Trending Projects

A community-curated collection of templates for the nuclei engine to find security vulnerabilities.

This is a multi-use bash script for Linux systems to audit wireless networks.

A collection of Linux, macOS, and Windows kernel privilege escalation vulnerabilities with compilation environments, demos, and details.

A security auditing tool for Linux, macOS, and UNIX-based systems, assisting with compliance testing and system hardening.

A comprehensive collection of awesome resources and tools for security-related software development.

This C# tool generates executable files that can bypass antivirus detection for malicious purposes.

A private certificate authority and ACME server for secure automated certificate management, enabling TLS everywhere and SSH single sign-on.

Quickly discover exposed hosts on the internet using multiple search engines for bug bounty and reconnaissance.

An all-in-one Instagram hacking tool for information gathering, brute force attacks, and account reporting.

A tool that exploits locked/password protected computers over USB, drops a persistent backdoor, and siphons cookies.

404StarLink is a collection of high-quality, meaningful, and actively maintained open-source security projects.

An open-source Chromium-based browser that provides fingerprinting protection and privacy features for web scraping and anti-detection use cases.

A collection of web attack payloads for security research and penetration testing.

A curated list of Unix-like executables that can bypass local security restrictions in misconfigured systems.

A Python library that tracks the real IP address behind Cloudflare, Sucuri, and Incapsula proxy services.

Comprehensive attack surface mapping and asset discovery tool for security researchers and penetration testers.

A tool that automatically integrates and synchronizes the latest Nuclei vulnerability POCs from across the web.

This is a collection of classic and modern trojan builders, not a developer tool for AI-powered coding.

A Go-based CLI tool to generate temporary phone numbers for bypassing SMS verification.

A customizable and automated penetration testing reporting platform for offensive security professionals.

Pupy is a cross-platform C2 and post-exploitation framework written in Python and C for pentesting and security research.

A malicious traffic detection system written in Python for network monitoring and security.

This is a suite of WiFi security auditing tools, not a developer discovery platform for vibe coders.

A powerful web path scanner and directory brute-forcer for security testing and bug bounty hunting.

A comprehensive open-source intelligence (OSINT) tool for gathering information from various online sources.

An offensive Google framework for OSINT and information gathering purposes.

An internal network comprehensive scanning tool for automated, full-spectrum vulnerability scanning.

A Swift obfuscator that protects iOS apps against reverse engineering attacks.

A comprehensive Firefox privacy and security configuration template for developers focused on anti-tracking and anti-fingerprinting.

This repository provides a comprehensive guide for OSCP (Offensive Security Certified Professional) preparation in 2023, including courses, tricks, tutorials, exercises, and practice machines.

A Python library for working with various network protocols, useful for network security and penetration testing.

A powerful network reconnaissance and MITM attack tool for security professionals and researchers.

A collection of Github repositories and articles with lists of dorks for different search engines.

A security and network analysis tool for penetration testing and man-in-the-middle attacks.

Sudomy is a subdomain enumeration tool for bug hunting and pentesting, providing automated reconnaissance.

A collection of resources for learning about Linux kernel security and exploitation.

Picocrypt is a small, secure encryption tool for developers focused on privacy and security.

HTML5 Security Cheatsheet - a collection of HTML5-related XSS attack vectors.

A Python tool to generate smart and powerful wordlists for password cracking and cybersecurity testing.

Official OWASP Top 10 document repository for web application security best practices.

A Python-based utility to quickly access and launch various hacking tools for security professionals.

The 1Password Extension for iOS Apps allows developers to integrate 1Password's secure password management into their mobile apps.

A privacy-focused client for DNS over HTTPS, DNS over Tor, and DNSCrypt with firewall and connection tracking for Android.

Muraena is a reverse proxy tool for automating phishing and post-phishing activities.

This is a multi-honeypot platform for security research and deception.

A comprehensive collection of reverse engineering resources and tools for multiple platforms.

Evil-M5Project is an educational tool for exploring WiFi network security and vulnerabilities.

ZAP is an open-source web application security scanner that helps developers identify and fix security vulnerabilities.

A fast and efficient subdomain brute-forcing tool written in Go for security testing and penetration testing.

A vulnerable iOS app to help mobile security enthusiasts and professionals test their penetration testing skills.