Trending Projects

A collection of security engineer interview questions from Glassdoor.com for job preparation.

This is a comprehensive network security tool for professionals and enthusiasts, featuring decryption, analysis, scanning, and traceability.

This is a penetration testing framework written in Python for security professionals.

A Java deserialization exploit framework for penetration testing and security research.

OSINT tool for email/username enumeration across platforms. Security research & investigation focused.

A collection of Kali Linux tools for information gathering, penetration testing, and wireless security.

An efficient Android vulnerability scanner to help developers and hackers find potential security issues.

This is a public repository for the AppSec Ezine, a resource for application security professionals.

A dictionary of common attack vectors for penetration testing, not a developer platform for AI tools.

Keybase Filesystem (KBFS) is a secure, distributed file system with end-to-end encryption.

A Python tool to monitor GitHub for new CVEs, security updates, and more, with multi-channel notifications.

A tool for port forwarding and intranet proxy, useful for penetration testing and network troubleshooting.

A PHP security checker that scans projects for known vulnerabilities in their dependencies.

A library providing comprehensive web security concepts and best practices for developers.

An easy-to-use encryption library for JavaScript, utilizing RSA and AES algorithms.

A Python library for tracking the history of USB events on GNU/Linux for forensic and security purposes.

A GitHub code leak monitoring system built with Laravel for security-conscious developers.

A PowerShell script anti-virus evasion tool for penetration testing and red team activities.

An open-source CMS scanner that automates detection of security flaws in popular CMS platforms.

An open-source collection of security products such as IDS, IPS, WAF, and honeypots.

A Golang command and control framework for post-exploitation tooling and red team operations.

A cheatsheet for bypassing a browser's XSS filter, useful for security researchers and penetration testers.

An automated security and vulnerability scanning tool for security professionals and red teams.

A proof-of-concept tool to demonstrate the Follina Office RCE vulnerability for testing purposes.

A plug-in type web vulnerability scanner written in Python

This Python project extracts and collects strong and weak passwords from previously leaked password data.

A curated list of mobile-based CTFs, write-ups, and vulnerable Android apps for security researchers and developers.

A Python library for decoding common remote access trojans (RATs) used by cybercriminals.

This is a security scanning tool for internal networks, not a vibe coder platform.

This is a GitHub repository for a security vulnerability in Microsoft Teams that allows for remote code execution.

A collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+, a popular red team toolkit.

This GitHub repository contains a collection of anti-virus evasion techniques for developers.

A C++ library for recovering the encryption key used by the WannaCry ransomware.

Unix Privesc Check is a shell script that checks for common Unix privilege escalation vectors.

A Go reverse shell that communicates over DNS for bypassing firewalls and restricted networks.

A malicious JNDI injection attack server written in Java, not suitable for vibe coders.

This repository provides a comprehensive guide for OSCP (Offensive Security Certified Professional) preparation in 2023, including courses, tricks, tutorials, exercises, and practice machines.

A browser extension that isolates Facebook activity to prevent Facebook from tracking users across the web.

This Python script allows you to abuse Exchange Server to escalate privileges and gain Domain Admin access.

This repository appears to be an educational resource on cloud security, not a developer discovery platform focused on vibe coders.

A collection of utilities for the MITRE ATT&CK framework, used for adversary emulation and red team testing.

A tool to scan and identify Fastjson vulnerabilities, including version, dependencies, and autoType status.

A Python library for mass scanning IPs to discover vulnerable network services.

A Ruby framework for penetration testing and security auditing of WordPress systems.

A Python project that reverse-engineers the new 'captchaless' ReCaptcha system.

A modular, customizable tool for building security incident scenarios and artifacts for Blue/Red Team operations.

A Python script for detecting Windows systems infected with the DOUBLEPULSAR malware implant.

A comprehensive web security dictionary for security researchers and penetration testers.

An SSL-enabled credential harvester and Word document template URL injector for security research.

This is a Java project that tests for Remote Code Execution (RCE) vulnerabilities in various Java web frameworks.