HOT🔥
6.2k
MasterDnsVPN
Advanced DNS tunneling VPN for censorship bypass, optimized beyond DNSTT and SlipStream with low-overhead ARQ, resolver load balancing, high packet-loss stability and speed.
HOT🔥
536
CloudRip
CloudRip is a tool that uncovers the real IP addresses of servers hidden behind Cloudflare by scanning subdomains and filtering out Cloudflare IPs. It helps developers and security researchers identify exposed origin servers outside Cloudflare’s protection, enabling effective auditing and reconnaissance.
Burp Suite CE
Burp Suite Community Edition is a free toolkit for web app security testing, offering an intercepting proxy, traffic history, repeater, decoder, and other core tools for hands-on manual assessments.
FoxyProxy
FoxyProxy is an open-source, advanced proxy management tool that completely replaces Firefox's limited proxying capabilities. No paid accounts are necessary; bring your own proxies or buy from any vendor. The original proxy tool, since 2006.
378.5k
openclaw
OpenClaw is an open-source, local-first AI agent that runs on your Mac, Windows, or Linux machine, keeping all data private and under your control. Chat with it via WhatsApp, Telegram, Discord, Slack, or Signal to automate tasks like clearing inboxes, sending emails, managing calendars, running shell commands, and browser actions. Model-agnostic with persistent memory, skills, and enhanced security features, it delivers efficiency for developers and security researchers auditing AI workflows.[1][2][3]
192.3k
n8n
Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.
114.0k
Awesome-Hacking
Awesome-Hacking curates top security, pentesting, and hacking resources into one place, giving developers and auditors quick access to tools, guides, and research for stronger security work.
106.4k
frp
frp is a high-performance reverse proxy that exposes internal TCP, UDP, HTTP, and HTTPS services through a secure public endpoint, with auth, encryption, logging, and load balancing for analysis.
105.2k
moltbot
Moltbot is a local-first AI agent that runs 24/7 on your hardware, acting as a proactive coding assistant for developers and auditors. It monitors CI/CD pipelines, fixes bugs overnight, creates pull requests, and integrates with 50+ messaging apps like Telegram and Slack. With persistent memory and full system access, it automates workflows securely while keeping your data private—saving hours on repetitive tasks.
103.6k
terminal
Windows Terminal is a fast, tabbed command-line hub for cmd, PowerShell, WSL, and SSH, with profiles, search, and deep customization that streamline development, admin, and security investigation workflows.
Bug Bounty Daily
Bug Bounty Daily curates the most useful bug bounty articles in one place, helping developers and security researchers stay sharp, learn new techniques, and improve their vulnerability finding skills.
82.1k
claude-mem
Persistent Context Across Sessions for Every Agent – Captures everything your agent does during sessions, compresses it with AI, and injects relevant context back into future sessions. Works with Claude Code, OpenClaw, Codex, Gemini, Hermes, Copilot, OpenCode + More
78.4k
PayloadsAllTheThings
PayloadsAllTheThings is an open-source resource offering a comprehensive collection of payloads and bypass techniques for web application security testing and penetration testing. It helps developers and security researchers quickly identify, exploit, and understand vulnerabilities like XSS, SQL injection, command injection, and file inclusion. The project saves time in audits and supports learning through practical examples used in real-world web security assessments.
71.5k
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
70.7k
sherlock
Sherlock is an open-source tool that scans 400+ sites to find where a username is registered, giving developers and investigators quick insight into a target’s social media footprint.
69.6k
ghidra
Ghidra is an open-source software reverse engineering framework developed by the NSA that helps developers and security researchers analyze and decompile binary code. It offers disassembly, decompilation, scripting, and collaborative features to uncover software behavior, identify vulnerabilities, and analyze malware across multiple platforms. Its extensibility and user-friendly interface make complex reverse engineering accessible and efficient.
63.4k
Scrapling
🕷️ An adaptive Web Scraping framework that handles everything from a single request to a full-scale crawl!
62.2k
pi
pi is a powerful coding agent designed for seamless integration with GitHub workflows. It automates handling of issues, pull requests, and other repository tasks, boosting developer productivity. Ideal for tech teams and security researchers auditing codebases, pi streamlines collaboration and ensures efficient project management on platforms like Raspberry Pi. (214 characters)
56.4k
worldmonitor
Real-time global intelligence dashboard. AI-powered news aggregation, geopolitical monitoring, and infrastructure tracking in a unified situational awareness interface
55.4k
clawdbot
clawdbot is a self-hosted AI agent platform that connects chat, tools, and devices, helping developers and security researchers automate workflows and audit complex systems across platforms.