Trending Projects

A shell script that can extract sensitive information from Android apps for security auditing.

A fast asset fingerprinting tool that queries data from popular security platforms like Fofa, ZoomEye, and Shodan.

A blazing-fast security auditing tool for Kubernetes that helps DevOps and security teams secure their cloud-native infrastructure.

Actionable analytics and threat intelligence tools for incident response and threat hunting.

This project is a security vulnerability research repository focused on a Linux privilege escalation exploit.

Trojan-go is a Go-based Trojan proxy that provides an unidentifiable mechanism to bypass the Great Firewall of China.

This is a collection of security-related mind maps, not a developer discovery platform for vibe coders.

A library that provides workarounds for Google SafetyNet attestation, useful for Android developers.

This repository provides resources for learning web security concepts like SQL injection and XSS.

A tool for checking and mitigating various CPU vulnerabilities like Spectre, Meltdown, and ZombieLoad.

A project documenting the history and providing a tutorial on the Shadowsocks proxy server.

A Python framework for conducting Man-In-The-Middle attacks, useful for security research and penetration testing.

Protect against DNS poisoning in China with this lightweight DNS proxy written in C.

OS X Auditor is a free Mac OS X computer forensics tool.

UICKeyChainStore is a simple Objective-C wrapper for securely storing data in the Keychain on iOS, watchOS, tvOS, and macOS.

This repository appears to be a Java security-focused project, not a developer discovery platform for vibe coders.

The 1Password Extension for iOS Apps allows developers to integrate 1Password's secure password management into their mobile apps.

This repository appears to contain C-based exploit code and is not related to a developer discovery platform focused on vibe coders.

This repository provides free proxy and VPN solutions including Clash, Shadowsocks, and V2Ray for developers to bypass internet censorship.

This Python tool is a penetration testing and vulnerability scanning utility for quickly gaining access to target systems.

This is a collection of Endpoint Detection and Response (EDR) tools for security researchers and developers.

A PHP command-line tool for checking security vulnerabilities in Composer dependencies.

An awesome collection of resources for securing Go applications and infrastructure.

An open-sourced remote vulnerability PoC/EXP framework for penetration testing and security research.

A Java-based tool for quickly exploiting Spring Boot vulnerabilities during penetration testing.

This repository contains CTF (Capture the Flag) solutions from the p4 team, focused on security and writeups.

A general collection of information, tools, and tips regarding CTFs and similar security competitions

A Perl script that suggests Linux exploits based on the target system's operating system release number.

This repository contains personal notes on Active Directory penetration testing, not a developer discovery platform for vibe coders.

A curated list of awesome security hardening techniques for Windows.

Comprehensive scanning tool for security testing and penetration testing of websites and web applications.

SPARTA is a network infrastructure penetration testing tool written in Python.

A Frida-based Android app privacy compliance detection tool for developers.

A Python tool that checks expired domains for categorization, reputation, and historical data to identify phishing and C2 domain candidates.

A transparent and secure way to look up public keys for encryption, authentication, and more.

This is a post-exploitation toolkit for penetration testing and security research.

This repository contains miscellaneous exploit code for security researchers and penetration testers.

A Go package and command-line tool for analyzing Java archives (JAR files) for Log4j vulnerabilities.

A comprehensive SOAR (Security Orchestration, Automation and Response) platform for efficient security automation without coding.

Hostfile blocklist for ads and tracking, updated regularly to improve privacy and performance.

This is a Java-based one-click scanning tool for security researchers and penetration testers.

A PHP library that scans php.ini files to check for security best practices.

A tool for bypassing antivirus software and executing lateral movement commands.

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

A Python framework for detecting vulnerabilities in content management systems (CMS).

A Rust cryptography library with implementations of various algorithms.

A Go-based security testing framework for generating and testing PoCs for vulnerabilities.

A Python2 tool for detecting and exploiting Struts2 vulnerabilities across all versions.

A tool that creates spoofed certificates and signs executables to evade antivirus detection.

A collection of SaaS attack techniques to help defenders understand the threats they face.