Trending Projects

A repository with tips and tutorials for bug bounty hunting and penetration testing.

A BLE and Bluetooth jammer using nRF24L01 and ESP32 for cybersecurity research and pentesting.

Advanced Wazuh rules for more accurate threat detection in your Wazuh environment.

GFWList for censorship circumvention in China

An offensive Google framework for OSINT and information gathering purposes.

A simple script to set up your own OpenVPN server on various Linux distributions.

This is an automated phishing tool with 30+ templates, made for educational purposes only.

A community guide to using YubiKey for secure GnuPG and SSH access, protecting secrets with hardware crypto.

An open-source firewall and privacy tool that blocks mass surveillance and protects your online privacy.

A community-curated collection of templates for the nuclei engine to find security vulnerabilities.

A penetration testing framework packed with hacking tools for security research and exploration.

A curated list of honeypot resources for security researchers and developers.

This repository provides a collection of Windows kernel exploit samples for penetration testing and security research.

A repository for learning various heap exploitation techniques in C.

A project that provides a comprehensive collection of Living Off The Land Binaries and Scripts for security research and incident response.

A TypeScript library that warns developers against using pixelation as a redaction technique.

Direct Memory Access (DMA) Attack Software for security research and penetration testing

A collection of penetration testing POCs, exploits, scripts, and tools for security research and testing.

A curated collection of Shodan search queries for security professionals and researchers.

Securely and anonymously share files, host websites, and chat using the Tor network.

A curated list of resources for learning about application security, including security experts, OWASP, and more.

This repository is a comprehensive list of web application security resources, tools, and techniques.

A cheat sheet for common Windows Active Directory enumeration and attack methods

Reverse engineering and pentesting tool for analyzing Android applications

Open-source tool to enforce privacy and security best practices across Windows, macOS, and Linux

This is a social engineering tool for hacking that can access webcam, microphone, and location.

A knowledge base for vulnerability PoCs with over 1000 vulnerabilities.

IntelOwl: A comprehensive threat intelligence management platform for security professionals.

A web security testing platform built with PHP for discovering and testing web vulnerabilities.

AdGuard browser extension to block ads, trackers, and protect user privacy across Chrome and Firefox.

A hosted reverse shell generator with many features for use in CTFs and security testing.

This GitHub repository provides hourly-updated data dumps of bug bounty platform scopes for developers to explore and use.

An Arch Linux-based distribution for penetration testers and security researchers.

OWASP CRS (Core Rule Set) is a web application firewall (WAF) security ruleset for detecting and preventing common web vulnerabilities.

A tool to bypass DPI (Deep Packet Inspection) and bypass internet censorship.

This is a script to install Kali Nethunter, a penetration testing Linux distro, on Android devices using Termux without root access.

A comprehensive collection of 170+ penetration testing and red teaming tools, scripts, and resources for security professionals.

This repository provides a shell script to infect Android devices with a virus from a link in Termux.

Pentest Report Generator is an open-source tool for security professionals to generate professional penetration testing reports.

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

A collection of tools for offensive and defensive security on the Azure AD/Microsoft Entra platform.

A customizable and automated penetration testing reporting platform for offensive security professionals.

A curated list of awesome cloud security resources for developers and security professionals

An open-source penetration testing framework and vulnerability exploitation tools for Spring Boot applications.

Frida scripts to rewrite mobile applications at runtime to directly MitM all HTTPS traffic

A repository containing indicators of compromise (IOCs) from malware investigations.

JA4+ is a suite of network fingerprinting standards for cybersecurity and network forensics analysis.

A Python library that provides one-liners for various penetration testing and privilege escalation tasks.

This repository provides downloads for various VPN software across different platforms.

A curated list of OSX and iOS related security tools for developers and security professionals.