Trending Projects

An open-source enterprise-level automated app privacy compliance detection tool.

A knowledge base for security research, hacking, and blockchain-related topics.

A collection of awesome resources related to the Cobalt Strike security tool for red team activities.

This repository appears to be a collection of cybersecurity-related FAQs and resources, not a developer platform focused on AI tools.

Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

A Python script for finding sensitive data (API keys, access tokens, JWTs) and searching JavaScript files.

This shell script simplifies the process of adding a backdoor to any Android APK file for educational purposes.

A network monitoring and bandwidth limiting tool for developers without administrative access.

A tool to build a database of libc offsets to simplify exploitation for CTF challenges and security research.

Comprehensive scanning tool for security testing and penetration testing of websites and web applications.

A Python-based DDoS testing tool that can perform Layer 7 attacks using KeepAlive+NoCache techniques.

Linux Malware Detection (LMD) is a command-line tool for detecting malware on Linux systems.

A Python tool that dumps Active Directory Integrated DNS information for any authenticated user.

Trojan-go is a Go-based Trojan proxy that provides an unidentifiable mechanism to bypass the Great Firewall of China.

An open-source adversary emulation platform for security professionals to assess system vulnerabilities.

A powerful Nginx server-side script that blocks bad bots, spam referrers, vulnerability scanners, and other malicious traffic.

A curated list of awesome resources for the OSCP (Offensive Security Certified Professional) certification.

A comprehensive collection of tools for ethical hacking and penetration testing.

Secure and firewall-agnostic networking library for building hacking and networking tools.

This is a hacking tool for brute-forcing Instagram passwords, not a developer platform focused on vibe coders.

FPGA modules used with PCILeech DMA Attack Software for advanced security research and hardware hacking.

A modern reverse shell sessions manager written in Go for security researchers and penetration testers.

A comprehensive cryptography library with implementations and challenges for security researchers and CTF participants.

A library for protecting against prototype pollution vulnerabilities in JavaScript applications.

This repository provides password cracking rules for Hashcat based on statistics and industry patterns.

A demonstration of phishing by abusing the browser autofill feature.

A Rust cryptography library with implementations of various algorithms.

A PAM module that allows users to set alternate passwords to clear sensitive data or notify IT/Security if coerced.

A collection of security-focused tools and projects for developers working on security-related tasks.

Captfencoder is an open-source suite of network security tools, including crypto, hashing, and security utilities.

An OSINT tool that helps find email addresses and potential credential leaks from social media profiles.

An open-source C++ compiler for fully homomorphic encryption, enabling secure computation on encrypted data.

An efficient and advanced man-in-the-middle (MITM) framework for security research and penetration testing.

This repository contains CTF (Capture the Flag) solutions from the p4 team, focused on security and writeups.

A curated list of resources related to the security and compromise of locks, safes, and keys.

A Frida-based Android app privacy compliance detection tool for developers.

A Python tool for remotely dumping DPAPI credentials from Windows systems.

This is an advanced remote access trojan (RAT) written in Python that can be controlled through Discord.

A toolkit to attack Office365 using various security tools and techniques.

A ready-to-go phishing platform built with JavaScript for malicious social engineering attacks.

This Java-based tool is a collection of vulnerability detection utilities, not focused on AI coding tools.

Modlishka is a reverse proxy tool for penetration testing and security research.

Easy-to-follow tutorials for beginners on using Shadowsocks to bypass internet restrictions.

The OWASP MASVS is the industry standard for mobile app security verification and testing.

A security tool for multithreaded information gathering and service enumeration in penetration testing.

A framework for rapid prototyping of custom C2 channels, with integration to existing offensive toolkits.

A Python library that provides AV/EDR evasion capabilities via direct system calls for vibe coders.

A curated list of wordlists for bruteforcing and fuzzing, useful for security researchers and pentesters.

A C# Command & Control framework for security research and penetration testing

Attify OS is a Linux distro for penetration testing and exploiting IoT devices.