Tech-Radar

An open-source security platform for the community. Unified SIEM, SOAR, WAF, and more in a single, self-hosted solution. · Sprache: Python · Topics: cspm, devsecops, docker, fastapi, incident-response, security · ⭐ 128 Stars

212 offensive security skills for recon and pentest. Field-validated techniques from 600+ targets across 28 sectors. Updated with web enum, email sec, google dorks, cloud IAM. · Sprache: Python · Topics: bug-bounty, cloud-security, cors-exploitation, firebase-hacking, hermes-agent, jwt-attacks · ⭐ 10 Stars

Curated reference of Shodan search queries for recon and asset discovery · Topics: appsec, bug-bounty, osint, pentesting, recon, security-tools · ⭐ 11 Stars

AI-powered MCP server for Burp Suite Professional — 149 tools across proxy, scanner, inline fuzzer, race conditions, guided injection, JWT/IDOR attacks, recon & OOB, with a real-time dashboard and hardened localhost security. Drive Burp from Claude Code or any MCP client. · Sprache: Kotlin · Topics: bug-bounty, burpsuite, claude, kotlin, mcp, model-context-protocol · ⭐ 101 Stars

Android Sandbox for Automated Forensic, Malware, and Security Analysis · Sprache: Python · Topics: android, malware-analysis, security-tools · ⭐ 22 Stars

RCEPayloadGen is a context-aware RCE payload generator for authorized security testing, producing 20k+ targeted, executable payloads across 12 environments — with safety tiers, observable indicators, a benign detection mode, and metadata-rich output for validation, fuzzing, and pentest automation. · Sprache: Python · Topics: bug-bounty, command-injection, ethical-hacking, fuzzing, payloads, penetration-testing · ⭐ 11 Stars

Advanced Rubber Ducky-style HID tool for all Raspberry Pi Pico models with wireless support and enhanced functionality. · Sprache: JavaScript · Topics: api, automation, badusb, circuitpython, cybersecurity, ducky-script · ⭐ 20 Stars

Secure file type validation for .NET applications using magic number detection · Sprache: C# · Topics: dotnet, file, files, filetype-validator, filevalidator, identifying-bytes · ⭐ 191 Stars

Access root shell and implement persistent hacks on budget Chinese IP cameras using UART serial for enhanced control and functionality. · Sprache: Python · Topics: android, camera, camera-phishing, camphish, cctv, exploit · ⭐ 10 Stars

All-in-One Safety Evaluation Framwork · Sprache: Python · Topics: ai-safety, alignment, benchmark, benchmark-framework, security, security-tools · ⭐ 50 Stars

Offsec Practice Labs is a curated training arsenal for hands-on prep across eCPPTv3, OSCP, and CPTS. · Topics: cpts, ctf, ecpptv3, hackmyvm, htb, offensive-security · ⭐ 221 Stars

Kaspersky researchers analyze a new global campaign dubbed StrikeShark that delivers Cobalt Strike Beacon via custom SharkLoader malware.

A secure, efficient TCP/UDP tunneling solution that delivers fast, reliable access across network restrictions using pre-established TCP/QUIC/WebSocket or HTTP/2 connections. · Sprache: Go · Topics: api-rest, connection-pooling, cybersecurity, devops, golang, http2 · ⭐ 266 Stars

Service to share passwords, secret notes securely · Sprache: Go · Topics: communications, encryption, golang-application, one-time-secret, passphrase, private-notes · ⭐ 15 Stars

Suppress vulnerabilities applying Kubernetes context to scans · Sprache: Go · Topics: cve, cwe, grype, machine-learning, security, security-scanner · ⭐ 21 Stars

PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling. · Sprache: PowerShell · Topics: binary-analysis, forensics, forensics-tools, hex-editor, incident-response, incident-response-tooling · ⭐ 35 Stars

66-tool MCP server for dark web intelligence — breach data, ransomware tracking, Tor .onion access, malware analysis, blockchain intel, exploit search, stealer logs · Sprache: TypeScript · Topics: ai-agent, breach, claude, cybersecurity, dark-web, darknet · ⭐ 10 Stars

This tool is with 552 fake numbers from diffrent Country and Receive SMS Online / Temporary Phone Number You can receive SMS online with the listed numbers From this tool . You can use the numbers to sign up or verify for any services like Telegram, Facebook, Google, Gmail, WhatsApp, Viber, Line, WeChat, KakaoTalk etc. A fake number creater bot · Sprache: Python · Topics: facebook-login, fake-number-for-whatsapp, fake-numbers, hacking-tools, instagram-hacking, online-sms-receiver · ⭐ 67 Stars

All social Media hacking with information gathering · Sprache: Python · Topics: exploit, facebook-cracker, hacking, information-gathering, ip-lookup, phishing · ⭐ 272 Stars

ids-inf is a information gathering tool and with extra use full options like number unban and ban and it has phone number information gathering and mail sender extra it is the indias first information gathering tool with number unbanner · Sprache: Shell · Topics: banner, basic-information, blocker, hacking-tools, india-first, information-gathering · ⭐ 209 Stars

Topics: android-exploit, ethical-hacking, ethical-hacking-tools, exploit-development, hacking-code, hacking-course · ⭐ 21 Stars

WhatsApp Hacking Learn about methods for ethical hacking of WhatsApp accounts. Facebook Hacking Explore techniques for ethical hacking of Facebook accounts. Instagram Hacking Discover methods for ethical hacking of Instagram accounts. OTP Bypassing Learn about bypassing OTP (One-Time Password) security measures. WhatsApp & Instagram Banning Met · Topics: android-hacking, android-hacking-tools, android-rat, carding, course, cybersecurity · ⭐ 136 Stars

Online hacking · Topics: android-hacking, android-hacking-tools, android-rat, carding, course, cybersecurity · ⭐ 75 Stars

This project is an advanced software scraper for scanners, you can use it with zmap or masscan · Sprache: Python · Topics: botnet-tools, bug-bounty, hgrab, reconnaissance, scanner, security-tools · ⭐ 10 Stars

The FreeBSD ICMP buffer overflow, freebsd buffer overflow poc · Sprache: C · Topics: buffer-overflow, cve-2022-23093, draytek-vigor-rce, exploit, exploits, freebsd · ⭐ 10 Stars

The first proof of concept of the Contao CMS RCE · Sprache: Python · Topics: 0day, contao-cms, contao-exploit, cve, exploit, rce · ⭐ 10 Stars

Passive RF scanner that detects Flock Safety ALPR cameras and Raven/ShotSpotter acoustic sensors via WiFi and BLE. ESP32-S3 M5Cardputer ADV. · Sprache: C++ · Topics: alpr, arduino, ble, cardputer-adv, cardputeradv, esp32-s3 · ⭐ 35 Stars

Offline-first, searchable arsenal for pentesting & bug bounty: payloads, a click-to-build command generator, GTFOBins, wordlists, embedded CyberChef, reverse shells, checklists & an engagement tracker. · Sprache: CSS · Topics: appsec, bug-bounty, ctf, cyberchef, gtfobins, infosec · ⭐ 10 Stars

A compiled language for Windows position-independent x86-64 shellcode and Beacon Object Files. · Sprache: C · Topics: bof, compiler, language, opsec-toolkit, red-team, shellcode · ⭐ 12 Stars

DianXing - AI-Driven End-to-End Code Security Auditing · Topics: ai-code-review, ai-security, appsec, code-audit, code-security, devsecops · ⭐ 82 Stars