Trending Projects

Pupy is a cross-platform C2 and post-exploitation framework written in Python and C for pentesting and security research.

Google CTF is a security-focused repository with CTF challenges, not a developer discovery platform for vibe coders.

A Python-based reverse shell payload generator and handler for penetration testing and red teaming

A Python script to find leaked secrets on GitHub using custom dorks.

A Swiss Army knife for automated web application testing, written in Go, useful for bug bounty hunters and security professionals.

A multi-cloud OSINT tool to enumerate public resources in AWS, Azure, and Google Cloud.

A highly customizable and extensible automated security scanning engine for red teams

This repository contains decrypted content from the Equation Group, a suspected NSA hacking group.

This Python tool is a Facebook hacking tool, not a developer discovery platform for vibe coders.

A curated list of resources related to AWS security, including books, tutorials, and security tools.

A Python tool to check if a website is blocked by a Russian ISP using deep packet inspection and DNS checks.

Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation

A collection of captive portals for phishing using a WiFi Pineapple, focused on penetration testing and security research.

A Python tool to monitor GitHub for new CVEs, security updates, and more, with multi-channel notifications.

Collection of Python-based security exploits and research tools written by the Rhino Security Labs team.

Matsuri is an Android app and toolchain for bypassing internet censorship using Shadowsocks and V2Ray.

A tool to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems.

This is a tool to bypass passwords on Windows and Linux systems from a bootable USB, not a developer discovery platform.

This repository is a curated list of advanced Windows exploitation references, not a developer discovery platform for vibe coders.

An open-source intrusion detection system for monitoring and detecting suspicious activity in Active Directory environments.

This is an automated wireless hacking tool written in Python, not a developer discovery platform focused on vibe coders.

A simple SQL injection testing plugin for Burp Suite to help identify SQL injection vulnerabilities.

This is a Windows Local Privilege Escalation tool, not a developer discovery platform focused on vibe coders.

A repository showcasing security research and bug bounty case studies, not focused on vibe coders.

A Python tool for sending phishing messages and attachments to Microsoft Teams users.

This project is a Remote Access Trojan (RAT) that provides full remote command-line access, allowing for the download and execution of programs, and the spreading of viruses and malware.

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang.

A comprehensive repository of red teaming tactics and techniques for security professionals.

An automatic SSRF fuzzer and exploitation tool for penetration testing and security research.

A tool for creating vulnerable environments to simulate attacks and collect data into Splunk for security research and detection.

This is a collection of hacking and cybersecurity-related books, not a developer tool platform.

DomainPasswordSpray is a PowerShell tool for performing password spray attacks against a domain.

A security audit tool to assess and improve cybersecurity posture.

A curated list of resources related to executable packing, useful for malware analysis and security research.

A repository of comprehensive wordlists used in bug bounty programs and ethical hacking.

This Python project generates professional phishing emails for social engineering and hacking purposes.

A Python-based tool for batch URL collection and vulnerability scanning, useful for security research and penetration testing.

This is a blocklist for Adobe's URLs and IPs that can be added to the Windows host file.

This repository contains a tutorial for setting up a phishing toolkit on Kali Linux or Termux.

This repository contains information and resources related to IT security that developers may find useful.

This repository provides practical examples of malicious software in Python for educational purposes.

A tool to upload arbitrary data via Apple's Find My network, useful for security researchers and data exfiltration.

Python reference implementation of The Update Framework (TUF), a library for securing software update systems

Compiled binaries for the Ghostpack suite of post-exploitation tools for penetration testing.

This repository contains a collection of malware samples, which is not recommended for developers to use or distribute.

A curated list of open-source anti-censorship tools for developers and internet freedom advocates.

This Windows Local Privilege Escalation Cookbook provides PowerShell scripts and techniques for privilege escalation on Windows systems.

A curated list of vulnerable apps and systems for penetration testing practice.

An OSINT tool for finding profiles by username, useful for security research and information gathering.

This is a Shell script that sets up a TLS proxy for the Signal messaging app, likely for security and privacy purposes.