Starred repositories
A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.
Open-source passive reconnaissance and exposure discovery tool that leverages VirusTotal and the Wayback Machine to uncover subdomains, URLs, archived web assets, and potential exposures, with opti…
Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking
Hermes WebUI: The best way to use Hermes Agent from the web or from your phone!
A simple and efficient tool to automatically change your IP address using Tor network at regular intervals.
Autonomous penetration testing using a swarm of AI agents. Orchestrates recon, classification, exploitation, and reporting specialists with ReAct reasoning — supports bug bounty, continuous monitor…
claude-red is a curated library of offensive security skills designed for the Claude skills system. Each skill is a structured SKILL.md file that primes Claude with expert-level methodology for a s…
The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.
817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works w…
The open-source Playwright library for AI browser regression testing with intelligent caching, auto-healing, and multi-model verification.
A simple Xposed module based on LSPosed's Modern Xposed API, that fast-forwards face unlock by skipping the biometric confirmation step in System UI on Android 10+.
Explanation and full RCE PoC for CVE-2025-55182
Two paired Claude skills · 90+ recon modules · 48 secret-regex patterns · 80+ dorks · 9 read-only credential validators · 27 attack-path templates · 5,500+ lines of structured tradecraft. Drop-in S…
Integrate the DeepSeek API into popular software
🕷️ An adaptive Web Scraping framework that handles everything from a single request to a full-scale crawl!
Fast, local-first web content extraction for LLMs. Scrape, crawl, extract structured data — all from Rust. CLI, REST API, and MCP server.
omo/lazycodex: The coding agent for tokenmaxxers;the one and only agent harness for complex codebases. For your Codex, for your OpenCode
A Claude Code skill bundle for bug hunting and external red-team work — 71 skills, 15 slash commands, 681 disclosed-report patterns curated across 24 core vulnerability classes, plus enterprise ide…
A list of free LLM inference resources accessible via API.
Incremental engine for long horizon agents 🌟 Star if you like it!
Desktop Companion for Hermes Agent
Automated DAST scanning pipeline: Subdomains → DNS → URLs → uro → Nuclei → Discord
A security testing tool designed to detect and analyze Cache Poisoned Denial of Service (CPDoS) and Cache Deception vulnerabilities in web applications and CDNs.
PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.