Trending Projects

An Android app for online privacy and security, featuring tools like Tor, I2P, and DNSCrypt.

A collection of CTF challenge files and scripts for security researchers and penetration testers.

A collection of open-source security projects to help enterprise security professionals build security capabilities.

A Zygisk module to hide root for KernelSU, Magisk and APatch, designed for Android 5.0+.

Striker is an offensive information and vulnerability scanner for security professionals.

A C-based loader that mitigates VMware Hardened VM detection to bypass anti-VM protections.

A JavaScript-based framework for dynamic analysis and penetration testing of Android and iOS apps.

Evil-M5Project is an educational tool for exploring WiFi network security and vulnerabilities.

A Java security-focused repository with notes and resources for Java developers.

A Perl script that exploits NAT Slipstreaming to bypass victim's firewall and access services on their machine.

This is an open-source OSINT (Open-Source Intelligence) tool that gathers information about phone numbers, emails, subdomains, and more.

All-in-one malware analysis tool for security-focused developers and researchers.

An open-source threat intelligence platform for cybersecurity professionals and researchers.

Microsoft Defender for Cloud is a cloud security platform that provides advanced threat protection and compliance management for cloud environments.

Tookie is an advanced OSINT tool that helps find social media accounts based on user inputs.

A curated list of Android Security materials and resources for penetration testing and bug hunting.

Powerful and extensible proxy server with anti-censorship functionality for Android devices

A curated collection of cybersecurity RSS feeds to help developers stay up-to-date on the latest security news and best practices.

This repository provides advanced Red Team techniques and offensive malware focused on the Rust programming language.

A curated list of resources related to the security and compromise of locks, safes, and keys.

dddd is a simple batch information collection and supply chain vulnerability detection tool optimized for red team workflows.

A curated list of awesome cybersecurity resources, tools, and learning materials.

A comprehensive OSINT cheat sheet and repository of tools, datasets, and resources for security researchers and hackers.

A curated list of Google Dorks for bug bounty, web application security, and penetration testing.

A security audit tool to assess and improve cybersecurity posture.

A hardened memory allocator designed for modern systems, with integration into Android's Bionic libc.

A browser extension for OSINT (Open-Source Intelligence) search, focused on threat intelligence and security.

Free and open-source BadUSB payloads for the Flipper Zero hacking device, supporting Windows, Linux, and iOS.

Open source platform for adversary emulation and exposure validation to enhance cybersecurity posture.

A collection of automated and manual wordlists for content discovery and bruteforcing.

A Python library that provides AV/EDR evasion capabilities via direct system calls for vibe coders.

Secure Boot for NixOS, a Rust-based project for the Nix community.

A machine learning security engine that automatically prevents threats against web apps and APIs.

An open-source OSINT tool to find breached emails, databases, pastes, and other relevant information.

This is a Python-based tool for cracking WiFi passwords, not a developer platform for vibe coders.

Buttercup is a Python tool that finds and patches software vulnerabilities.

This is a repository of hacking tools and scripts for the Termux Linux environment on Android.

A collection of essential cybersecurity resources and tools for security researchers and pentesters.

An open-source script that automatically removes DRM from Steam games

ClatScope is a powerful OSINT tool for investigators, penetration testers, and researchers to retrieve geolocation, DNS, WHOIS, phone, email, and data breach information.

Tool for bypassing Discord server verification checks on low-spec machines.

A collection of CTF (Capture The Flag) challenges and resources for security researchers and developers.

A framework for enumerating, spraying, exfiltrating, and backdooring Office 365 accounts, not for AI vibe coders.

A Java agent-based tool to quickly generate memory shell payloads for common Java web frameworks.

This Python repository generates customized word lists for a variety of use cases, including penetration testing.

A collection of 60k+ Nuclei templates to scan WordPress sites for vulnerabilities and CVEs.

A C# data collector for the BloodHound tool, which is used for Active Directory reconnaissance.

A tool to download all Pwned Passwords hash ranges and save them offline for use without a dependency on the k-anonymity API.

An open-source software supply chain security solution for detecting dependencies, vulnerabilities, and license compliance.

A PoC tool to coerce Windows hosts to authenticate to other machines via the MS-RPRN RPC interface.