Skip to content
View evilcos's full-sized avatar
🌴
On vacation
🌴
On vacation
6.1k followers · 13 following

Achievements

Achievement: Pull SharkAchievement: Starstruckx4Achievement: Arctic Code Vault Contributor

Achievements

Achievement: Pull SharkAchievement: Starstruckx4Achievement: Arctic Code Vault Contributor

Organizations

@web2hack @joinsec @slowmist

Block or report evilcos

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

33 results for sponsorable starred repositories
Clear filter

Stirling-Tools / Stirling-PDF

#1 PDF Application on GitHub that lets you edit PDFs on any device anywhere

TypeScript 71,411 6,056 Updated Dec 19, 2025

Lissy93 / personal-security-checklist

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

TypeScript 20,350 1,392 Updated Jun 28, 2025

qazbnm456 / awesome-web-security

🐶 A curated list of Web Security materials and resources.

12,864 1,744 Updated May 2, 2025

tintinweb / smart-contract-sanctuary

🐦🌴🌴🌴🦕 A home for ethereum smart contracts. 🏠

Python 1,587 284 Updated Jun 28, 2024

pypa / pip-audit

Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them

Python 1,155 81 Updated Dec 9, 2025

motdotla / dotenv

Loads environment variables from .env for nodejs projects.

JavaScript 20,187 919 Updated Sep 29, 2025

tintinweb / solidity-shell

An interactive Solidity Shell

JavaScript 541 28 Updated May 28, 2023

PaperMtn / gitlab-watchman

Finding exposed secrets and personal data in GitLab

Python 202 25 Updated Nov 18, 2024

swisskyrepo / PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Python 72,600 16,348 Updated Dec 12, 2025

eth0izzle / shhgit

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

JavaScript 3,933 483 Updated Feb 28, 2025

s0md3v / XSStrike

Most advanced XSS scanner.

Python 14,580 2,043 Updated Apr 26, 2025

RetireJS / retire.js

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

JavaScript 4,036 434 Updated Dec 12, 2025

aio-libs / aiohttp

Asynchronous HTTP client/server framework for asyncio and Python

Python 16,152 2,167 Updated Dec 20, 2025

christophetd / CloudFlair

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Python 2,924 377 Updated May 1, 2025

OWASP / Go-SCP

Golang Secure Coding Practices guide

Go 5,223 386 Updated May 31, 2024

greymass / anchor

Antelope Desktop Wallet and Authenticator

JavaScript 588 224 Updated Dec 10, 2025

zentralopensource / zentral

Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.

Python 830 91 Updated Dec 19, 2025

drduh / macOS-Security-and-Privacy-Guide

Community guide to securing and improving privacy on macOS.

22,385 1,463 Updated Nov 8, 2025

cure53 / HTTPLeaks

HTTPLeaks - All possible ways, a website can leak HTTP requests

HTML 2,076 206 Updated Oct 23, 2024

frida / frida

Clone this repo to build Frida

Meson 19,239 1,968 Updated Dec 16, 2025

EdOverflow / bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

6,326 1,606 Updated Sep 14, 2023

cure53 / DOMPurify

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

JavaScript 16,408 820 Updated Dec 8, 2025

danielmiessler / SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

PHP 67,652 24,824 Updated Dec 19, 2025

ashishb / android-security-awesome

A collection of android security related resources

Shell 9,030 1,528 Updated Dec 16, 2025

maurosoria / dirsearch

Web path scanner

Python 13,762 2,408 Updated Oct 20, 2025

FallibleInc / security-guide-for-developers

Security Guide for Developers

21,051 1,590 Updated Aug 30, 2025

qemu / qemu

Official QEMU mirror. Please see https://www.qemu.org/contribute/ for how to submit changes to QEMU. Pull Requests are ignored. Please only use release tarballs from the QEMU website.

C 12,413 6,401 Updated Dec 17, 2025

sqlmapproject / sqlmap

Automatic SQL injection and database takeover tool

Python 36,131 6,145 Updated Dec 5, 2025

byt3bl33d3r / MITMf

Framework for Man-In-The-Middle attacks

Python 3,630 1,042 Updated Aug 28, 2018

secretsquirrel / BDFProxy

Patch Binaries via MITM: BackdoorFactory + mitmProxy.

Python 1,008 200 Updated Jul 31, 2021
Next