Trending Projects

An OSINT tool that helps find email addresses and potential credential leaks from social media profiles.

Apache Teaclave SGX SDK helps developers write Intel SGX applications in Rust for confidential computing.

This repository contains the public open-source code of the malware Stuxnet, also known as MyRTUs.

Digital Privacy is a comprehensive collection of resources for information protection and open-source intelligence (OSINT)

A blackbox tool to disable SSL certificate validation within iOS and macOS applications.

A Go port of the Shikata ga nai encoder with several improvements for security researchers and pentesters.

A Python script for checking Linux privilege escalation vulnerabilities for security testing.

A collection of BadUSB payloads for the DigiSpark Attiny85 microcontroller, useful for penetration testing and security research.

A C++ tool for extracting clear text passwords from the Windows Remote Desktop Protocol (RDP) client.

A Python library for analyzing and securing drone systems against security vulnerabilities.

An open-source collection of security products such as IDS, IPS, WAF, and honeypots.

This is a PowerShell framework for creating reverse TCP shells, used for penetration testing and security research.

A static analysis security vulnerability scanner for Ruby on Rails applications

A collection of notes, checklists, and writeups on bug bounty hunting and web application security.

A security risk analysis tool for Kubernetes resources, helping developers secure their cloud infrastructure.

A command-line tool for cracking password hashes using the popular Hashcat library.

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

A simple SQL injection testing plugin for Burp Suite to help identify SQL injection vulnerabilities.

An open-source remote vulnerability testing framework for security research and penetration testing.

A comprehensive toolkit for penetration testing and exploitation of VMware vCenter Server vulnerabilities.

A collection of Censys Search Queries for security research and OSINT investigations.

CloudBrute is an awesome cloud enumeration tool written in Go that helps security researchers and penetration testers discover cloud security issues.

A cryptography library for .NET that provides cryptographic primitives and algorithms.

An open-source web vulnerability scanner and auto-exploiter for Drupal, Joomla, WordPress, and more.

A Python library to completely block Google and its services for improved privacy and reduced tracking.

This repository provides a tool for generating various types of webshells that are difficult to detect.

A Shell script that can be used to take target's webcam shots through a link.

Kalitorify is a transparent proxy tool for Kali Linux OS that routes traffic through the Tor network for enhanced privacy and security.

A security tool for monitoring and protecting Windows 11 systems from spyware and malware.

A utility to examine and validate certificates in a variety of formats, useful for developers working with security and cryptography.

A Python library for patching binaries via a man-in-the-middle (MITM) attack using BackdoorFactory and mitmProxy.

A Windows 10 privacy and security checker tool that helps users optimize their system settings.

A Windows tool for dumping malware PE files from memory to disk for security analysis.

Local privilege escalation tool for Windows that can be used for security research and penetration testing.

This repository provides a comprehensive list of rootkits for security research and penetration testing.

A dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

ThePhish is an automated tool for analyzing and detecting phishing emails, providing cybersecurity professionals with a comprehensive solution.

A collection of Windows exploits and hacking tools for security research and penetration testing.

A collection of Windows 11 security hardening and configuration recommendations.

This is a comprehensive network security tool for professionals and enthusiasts, featuring decryption, analysis, scanning, and traceability.

Websploit is a high-level MITM (Man-in-the-Middle) framework written in Python for network penetration testing.

A password manager that uses the age encryption standard as a backend, providing a secure and modern alternative to password-store.

This is a collection of cybersecurity learning resources for beginners and enthusiasts.

A Python tool for penetration testers to audit domain passwords.

The Exploit Database is a collection of publicly disclosed cybersecurity vulnerabilities and exploits.

A Python library that demonstrates a security vulnerability in QR code-based login systems.

An Android app that can brute force WiFi passwords without requiring a rooted device.

A collection of common vulnerabilities found in iOS applications to help secure iOS app development.

cwe_checker finds vulnerable patterns in binary executables, helping developers identify and fix security issues.

This is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.