Trending Projects

This repository appears to be a Java security-focused project, not a developer discovery platform for vibe coders.

ReconDog is a Python-based reconnaissance tool for information gathering and vulnerability detection.

A payload generation framework for security researchers and penetration testers.

A reverse tunneling tool for pentesters, built with Go, to easily establish secure connections.

GlobaLeaks is a secure and open-source whistleblowing platform for anyone to set up and maintain.

A security platform for managing application assets, vulnerabilities, and security knowledge.

This repository provides a tool for remotely accessing webcams, which can be used for malicious purposes.

WebMap-Nmap Web Dashboard and Reporting tool for cybersecurity professionals

Comprehensive security guide for developers covering common vulnerabilities and best practices

A comprehensive guide to Capture The Flag (CTF) competitions for security and hacking enthusiasts.

A Burp Suite extension that adds useful context menu functions for web application penetration testing.

A Python library to completely block Google and its services for improved privacy and reduced tracking.

A tool to disable SSL verification and pinning on Android, allowing developers to bypass security checks.

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

A refactored and improved password spraying tool that uses FireProx APIs to stay anonymous and beat throttling.

Guidelines for developing secure and efficient low-level cryptography software

An Active Directory data ingestor for BloodHound Legacy written in Rust, focused on security research and penetration testing.

A library that provides workarounds for Google SafetyNet attestation, useful for Android developers.

Conceal provides easy Android APIs for performing fast encryption and authentication of data.

An open-source, privacy-enhancing web browser for iOS, utilizing the Tor anonymity network.

A tool for AV/EDR evasion via direct system calls, focused on assembly programming.

This repository is a collection of malware samples gathered from honeypots, useful for malware analysis.

This C# project demonstrates an attack technique to retrieve NTLM hashes without touching LSASS.

A collection of proof-of-concept exploits for the Linux kernel, focused on privilege escalation.

This repository is a curated list of advanced Windows exploitation references, not a developer discovery platform for vibe coders.

Generates millions of password mutations in seconds for penetration testing and security research.

This is an automated wireless hacking tool written in Python, not a developer discovery platform focused on vibe coders.

This is a public repository for the AppSec Ezine, a resource for application security professionals.

This repository provides a cheat sheet for web application security attacks and techniques.

Course materials for Malware Analysis, focused on reverse engineering and understanding malicious software.

A subdomain takeover tool for attackers, bug bounty hunters, and security teams to detect and mitigate security vulnerabilities.

This repository contains a proof of concept for the CVE-2021-40444 vulnerability.

A Python program to create a fake access point and sniff data for penetration testing and security research.

A demonstration of phishing by abusing the browser autofill feature.

Linux Malware Detection (LMD) is a command-line tool for detecting malware on Linux systems.

A collection of tools that integrate with Cobalt Strike for advanced C2 framework development.

A C# library for detecting the presence of malicious strings in .NET applications.

A powerful XSS scanning and parameter analysis tool written in Ruby for bug bounty and penetration testing.

A self-hosted VPN deployment with DNS ad blocking for privacy protection.

A Python-based CTF scoreboard and game manager for developers interested in security and penetration testing.

An automated system hardening framework written in Python for securing Linux systems.

A blackbox tool to disable SSL certificate validation within iOS and macOS applications.

This repository provides a comprehensive cheat sheet for common Active Directory enumeration and exploitation techniques.

AWSGoat is a Damn Vulnerable AWS Infrastructure for security testing and research.

A Python-based tool for automating password cracking methodologies using Hashcat.

A Python script for checking Linux privilege escalation vulnerabilities for security testing.

SharpUp is a C# port of various PowerUp functionality for security research and testing.

This repository provides a comprehensive list of rootkits for security research and penetration testing.

APT-Hunter is a threat hunting tool for Windows event logs, designed for purple team use to detect APT activity.

A repository of comprehensive wordlists used in bug bounty programs and ethical hacking.