Trending Projects

A toolset to simulate an APT attack on a system, useful for security testing and research.

A Python-based toolkit for performing a wide range of security auditing and exploitation tasks.

An open-source remote vulnerability testing framework for security research and penetration testing.

This Shell repository appears to be a tool for Android malware development, not a developer discovery platform.

A comprehensive security scanner written in Go, supporting port scanning, protocol detection, fingerprinting, and brute-force attacks.

The vanhoefm/krackattacks-scripts repository contains scripts related to the KRACK attack on WPA2 wireless protocols.

A privacy leak detection tool for developers to check for personal data exposure.

A subdomain takeover tool for attackers, bug bounty hunters, and security teams to detect and mitigate security vulnerabilities.

A collection of red team tips and techniques for security researchers and penetration testers.

MagicRecon is a shell script that automates the recon and data collection process to find common vulnerabilities.

Nikto is a powerful open-source web server scanner for security testing and vulnerability detection.

A free, no-registration VPN software for bypassing internet censorship

Freenet is a decentralized, anonymous peer-to-peer network for secure and private communication.

A software sandbox for secure storage of sensitive information in memory, built using Go.

A collection of open-source security projects to help enterprise security professionals build security capabilities.

A Go library that allows executing binaries from a password-protected zip file for security purposes.

A Python framework for conducting Man-In-The-Middle attacks, useful for security research and penetration testing.

A fast, simple, recursive content discovery tool written in Rust for penetration testing and security research.

CACTUSTORCH is a library for generating payloads for adversary simulations, not a developer discovery platform.

The OWASP Developer Guide is a comprehensive resource for secure software development practices.

A collection of resources for learning about Linux kernel security and exploitation.

A middleware to create a flexible proxy pool, providing a fixed request address for long-term use.

A Swift obfuscator that protects iOS apps against reverse engineering attacks.

Small and highly portable detection tests based on MITRE's ATT&CK framework for security researchers.

A collection of web attack payloads for security research and penetration testing.

Next-generation Linux kernel exploit suggester tool for security researchers and penetration testers.

A collection of common PHP webshells for penetration testing and CTF challenges, not intended for hosting on live servers.

This repository contains emergency response notes from a security engineer's perspective.

An open-source project focused on protecting user privacy and security against mass surveillance.

A Python library for creating and managing security detection rules for SIEM and monitoring tools.

An open-source threat intelligence platform for cybersecurity professionals and researchers.

This is a repository focused on learning Ethereum Virtual Machine (EVM) attacks, useful for security audits and smart contract development.

This is a collection of commonly used commands for penetration testing, not a developer tool.

This repository provides a collection of Windows kernel exploit samples for penetration testing and security research.

This repository contains tools for web shell malware evasion and encrypted traffic transmission.

TheFatRat is a tool to generate backdoors and bypassing antivirus software for malware execution.

Collection of Cyber Threat Intelligence sources from the deep and dark web for security researchers and analysts.

A repository of LIVE malwares for analysis and research purposes.

This is an open-source OSINT (Open-Source Intelligence) tool that gathers information about phone numbers, emails, subdomains, and more.

This repository provides tools and configurations for accessing censorship-circumvention services like Shadowsocks, Clash, and Trojan.

EZ is a cross-platform vulnerability scanner that combines information gathering, port scanning, service brute-forcing, URL crawling, and fingerprinting.

This is a collection of malware source code for various platforms and programming languages.

Security Onion is an open-source security monitoring and threat hunting platform.

Exploit Database repository for security researchers and penetration testers.

Actionable analytics and threat intelligence tools for incident response and threat hunting.

A curated list of resources for understanding and bypassing Web Application Firewalls (WAFs) from a security standpoint.

An open-source, privacy-enhancing web browser for iOS, utilizing the Tor anonymity network.

A sensitive information leakage scanner for GitHub that helps developers monitor for and secure exposed data.

Secure your SSH keys using the Secure Enclave on your Mac, protecting them from unauthorized access.

This is a collection of high-risk vulnerability exploitation tools, likely not intended for vibe coders.