#Security-research
Showing 60 of 87 repositories tagged #security-research, ranked by stars
Subdomain takeover vulnerability checker
Historical Windows temporal memory-state research artifact for studying time-bound memory observations, validation limits, and defensive visibility.
Hacker, ready for more of our story ! 🚀
Fuzz Introspector -- introspect, extend and optimise fuzzers
KeyForge3D is an app that turns a photo of a key into a 3D-printable STL file. Ideal for locksmiths and hobbyists, it analyzes the key's bitting pattern using image processing and generates an accurate 3D model for quick replication.
Open-source Claude Code skills, agents, and slash commands for AI-powered penetration testing, bug bounty hunting, and security research
Hardware hacker’s flying probe automation stack for agent-driven target discovery, microscope mapping, safety-monitored CNC motion, probe review, and controlled pin probing.
📡🐧 Linux kernel syscall implementation tracker
AI-native IDE with agentic workflows, iPhone emulation on Windows/Linux, PyTorch ML Studio, and ROCm-optimized local AI. Built for security researchers and cross-platform developers.
Provide AI agents with full Tor network access and dark web data through a zero-config OpenClaw skill or standalone tool.
Independent research white paper by Jon “GainSec” Gaines examining the security posture of a connected public safety technology ecosystem.
使用skill让 AI Agent 像安全分析师一样分析恶意样本 | AI Agent skill for automated malware analysis using IDA Pro
PoC_CVEs
Knowledge base for cybersecurity professionals
Injectra is a Python-based tool for injecting custom payloads into various file types using their magic numbers. It supports file types like zip, rar, docx, jpg, and more, allowing for customizable payloads. It ensures seamless payload injection while maintaining the integrity of the original file.
🔍 Chrome扩展,为安全研究和渗透测试提供Google/百度/Bing高级搜索语法快捷执行。一键Dorking、批量提取URL、智能过滤黑名单,大幅提升信息收集效率。 🔍 Chrome extension for security research and penetration testing. One-click advanced search (Dorking) on Google/Baidu/Bing, bulk URL extraction, smart blacklist filtering. Boost OSINT efficiency.
Uncensored AI coding agent in your terminal. Does the work, skips the sermon. 256K context, crypto-only billing, no card on file.
☁️ Curated Cloud OSINT resources — dorks, tools, and techniques for AWS, Azure, GCP, Oracle Cloud, and other major providers reconnaissance
Claude Code v2.1.88 source analysis: system prompts, 87 hidden feature flags, cost optimization, architecture diagrams, undercover mode, and comparison with Cursor/Cline. No source code redistributed.
A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Hand‑curated offensive security toolkit, scripts, and writeups for ethical hackers, pentesters, and IT pros eager to level up.
MAPS cloud scanner and response parser for Microsoft Defender research.
A modular tool to search for known vulnerabilities, exploits and more across various data sources
RouterOS Attack & Exploitation Framework — 40 CVE/EDB exploits, MAC-Server L2, credential decoder, NPK analyzer, 300-thread BF, Nmap NSE auto-install, pip package, CVE scanner. v3.5.4
Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution
Fuzzing results for various interpreters.
This repository is a curated resource for aspiring bug hunters, offering hands-on labs, tools, and structured guidance to support your learning and practical development in the field of ethical hacking and vulnerability research.
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
Легковесный чистый Rust-дешифратор Happ-ссылок crypt, crypt2, crypt3, crypt4 и crypt5 без внешних runtime-зависимостей. Собранный в кроссплатформенные нативные бинарники. В образовательных целях.
PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.
A curated list of awesome Cisco exploitation resources
Open-source vulnerability disclosure policy templates.
First open-source DMA-based HWID spoofer written in Rust. Spoof hardware IDs via direct memory access.
Advanced reverse engineering platform combining traditional static analysis with AI-powered insights. Supports multiple decompilers (Ghidra, IDA Pro, Binary Ninja), automated function analysis, and interactive web visualization for comprehensive binary analysis workflows.
BOAST is a server designed to receive and report Out-of-Band Application Security Testing (OAST) reactions.
Semantic analysis engine for detecting vulnerability fixes in Windows kernel driver patches — 58 YAML rules, Ghidra decompilation, reachability tracing, and scoring
An all-in-one Shodan & ZoomEye supported tool to search, browse, preview and dump data leakage across 20+ services. Pulls real exposure straight from the sources instead of guessing. Drop it into your workflow and watch it surface leaks you won't find anywhere else.
A Universal Android NFC research and analysis toolkit. Made for Android security researchers and developers. Clone, analyze, and test contactless cards including MIFARE, NTAG, and ISO14443 protocols. Features card data extraction, analysis tools, and emulation capabilities for penetration testing and research.
A PoC exploit for CVE-2024-25600 - WordPress Bricks Builder Remote Code Execution (RCE)
SVG Analysis and generation tools for commonly seen SVG attachment phishing
A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.
A curated collection of bug bounty tips, tricks, payloads, and bypass techniques
A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services that could possibly lead to subdomain takeover scenarios.
Advanced mobile security research platform for authorized testing and educational purposes
Trojan (Ransomware) Phishing Simulator for Cybersecurity Training.
SQL Injection Payloads List.
Complete Claude skills toolkit for professional malware analysis. 5 specialized skills covering triage, dynamic analysis, detection engineering, and reporting. Works with REMnux/FlareVM offline environments.
Extract JavaScript from Bun-compiled executables. Zero dependencies, pure Python reverse engineering tool for security research and code analysis.
CamHawk is a camera phishing tool that tricks users into granting webcam access. Once permission is granted, the tool captures images from the webcam and sends them to your machine.
Comprehensive operational knowledge base: OSINT, forensics, reverse engineering, malware analysis, cryptography, smart-contract audit, cloud/AD/web pentesting, blockchain tracing, and intelligence frameworks for security researchers and CTF players.
CVE hunting harness for Claude Code - 20 skills, 5-agent team, systematic vulnerability research with false positive elimination
A curated timeline of real AI agent security incidents, breaches, and vulnerabilities (2024-2026). Every entry sourced and dated.
Echos is a stealthy C2 traffic emulator built in Rust for Red Teamers. It simulates adversarial beaconing patterns and custom jitter to test EDR/NDR detection logic. Ideal for validating network security signatures in a safe, modular framework.
🔍 Gitsint is a cutting-edge OSINT platform designed for security researchers, threat intelligence teams, and developers. Uncover hidden connections, detect exposed secrets, and map digital footprints across GitHub's vast ecosystem.
🛡️ Zerdecalistops: The Ultimate Cyber Security Ammo Depot. An advanced, dashboard-powered custom wordlist collection for Penetration Testers and Security Researchers.
Outside-in replication of Anthropic's Mythos Preview / Project Glasswing — open-source agentic vulnerability-discovery scaffold on Claude Opus 4.7. Eight-phase sink-guided pipeline, ~$1/run, OSS self-scan and coordinated disclosure.
Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers
FeedHenry Mobile Security
Hands-on secure code review training: learn to find vulnerabilities in Flask, Django, FastAPI through production-quality examples. Whitebox pentesting for modern web frameworks.
Windows infostealer in Rust with polymorphic builds, Hell's Gate syscalls, and compile-time encryption. Educational use only.