Trending Projects

This repository is a curated list of advanced Windows exploitation references, not a developer discovery platform for vibe coders.

This repository provides password cracking rules for Hashcat based on statistics and industry patterns.

This is a security tool for bypassing antivirus, EDR, and other security products.

Pilot program for submitting CVE records through GitHub, ending on 6/30/2023.

A Python library to discover subdomains of a target domain, useful for security researchers and pentesters.

A Rust-based security tool for Linux exploitation that aims to leave zero traces on system logs and filesystem timestamps.

LunaSec is a dependency security scanner that automatically notifies you about vulnerabilities in your codebase.

A Burp Suite extender plugin that forwards passive scan traffic for vulnerability scanning.

A tool for extracting browser passwords, with plans for additional functionality.

A Python-based proof-of-concept tool to perform a MitM attack and extract clear text credentials from RDP connections.

A comprehensive information gathering tool for security researchers and pentesters.

A demo of overriding a user's clipboard content, which can be used for security research.

A collection of open-source security tools and custom scripts for Red Team operations.

GitHub App to set and enforce security policies for open-source projects on GitHub.

SharpDPAPI is a C# port of Mimikatz DPAPI functionality for interacting with Windows Data Protection API.

NetRipper is a PowerShell tool for penetration testing that allows smart traffic sniffing.

A Go-based C2 tool for penetration testing with Lua plugin support, domain fronting, and remote file/process management.

Anubis is a subdomain enumeration and information gathering tool for security professionals.

This repository contains research code and papers from members of the vx-underground community, focused on malware development and research.

This is a C-based exploit targeting a Windows SMBv3 vulnerability (CVE-2020-0796) known as SMBGhost.

A comprehensive tool for scanning and exploiting various OA vulnerabilities in bulk.

An open source security framework that provides a badge for projects following best practices.

An active defense and EDR software to empower blue teams and detect security threats on Windows systems.

An extensible, multi-threaded internal network penetration testing tool with various plugins for information gathering, vulnerability scanning, and more.

A collection of Windows exploits and hacking tools for security research and penetration testing.

This is a Python project that analyzes a backdoor vulnerability in the Linksys WAG200G router.

Open source metadata repository for security events, useful for security researchers and analysts.

A collection of Windows 11 security hardening and configuration recommendations.

Weak password scanner for various services like FTP, SSH, SQL databases, and more.

Forseti Security is a tool for managing security and compliance on the Google Cloud Platform.

A set of tools to tunnel TCP communication over HTTP, bypassing network restrictions in firewalled environments.

A passive sniffing tool for capturing and visualizing WiFi location data disclosed by iOS devices.

A deprecated client for the Privacy Pass protocol, providing unlinkable cryptographic tokens for browser extensions.

A passive Burp Suite plugin for detecting FastJson vulnerabilities.

A repository for learning and documenting internal network penetration testing (domain penetration).

A security tool for analyzing vulnerabilities, malware, and anomalous activities in Docker images and containers.

RedSnarf is a Windows-focused penetration testing and red-teaming tool for security professionals.

A web application that assists network defenders in mapping adversary behaviors to the MITRE ATT&CK framework.

A Python tool for scanning IP and domain names to find weakly protected internal systems.

Proof of concept for CVE-2019-0708, a critical remote code execution vulnerability in Microsoft's Remote Desktop Protocol (RDP).

This Rust library provides a framework for using Notion as a platform for offensive operations.

A collection of PoCs for remote code execution vulnerabilities in ThinkPHP v5.x, a popular PHP framework.

A Python tool for automatic detection of ThinkPHP vulnerabilities.

This is a collection of resources for red team and blue team cybersecurity training, not a developer platform.

This Go-based GitHub leak scanning system helps developers and security teams monitor for leaked credentials and sensitive data.

A virtual machine for assessing Android applications, reverse engineering, and malware analysis.

A real-world malware collection for researchers to understand and analyze malware threats.

A vulnerable Spring Boot web application for learning about the Log4Shell vulnerability (CVE-2021-44228).

Active Directory assessment and privilege escalation script for security researchers and penetration testers.

A root exploit for CVE-2022-0847 (Dirty Pipe), a Linux kernel vulnerability.