Repositories list

• socialrecon

  Public
  SocialRecon is a high-performance, open-source social media reconnaissance and OSINT security scanner. It identifies social media presence, abandoned profiles, impersonation risks, and brand abuse from domains or usernames.

  social-mediaosintcybersecurity+ 4social-network-analysisosint-toolcybersecurity-toolsosint-search-tool

  Go

  •0•1•0•0•Updated Jan 25, 2026Jan 25, 2026

• domainguardian

  Public
  DomainGuardian is a high-performance, accurate subdomain takeover detection platform. Designed for security researchers, bug bounty hunters, and red teams, it focuses on minimizing false positives through multi-layer validation.

  subdomainbugbountytakeover+ 4redteamsubdomain-takeoversubdomain-takeoverssubdomain-security

  Go

  •

  MIT License

  •1•0•0•0•Updated Jan 25, 2026Jan 25, 2026

• linksleuth

  Public
  LinkSleuth is a fast, reliable, and extendable URL discovery and analysis tool written in Go. It allows security researchers and developers to discover endpoints, analyze HTTP responses, and detect sensitive exposure through a modular and multi-threaded approach.

  osinturl-discoveryosint-tool

  Go

  •1•2•0•0•Updated Jan 25, 2026Jan 25, 2026

• offsec-toolkit

  Public
  MIT License

  •0•0•0•0•Updated Jan 10, 2026Jan 10, 2026

• smbseeker

  Public
  Proactive SMB scanning, discovery, and content analysis tool.

  smbpenetration-testingsecurity-tools+ 3smb-filespenetration-testing-toolssmb-shares

  Python

  •0•0•0•0•Updated Jan 7, 2026Jan 7, 2026

• text-encoder

  Public
  A powerful, developer-focused text encoding and security utility library and web application. Zero-dependency core library (suitable for Node.js/Browser) + Premium modern Web Interface.

  encryptionencryption-algorithmstext-encoding+ 1text-encoder

  TypeScript

  •0•0•0•0•Updated Jan 5, 2026Jan 5, 2026

• mvctrace

  Public
  A production-grade CLI tool for detecting ASP.NET MVC applications and inferring their versions. Designed for security reconnaissance, penetration testing, and web application analysis. MVCTrace helps identify MVC frameworks with high accuracy while minimizing false positives.

  mvcversion-controlmvc-framework+ 4penetration-testingbugbountysecurity-toolpenetration-testing-tools

  Go

  •

  MIT License

  •0•3•0•0•Updated Jan 5, 2026Jan 5, 2026

• headersentinel

  Public
  HeaderSentinel is a high-performance, professional HTTP security analyzer written in Go. It performs deep inspection of HTTP response headers and status behavior to identify security misconfigurations, calculate risk scores, and provide actionable remediation advice.

  httpheaderweb-security+ 3web-sec-scannerapp-securityheader-security

  Go

  •0•0•0•0•Updated Jan 4, 2026Jan 4, 2026

• jwtscout

  Public
  JWTScout is an offensive security CLI tool designed to analyze, audit, and exploit JSON Web Token (JWT) vulnerabilities including alg:none, weak secrets, key confusion, and claim manipulation.

  jwtcybersecurityjwt-token+ 4jwt-authenticationjwt-securitycybersecurity-toolstoken-security

  Go

  •

  MIT License

  •0•0•0•0•Updated Jan 4, 2026Jan 4, 2026

• teensy-redops

  Public
  Advanced Red Team & Adversary Simulation Research with Teensy Microcontrollers

  teensyredteamingredteam+ 2redteam-toolsredteaming-tools

  C++

  •

  MIT License

  •0•0•0•0•Updated Jan 1, 2026Jan 1, 2026

• ssrfforge

  Public
  SSRFForge is a high-performance, asynchronous security framework designed for the automated discovery and advanced exploitation of Server-Side Request Forgery (SSRF) vulnerabilities. It serves as a more powerful and modular alternative to legacy tools like SSRFmap.

  ssrfssrf-payloadssrf-tool+ 2ssrf-scannerssrf-exploit

  Python

  •

  MIT License

  •0•0•0•0•Updated Jan 1, 2026Jan 1, 2026

• keyforge

  Public
  KeyForge is a secure password generator focusing on high entropy, customizable policies, and developer-friendly usage.

  password-generatorpasswordpassword-strength+ 1secure-password

  Python

  •

  MIT License

  •0•0•0•0•Updated Dec 31, 2025Dec 31, 2025

• hackertarget

  Public
  Modern command-line interface for HackerTarget network reconnaissance and security testing toolkit. Use open source tools and network intelligence to help organizations with attack surface discovery and identification of security vulnerabilities.

  osinthackertargetosint-tool+ 1hackertarget-api

  Python

  •

  MIT License

  •0•0•0•0•Updated Dec 31, 2025Dec 31, 2025

• pingscope

  Public
  PingScope is a modern, feature-rich, and visually enhanced version of the classic ping tool. It allows you to perform advanced network diagnostics via both a professional CLI and a sleek web dashboard.

  pingping-testping-tester

  Python

  •

  MIT License

  •0•0•0•0•Updated Dec 31, 2025Dec 31, 2025

• shodansploit

  Public
  shodansploit is a powerful CLI tool for interacting with the Shodan API. It provides both an interactive menu-driven interface and robust command-line capabilities for security researchers, penetration testers, and DevOps professionals.

  shodanshodan-apishodan-cli+ 1shodan-python

  Python

  •

  MIT License

  •0•0•0•0•Updated Dec 31, 2025Dec 31, 2025