honeypot management system with support for multiple protocols.

A mobile tool for Android, iOS, and HarmonyOS developers focused on app analysis, vulnerability discovery, and penetration testing.

This repository contains a collection of kernel exploits, likely not relevant for vibe coders.

A collection of vulnerability labs for security analysis and exploitation.

Transmission block list repository to help developers protect their systems from malicious IP addresses.

A Python PoC tool that packages payloads into various output containers to evade detection and demonstrate risks.

This is a collection of cybersecurity learning resources for beginners and enthusiasts.

A comprehensive repository covering security engineering principles and practices to systematically secure anything.

A comprehensive list of privacy-focused alternatives to Google products.

A free online security knowledge library for pentesters and researchers.

A Rust library for offensive security and red team engagements.

A modular and decentralized honeypot designed to detect and monitor network intrusions.

CHAOS is a free and open-source remote administration tool for controlling remote operating systems.

A privilege escalation tool that can be used to gain SYSTEM access on Windows systems.

A comprehensive penetration testing toolkit for asset information collection, subdomain brute-forcing, search syntax, asset mapping, fingerprinting, and more.

PowerShell utilities for passing the hash authentication method used in some security attacks.

A Python library for implementing cryptographic attacks and utilities for security research and CTF challenges.

This GitHub repository provides a Docker environment for testing various versions of the FastJson library for vulnerabilities and exploitation techniques.

This repository contains a collection of malware samples for analysis purposes, not for malicious use.

A blazing-fast security auditing tool for Kubernetes that helps DevOps and security teams secure their cloud-native infrastructure.

A comprehensive IT security toolkit for Android developers and professionals.

A curated list of Burp Suite extensions, a popular web application security testing tool.

This GitHub repository contains tools and resources for red team and blue team security research and penetration testing.

A comprehensive tool for exploiting Shiro deserialization vulnerabilities, including command execution and memory shell injection.

A tool for automating brute-force attacks on services found through various scanning techniques.

A deliberately vulnerable CI/CD environment to learn CI/CD security through multiple challenges.

This repository contains decrypted content from the Equation Group, a suspected NSA hacking group.

This repository provides self-study tutorials and resources for network security tools and practices.

Collection of KQL queries for Advanced Hunting, Detection, and Threat Hunting in Azure Sentinel and Defender for Endpoint.

Curated DevSecOps resources and tooling for secure software development.

An open-source Instagram OSINT tool for collecting and analyzing data from Instagram.

A tool to dump cookies and credentials directly from Chrome/Edge process memory.

A modded version of the Shellphish tool with colorized text, animations, and extra features for Termux.