Trending Projects

A repository that provides tips and tricks for pwn (binary exploitation) in CTF challenges.

An open-source web crawler and spider tool for detecting cross-site scripting (XSS) vulnerabilities.

This repository provides principles and guidance for designing and deploying a zero trust architecture.

Curated DevSecOps resources and tooling for secure software development.

Splunk Security Content is a Python library for cybersecurity detection and response engineering.

A C++ tool for post-exploitation and malware bypassing antivirus/EDR solutions.

This repository contains binaries for the book 'Practical Malware Analysis', a resource for malware analysis.

A modern cryptographic primitives and protocols library written in C for security and TLS applications.

Secator is a powerful security and pentesting tool that provides a comprehensive set of automation and reconnaissance capabilities.

Original C implementation of the Hell's Gate VX technique, a security research project.

A ready-to-go phishing platform built with JavaScript for malicious social engineering attacks.

This project is a Remote Access Trojan (RAT) that provides full remote command-line access, allowing for the download and execution of programs, and the spreading of viruses and malware.

Curated blocklists for ad-blocking and malware prevention on Pi-hole and DNS filters.

Collection of ad-blocking rules and configs for proxy/tunnel clients (Loon, Surge, QuantumultX, ShadowRocket, Egern).

A collection of Kali Linux scripts for penetration testing and security research.

A powerful password cracking and dictionary building tool for brute-force attacks and social engineering.

A payload generation framework for security researchers and penetration testers.

A PowerShell module and framework for interacting with and auditing Active Directory and Windows internals.

This repository provides advanced Red Team techniques and offensive malware focused on the Rust programming language.

Robust automation tool that efficiently detects web application vulnerabilities using advanced scanning and URL enumeration techniques.

This is a repository containing notes on penetration testing, not a developer discovery platform.

A Python library to completely block Google and its services for improved privacy and reduced tracking.

A tool to disable SSL verification and pinning on Android, allowing developers to bypass security checks.

A security scanner that helps identify issues with Drupal, Silverstripe and other CMSs.

A repository of comprehensive wordlists used in bug bounty programs and ethical hacking.

An open-source framework for analyzing and detecting information leaks, security incidents, and data privacy issues.

An open-source intrusion detection system for monitoring and detecting suspicious activity in Active Directory environments.

A Node.js command and control tool for script-jacking vulnerable Electron applications.

This repository provides a tool for generating various types of webshells that are difficult to detect.

This is a Python-based tool for hosting PlayStation 4 exploits, not a developer discovery platform for vibe coders.

An open-source tool to generate application whitelist bypasses for red and blue team use.

Streamline your security workflows with this automated pentest reporting tool with custom templates and project tracking.

A blazing-fast security auditing tool for Kubernetes that helps DevOps and security teams secure their cloud-native infrastructure.

A free C++ cryptography library that provides a variety of cryptographic schemes and primitives.

This is an Android security learning repository, not a developer discovery platform for vibe coders.

A tool to find the origin servers of websites behind Cloudflare using Censys internet-wide scan data.

This repository appears to be a Java security-focused project, not a developer discovery platform for vibe coders.

A comprehensive collection of hardening settings and scripts for securing Windows systems.

Reflective DLL Injection to convert DLLs into position-independent shellcode

An open-source OSINT tool for finding profiles by username across various social media platforms.

A Python library for stealing signatures and making invalid signatures for testing purposes.

A simple keylogger for Windows, Linux and Mac used for hacking and penetration testing.

A deliberately vulnerable CI/CD environment to learn CI/CD security through multiple challenges.

This repository contains a proof of concept for the CVE-2021-40444 vulnerability.

Single Packet Authorization (SPA) firewall tool that provides an alternative to traditional port-knocking.

A secure, fast, and enterprise-level honeypot management system with support for multiple protocols.

Websploit is a high-level MITM (Man-in-the-Middle) framework written in Python for network penetration testing.

A security tool for analyzing vulnerabilities, malware, and anomalous activities in Docker images and containers.

Kalitorify is a transparent proxy tool for Kali Linux OS that routes traffic through the Tor network for enhanced privacy and security.

A Rust library for offensive security and red team engagements.