SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

PHP 69,902 24,944 Updated Apr 4, 2026

NationalSecurityAgency / ghidra

Ghidra is a software reverse engineering (SRE) framework

Java 66,560 7,325 Updated Apr 2, 2026

LadybirdBrowser / ladybird

Truly independent web browser

C++ 62,126 2,917 Updated Apr 4, 2026

google / zx

A tool for writing better scripts

JavaScript 45,334 1,239 Updated Mar 28, 2026

SimplifyJobs / Summer2026-Internships

Collection of Summer 2026 tech internships!

Python 44,058 3,166 Updated Apr 4, 2026

OWASP / CheatSheetSeries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Python 31,689 4,417 Updated Apr 4, 2026

cfenollosa / os-tutorial

How to create an OS from scratch

C 30,297 3,535 Updated Feb 4, 2026

The-Art-of-Hacking / h4cker

This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security,…

Jupyter Notebook 25,802 4,918 Updated Mar 24, 2026

enaqx / awesome-pentest

A collection of awesome penetration testing resources, tools and other shiny things

25,739 4,776 Updated Jan 25, 2026

trufflesecurity / trufflehog

Find, verify, and analyze leaked credentials

Go 25,469 2,296 Updated Apr 4, 2026

v8 / v8

The official mirror of the V8 Git repository

C++ 24,950 4,250 Updated Apr 4, 2026

goldbergyoni / javascript-testing-best-practices

📗🌐 🚢 Comprehensive and exhaustive JavaScript & Node.js testing best practices (August 2025)

JavaScript 24,596 2,100 Updated Jun 27, 2024

shieldfy / API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

23,207 2,671 Updated Feb 10, 2026

peass-ng / PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

C# 19,615 3,351 Updated Apr 1, 2026

vitalysim / Awesome-Hacking-Resources

A collection of hacking / penetration testing resources to make you better!

16,893 2,200 Updated Mar 12, 2024

Hacker0x01 / hacker101

Source code for Hacker101.com - a free online web and mobile security class.

SCSS 14,389 2,656 Updated Feb 22, 2025

owasp-amass / amass

In-depth attack surface mapping and asset discovery

Go 14,353 2,097 Updated Apr 1, 2026

moonD4rk / HackBrowserData

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

Go 13,643 1,746 Updated Apr 4, 2026

qazbnm456 / awesome-web-security

🐶 A curated list of Web Security materials and resources.

13,243 1,770 Updated Feb 27, 2026

juice-shop / juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

TypeScript 12,854 17,170 Updated Apr 4, 2026

OWASP / mastg

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

Python 12,812 2,708 Updated Apr 4, 2026

nahamsec / Resources-for-Beginner-Bug-Bounty-Hunters

A list of resources for those interested in getting started in bug bounties

11,939 2,041 Updated Jul 23, 2024

redcanaryco / atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

C 11,766 3,089 Updated Mar 30, 2026

Thomas DoS0x99

Lists (9)

API Security

Blockchain

Cloud Security

Interesting Projects

Reverse Engineering

Sec

Sec Tools

Software Exploitation

Web & Bug Bounty

Stars