Trending Projects

GhostNet is an open-source, privacy-focused network tool for secure communication and anonymous web browsing.

The-XSS-Rat/SecurityTesting is a Python repository focused on security testing and penetration testing tools.

Proof of Concept for an advanced in-memory evasion technique to hide injected shellcode from scanners.

A Python tool to monitor GitHub for new CVEs, security updates, and more, with multi-channel notifications.

Utility that retrieves plaintext Active Directory credentials for internal network access.

Guidelines for developing secure and efficient low-level cryptography software

This is a Python-based tool for hosting PlayStation 4 exploits, not a developer discovery platform for vibe coders.

This is a Shell script that sets up a TLS proxy for the Signal messaging app, likely for security and privacy purposes.

A fully interactive reverse shell for Windows, allowing remote access and control.

Ncrack is a high-speed network authentication tool used for cracking authentication credentials across a network.

A script for searching extracted firmware file systems for sensitive information.

A tool for port forwarding and intranet proxy, useful for penetration testing and network troubleshooting.

A collection of Android malware samples for security research and analysis.

Athena OS is a Arch/Nix-based Linux distribution focused on cybersecurity learning and penetration testing.

This repository contains a collection of kernel exploits, likely not relevant for vibe coders.

A Python tool for scanning IP and domain names to find weakly protected internal systems.

A collection of tools for iOS penetration testing and security research.

A collection of PowerShell scripts with 100% AV bypass capability for security research and pen-testing.

A modded version of the Shellphish tool with colorized text, animations, and extra features for Termux.

A collection of over 60 BadUSB scripts for the FlipperZero device, focused on security research and penetration testing.

A C# workshop on writing custom backdoor payloads for red team security research.

This GitHub repository provides a Docker environment for testing various versions of the FastJson library for vulnerabilities and exploitation techniques.

This is an open-source tool for detecting app hardening features in APK files, supporting over 40 vendors.

This repository contains the public open-source code of the malware Stuxnet, also known as MyRTUs.

Proof of concept for CVE-2019-0708, a critical remote code execution vulnerability in Microsoft's Remote Desktop Protocol (RDP).

A C++ tool for bypassing security products by obscuring the intentions of a process.

A program to reverse Docker images into Dockerfiles, useful for security researchers and developers.

A PHP security checker that scans projects for known vulnerabilities in their dependencies.

A library providing comprehensive web security concepts and best practices for developers.

An easy-to-use encryption library for JavaScript, utilizing RSA and AES algorithms.

A security platform for managing application assets, vulnerabilities, and security knowledge.

This Rust library provides a framework for using Notion as a platform for offensive operations.

A GitHub code leak monitoring system built with Laravel for security-conscious developers.

Subdomain enumeration tool written in Go, with fast asynchronous DNS scanning to find subdomains for bug bounty hunting.

A comprehensive penetration testing framework for security researchers and red teams.

A collection of resources for penetration testing and securing Microsoft's cloud platform Azure.

A Python library for tracking the history of USB events on GNU/Linux for forensic and security purposes.

This Python-based backdoor uses Gmail to exfiltrate data and track user activity for red team engagements.

Key and Lock Decoding Tools for developers interested in cryptography and security.

This is a C library for offensive operations, not a developer discovery platform for vibe coders.

This is an advanced remote access trojan (RAT) written in Python that can be controlled through Discord.

An open-source Go library that uncovers unexpected SSH server exposures and vulnerabilities.

A Splunk app that guides threat hunting by mapping security telemetry to the MITRE ATT&CK framework.

OWASP Joomla Vulnerability Scanner, a security tool for scanning Joomla websites for vulnerabilities.

A collection of PoCs for remote code execution vulnerabilities in ThinkPHP v5.x, a popular PHP framework.

A PowerShell script anti-virus evasion tool for penetration testing and red team activities.

A collection of vulnerability labs for security analysis and exploitation.

This project appears to be a malicious spyware Trojan program, not a developer tool.

A cloud security suite that audits the security posture of AWS, GCP, and Azure infrastructure.

This Go-based project provides a collection of techniques for bypassing antivirus (AV) protection, including API testing, encryption, and obfuscation.