Trending Projects

A framework for constructing self-spreading binaries, a type of malware, written in Go.

A malicious traffic detection system written in Python for network monitoring and security.

Advanced offline password cracker supporting hundreds of hash and cipher types across multiple platforms

VeraCrypt is a disk encryption tool with strong security based on TrueCrypt, not a developer tool for vibe coders.

Collection of Cyber Threat Intelligence sources from the deep and dark web for security researchers and analysts.

A Python-based toolkit for performing a wide range of security auditing and exploitation tasks.

This Shell repository appears to be a tool for Android malware development, not a developer discovery platform.

A privacy leak detection tool for developers to check for personal data exposure.

A tool for searching for ROP gadgets in binary files to facilitate exploitation.

Burpsuite Professional is a popular web application security testing tool used by security professionals.

A comprehensive open-source intelligence (OSINT) tool for gathering information from various online sources.

MagicRecon is a shell script that automates the recon and data collection process to find common vulnerabilities.

An idiomatic nmap library for Go developers to perform network mapping and analysis.

A vulnerable iOS app to help mobile security enthusiasts and professionals test their penetration testing skills.

An open-source Chromium-based browser that provides fingerprinting protection and privacy features for web scraping and anti-detection use cases.

Bjorn is a powerful network scanning and offensive security tool for the Raspberry Pi with an e-Paper display.

A powerful network reconnaissance and MITM attack tool for security professionals and researchers.

Sliver is an adversary emulation framework written in Go that can be used for red team engagements.

A repository of custom payloads for the USB Rubber Ducky, a powerful pen-testing tool for keystroke injection attacks.

This is a collection of commonly used commands for penetration testing, not a developer tool.

404StarLink is a collection of high-quality, meaningful, and actively maintained open-source security projects.

CACTUSTORCH is a library for generating payloads for adversary simulations, not a developer discovery platform.

DIVA Android is a deliberately insecure and vulnerable Android app for security testing and education.

A collection of red team tips and techniques for security researchers and penetration testers.

A Go library that allows executing binaries from a password-protected zip file for security purposes.

This GitHub repository contains a Proxifier keygen tool, written in Python, for developers who need to bypass network restrictions.

LuLu is a free, open-source macOS firewall that provides protection against unauthorized network access.

A powerful web path scanner and directory brute-forcer for security testing and bug bounty hunting.

A curated list of fuzzing resources for learning fuzzing and initial phases of exploit development.

This is an Intel SGX library for Linux that provides hardware-based confidential computing capabilities.

A command-line tool to generate common user passwords from various data sources.

Hydra is a parallelized login cracker which supports numerous protocols to authenticate against remote services.

This repository is a collection of database exploitation techniques for penetration testing.

A network reconnaissance and asset discovery tool written in Go for security professionals.

An internal network comprehensive scanning tool for automated, full-spectrum vulnerability scanning.

This repository provides a collection of Windows kernel exploit samples for penetration testing and security research.

This is a burp plugin for automatically recognizing and solving CAPTCHA challenges.

A powerful Ruby-based WinRM shell for hacking, penetration testing, and remote Windows management.

A free C++ cryptography library that provides a variety of cryptographic schemes and primitives.

A curated list of Android Reverse Engineering training, resources, and tools for security researchers and developers.

This repository contains tools for web shell malware evasion and encrypted traffic transmission.

A Python library for working with various network protocols, useful for network security and penetration testing.

This is a reconnaissance tool for locating smartphones using social engineering techniques.

A security auditing tool for Linux, macOS, and UNIX-based systems, assisting with compliance testing and system hardening.

An open-source vulnerability scanner written in Go that uses data from osv.dev to identify security issues.

A collection of penetration testing POCs, exploits, scripts, and tools for security research and testing.

An advanced Python-based tool for automating the detection and exploitation of SQL injection vulnerabilities.

DumpsterDiver is a Python tool to search for secrets in various file types.

This GitHub repository is a collection of tools and methods for open-source intelligence (OSINT) collection.

Casbin is a powerful authorization library for Golang projects, supporting access control models like ACL, RBAC, and ABAC.