Trending Projects

A curated list of Awesome Red Teaming resources for security professionals and penetration testers.

A Python-based malware analysis and unpacking tool for security researchers and analysts.

A repository with tips and tutorials for bug bounty hunting and penetration testing.

A comprehensive collection of hacking tools, resources, and references for practicing ethical hacking.

A project that provides a comprehensive collection of Living Off The Land Binaries and Scripts for security research and incident response.

Collection of blocklists to fill in the gaps for ad-blocking, privacy, and security purposes.

A community guide to using YubiKey for secure GnuPG and SSH access, protecting secrets with hardware crypto.

A comprehensive security and attack surface management platform for penetration testing and vulnerability assessment.

RSA attack tool to retrieve private keys from weak public keys and/or decipher data

A repository of custom payloads for the USB Rubber Ducky, a powerful pen-testing tool for keystroke injection attacks.

Buttercup is a Python tool that finds and patches software vulnerabilities.

A curated list of tools for incident response and digital forensics investigations.

A curated list of various bug bounty tools for web security researchers and bug hunters.

Fort Firewall for Windows bandwidth limiting

This is an open-source OSINT (Open-Source Intelligence) tool that gathers information about phone numbers, emails, subdomains, and more.

AI-powered penetration testing CLI using Gemini & LangChain for automated security workflows

This is a free, open-source CTF tutorial for beginners, covering various CTF challenges and network security topics.

Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation.

A cloud-native SIEM for intelligent security analytics for the entire enterprise.

ClatScope is a powerful OSINT tool for investigators, penetration testers, and researchers to retrieve geolocation, DNS, WHOIS, phone, email, and data breach information.

Nishang is an offensive PowerShell framework for red team, penetration testing, and security operations.

An open-source project focused on tracking and exposing Huawei's alleged misdeeds.

A repository for badUSB payloads for the Flipper Zero security device, allowing plug-and-play functionality.

A simple way to block internet access per app on Android devices.

Direct Memory Access (DMA) Attack Software for security research and penetration testing

This project provides a basic anti-detection frida-server solution for developers.

This is a repository of cutting-edge open-source security tools for red teamers and threat hunters.

A fast, reliable, and simple port scanner written in Go, ideal for bug bounties and penetration testing.

A curated list of resources for social engineering, a technique used to manipulate people into divulging sensitive information.

A curated list of honeypot resources for security researchers and developers.

Suricata is a powerful network security monitoring engine for intrusion detection and prevention.

A hosted reverse shell generator with many features for use in CTFs and security testing.

This is a collection of malware source code for various platforms and programming languages.

ModSecurity is an open-source web application firewall (WAF) engine for Apache, IIS, and Nginx that provides protection from web attacks.

Browser fingerprinting library that uses favicons to track users across the web.

A network stresser tool that uses Hatsune Miku as its theme, built with TypeScript.

Cameradar is a Go library that allows developers to hack into RTSP video surveillance cameras for security testing.

Comprehensive collection of the latest CVEs and their PoCs for security research and penetration testing.

An open-source project that provides privacy-focused guides and tools to protect data against global surveillance.

Velociraptor is a digital forensics and incident response framework written in Go, with a focus on endpoint discovery and security.

A guide for setting up NextDNS, a privacy-focused DNS over HTTPS (DoH) proxy with advanced capabilities.

A reverse engineering framework for Flutter, focused on security research and bug bounty programs.

A curated list of OSX and iOS related security tools for developers and security professionals.

An automatic SSTI detection tool with an interactive interface for penetration testing and security research.

A fast subdomain enumeration tool for penetration testers and security researchers.

A command-line tool to generate common user passwords from various data sources.

This repository provides a collection of free proxy, VPN, and network acceleration tools for developers to bypass internet censorship.

An exploitation framework for embedded devices, focused on penetration testing and security research.

A comprehensive guide for mobile app security testing and reverse engineering.

A curated list of cryptography resources and links for developers interested in security and encryption.