Trending Projects

A collection of Kali Linux tools for information gathering, penetration testing, and wireless security.

A fast emergency response tool for supply chain vulnerability scanning and port scanning

Examples demonstrating how to implement AWS security patterns using CloudFormation and Terraform.

A transparent ransomware claim tracker for monitoring and analyzing ransomware activity on the dark web.

This project is a web proxy tool that allows pivoting and exploitation through a bastion server.

Open-source RASP (Runtime Application Self-Protection) solution for improving application security.

A Python library that generates and resolves permutations of subdomains, useful for security researchers.

This repository contains information about the Cobalt Strike malware framework, which is not a developer tool for building AI-powered applications.

Venom is a multi-hop proxy tool for penetration testers and security researchers.

This repository contains a proof of concept for the CVE-2021-40444 vulnerability.

An easy-to-set-up SSH honeypot that logs the activity of anyone who connects to it.

A comprehensive cheatsheet for Red Team activities and penetration testing techniques.

A Python-based tool for batch URL collection and vulnerability scanning, useful for security research and penetration testing.

A fully interactive reverse shell for Windows, allowing remote access and control.

The vanhoefm/krackattacks-scripts repository contains scripts related to the KRACK attack on WPA2 wireless protocols.

This is an evil RAT (Remote Administration Tool) for macOS / OS X, built with Python.

This is a collection of Endpoint Detection and Response (EDR) tools for security researchers and developers.

A Python-based tool to help developers test and bypass Web Application Firewalls (WAFs) before attackers do.

Firmware Analysis and Comparison Tool for security analysis and automation of firmware-based systems.

An educational resource that explains CSRF tokens and how they work to protect web applications.

A vulnerable Android app for developers and security enthusiasts to learn about Android insecurities.

This is a collection of resources for red team and blue team cybersecurity training, not a developer platform.

Tink is an open-source cryptography library that provides secure, easy-to-use APIs across multiple languages.

A collection of open-source security projects to help enterprise security professionals build security capabilities.

This shell script simplifies the process of adding a backdoor to any Android APK file for educational purposes.

A Frida-based Android app privacy compliance detection tool for developers.

A tool to simulate application layer DoS attacks for security testing and performance analysis.

This is a security tool for bypassing antivirus, EDR, and other security products.

This is a tool for cracking Mifare Classic RFID cards, not a developer platform for vibe coders.

This GitHub repository contains a hidden desktop tool for the Cobalt Strike penetration testing framework.

A collection of resources for penetration testing and securing Microsoft's cloud platform Azure.

An NSE script that leverages the Vulners.com API to provide vulnerability information for Nmap scans.

VECTR is a tool that helps track red and blue team testing activities to measure detection and prevention capabilities.

This C# program demonstrates various process injection techniques for security research and testing.

This is a repository of digital forensics artifacts, not a developer discovery platform focused on AI coding tools.

A Go-based port of Wappalyzer that automates mass scanning to uncover technologies used on websites.

GitHub App to set and enforce security policies for open-source projects on GitHub.

A toolkit for auditing and exploiting Cross-Site Request Forgery (CSRF) vulnerabilities in web applications.

A Python library for decoding common remote access trojans (RATs) used by cybercriminals.

An advanced in-memory evasion technique for encrypting and decrypting shellcode contents.

A collection of community-contributed Nuclei templates for bug bounty and penetration testing.

ScareCrow is a payload creation framework designed to bypass endpoint detection and response (EDR) solutions.

This repository provides free proxy and VPN solutions including Clash, Shadowsocks, and V2Ray for developers to bypass internet censorship.

This repository is focused on learning hacking, penetration testing, and reverse engineering using Kali Linux.

This is a C2 shellcode generator/compiler/handler, not a developer discovery platform for vibe coders.

This is an awesome list of hacking tools and resources in Chinese.

This C# tool generates executable files that can bypass antivirus detection for malicious purposes.

ADRecon is a tool for gathering information about Active Directory and generating a report on its current state.

PcapXray is a network forensics tool that visualizes packet capture data as a network diagram, enabling device identification and important communication analysis.

A comprehensive penetration testing framework with a variety of cybersecurity resources for security professionals.