Trending Projects

A collection of proof-of-concept exploits for various software vulnerabilities, primarily focused on Java-based applications.

A Java byte code analyzer for finding deserialization gadget chains in applications.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

This repository contains a collection of tools and resources for penetration testing and security research.

A collection of self-contained htaccess shells and attacks for penetration testing and security research.

A malicious JNDI injection attack server written in Java, not suitable for vibe coders.

A leaked guide on pentesting tools and techniques used by the Conti ransomware group

This repository provides a beginner's guide to obfuscation, a technique used to protect software from reverse engineering.

This project has been deprecated, but the ChatSecure iOS project continues. For Android, Conversations or Zom are recommended alternatives.

This repository provides a comprehensive guide for OSCP (Offensive Security Certified Professional) preparation in 2023, including courses, tricks, tutorials, exercises, and practice machines.

This Shell repository appears to be a tool for Android malware development, not a developer discovery platform.

A Python library for launching HTTP/HTTPS flood attacks using socks4/5 or HTTP proxies.

This is a Java security SDK and coding standard for developers building secure applications.

A collection of red team tips and techniques for security researchers and penetration testers.

Ladon 911 for Cobalt Strike & Cracked Download, a large network penetration scanner with various security tools

A simple C++ tool to encrypt and hide files inside images using Least-Significant-Bit encoding.

This is a PowerShell framework for creating reverse TCP shells, used for penetration testing and security research.

This repository appears to be a shell script for setting up a Trojan proxy server, not related to AI coding tools or vibe coders.

Streamline your security workflows with this automated pentest reporting tool with custom templates and project tracking.

A Python library that exploits a vulnerability in Apple software to craft PNG files that appear differently

A Python tool to generate smart and powerful wordlists for password cracking and cybersecurity testing.

A collection of scripts for participating in AWD (Attacking and Defending) security competitions.

A vulnerable iOS app to help mobile security enthusiasts and professionals test their penetration testing skills.

A browser extension that isolates Facebook activity to prevent Facebook from tracking users across the web.

A database of vulnerable Ruby Gems, helping Ruby developers stay secure.

Open-source database for managing vulnerability disclosure and bug bounty programs

SharPyShell is a tiny and obfuscated ASP.NET webshell for C# web applications.

A Python-based DFIR tool for cybersecurity incident response and analysis.

Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers.

This Python script allows you to abuse Exchange Server to escalate privileges and gain Domain Admin access.

An open-source, extensible network penetration testing tool for security research and reconnaissance.

This repository appears to be an educational resource on cloud security, not a developer discovery platform focused on vibe coders.

A collection of utilities for the MITRE ATT&CK framework, used for adversary emulation and red team testing.

A C# version of PowerShell for red teaming and penetration testing purposes.

This repository is a security tool for detecting and analyzing IMSI-catchers, which are mobile network surveillance devices.

AutoPWN Suite is a Python-based project for scanning vulnerabilities and automatically exploiting systems.

A Burp plugin that simplifies testing encrypted traffic as efficiently as testing plaintext.

A beginner-friendly Python toolkit for penetration testing and ethical hacking.

An automated system hardening framework written in Python for securing Linux systems.

A Python library for mass scanning IPs to discover vulnerable network services.

A Ruby framework for penetration testing and security auditing of WordPress systems.

DNSChef is a DNS proxy tool for penetration testers and malware analysts to intercept and manipulate DNS traffic.

Builds malware analysis Windows VMs for secure malware research and analysis.

A Python project that reverse-engineers the new 'captchaless' ReCaptcha system.

This repository demonstrates exploiting vulnerabilities to impersonate a Domain Admin from a standard domain user account.

A privacy leak detection tool for developers to check for personal data exposure.

A collection of community-contributed Nuclei templates for bug bounty and penetration testing.

An interactive network scanner written in Go with features like port scanning, service detection, and vulnerability assessment.

A collection of cool tools and resources for mobile hackers and bug hunters.

A Go library that allows executing binaries from a password-protected zip file for security purposes.