Trending Projects

A wiki-based knowledge base focused on cloud security for developers and security professionals.

This repository is a collection of database exploitation techniques for penetration testing.

This Python project is a tool for exploiting SVN source code leaks to dump the entire codebase.

A collection of paths linked to sensitive APIs, devops internals, and known misconfigurations for web content discovery and security research.

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.

This is a Java project that tests for Remote Code Execution (RCE) vulnerabilities in various Java web frameworks.

A C# port of Mimikatz's sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands for security research.

A powerful network penetration testing tool that can be used to automate various pentesting tasks.

Tsunami is a general purpose network security scanner for detecting high severity vulnerabilities.

A C# tool for legally evading network monitoring and conducting online research.

A Go-based tool to fetch known URLs from various threat intelligence sources for security analysis.

A Windows 10 privacy and security checker tool that helps users optimize their system settings.

A fast and efficient subdomain brute-forcing tool written in Go for security testing and penetration testing.

A Python library for remotely extracting credentials from the Windows Local Security Authority Subsystem Service (lsass).

A collection of bug bounty tools and examples for security researchers and penetration testers.

OpenVPN GUI is a graphical frontend for the OpenVPN VPN client, allowing users to easily manage their VPN connections on Windows.

A Frida-based Android app privacy compliance detection tool for developers.

A PHP library to detect potentially malicious PHP files, useful for security-focused developers.

ScopeSentry is a comprehensive security tool for mapping cyberspace, enumerating subdomains, scanning ports, and identifying vulnerabilities.

An educational resource that explains CSRF tokens and how they work to protect web applications.

Secator is a powerful security and pentesting tool that provides a comprehensive set of automation and reconnaissance capabilities.

This is a Python toolkit for conducting various brute-force attacks, including admin panel, CMS, and password cracking.

macOS security and privacy guide for developers

Advanced vulnerability scanning tool for developers using Nmap NSE scripts and Lua.