Trending Projects

OWASP Cheat Sheet Series for application security best practices

AoiAWD is a portable, low-privilege EDR system designed for cybersecurity competitions.

This is a curated collection of hacking and penetration testing resources for developers.

SimpleX is a privacy-focused messaging network that operates without any user identifiers, providing a 100% private chat experience.

WebGoat is a deliberately insecure web application for security training and testing.

Comprehensive collection of the latest CVEs and their PoCs for security research and penetration testing.

A comprehensive resource for bug bounty hunters, covering payloads, bypasses, and other security techniques.

An open-source firewall and privacy tool that blocks mass surveillance and protects your online privacy.

A comprehensive collection of online tools for Open-Source Intelligence (OSINT) research.

Open-source debugger for Windows focused on reverse engineering and malware analysis

Information gathering framework for phone numbers, useful for OSINT and reconnaissance.

An open-source OSINT tool to search for accounts across social networks by username and email.

Mobile Security Framework for pen-testing and malware analysis

This repository provides a collection of deals and discounts for InfoSec-related software and tools during the Black Friday season.

This GitHub repository contains a collection of tools and techniques for Red Team and penetration testing activities.

Privilege escalation tools for Windows and Linux with color-coded outputs

Osintgram is an OSINT (Open-Source Intelligence) tool for Instagram that provides an interactive shell to analyze Instagram accounts.

This is a powerful DDoS attack script written in Python with 56 different attack methods.

A comprehensive security and attack surface management platform for penetration testing and vulnerability assessment.

A Python tool to convert potentially dangerous documents to safe PDFs, protecting users from malware.

A free, secure and open source Android app to manage 2-step verification tokens.

A multi-purpose wireless testing toolkit powered by an ESP32 for developers working with security and hacking tools.

A community-curated collection of templates for the nuclei engine to find security vulnerabilities.

A collection of Python scripts used during penetration testing engagements.

An open-source forum for discussing and circumventing internet censorship.

A program designed to search for and eliminate silent cryptocurrency miners on a system.

Reverse engineering framework for analyzing binaries

Open-source vulnerable web application for security testing and learning purposes.

Nmap is a powerful network discovery and security auditing tool that can be used for a variety of purposes.

Bypasses Deep Packet Inspection to circumvent internet censorship

A Python library to check if an email is used on various sites and retrieve information on forgotten password functionality.

A PoC tool to coerce Windows hosts to authenticate to other machines via the MS-RPRN RPC interface.

Pre-built vulnerable Docker environments for security research and learning

A Python tool to generate smart and powerful wordlists for password cracking and cybersecurity testing.

An all-in-one Instagram hacking tool for information gathering, brute force attacks, and account reporting.

A curated list of awesome search engines for penetration testing, vulnerability assessments, and security research.

OpenVPN is an open-source VPN daemon that provides secure and reliable virtual private network connections.

Browser fingerprinting library that uses favicons to track users across the web.

Muraena is a reverse proxy tool for automating phishing and post-phishing activities.

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.

Builds malware analysis Windows VMs for secure malware research and analysis.

A fast passive subdomain enumeration tool for security researchers and bug bounty hunters.

This project provides technical guides and resources for various hacking and security-related topics.

This repository provides a comprehensive guide for OSCP (Offensive Security Certified Professional) preparation in 2023, including courses, tricks, tutorials, exercises, and practice machines.

A repository providing free VPN configurations for users in Russia and other regions.

A tool that exploits locked/password protected computers over USB, drops a persistent backdoor, and siphons cookies.

A Python library and CLI tool equivalent to the CyberChef tool for data format conversion and processing.

DVWA is a PHP web application designed to be insecure, allowing developers to learn and practice web application security testing techniques.

A standalone man-in-the-middle attack framework for phishing login credentials and bypassing 2FA.

Pupy is a cross-platform C2 and post-exploitation framework written in Python and C for pentesting and security research.