Social engineering tool [Access Webcam & Microphone & Location Finder] With {Py,JS,PHP}

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Weaponized web shell

Projects for security students

Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling

Key Copier App for Flipper Zero

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container …

Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.

Hands-on ethical hacking projects for beginners, covering network scanning, web app testing, password cracking, honeypots, Wi-Fi auditing, phishing, and SQL injection.

Magisk module to enables pixel exclusive features and ui

18 Lessons, Get Started Building with Generative AI 🔗 https://microsoft.github.io/generative-ai-for-beginners/

BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate…

Android RAT with web panel and undetectable App

EJBCA® – Open-source public key infrastructure (PKI) and certificate authority (CA) software.

⚡ Fast Web Security Scanner written in Rust based on Lua Scripts 🌖 🦀

A Powerful Network Reconnaissance Tool for Security Professionals

Rust Weaponization for Red Team Engagements.

Free Udemy courses everyday!

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

🦀 | RustRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Rust programming language.

Red Teaming & Pentesting checklists for various engagements

Twitter API Scraper | Without an API key | Twitter Internal API | Free | Twitter scraper | Twitter Bot

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to…

AI Powered Terminal Based Ethical Hacking Assistant

Microsoft Intune Custom Compliance

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Cover various security approaches to attack techniques and also provides new discoveries about security breaches.

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).