A lightweight C library for image processing, inspired by FFmpeg.

Claude Code Skills and 380+ agent skills from official dev teams and the community, compatible with Codex, Antigravity, Gemini CLI, Cursor and others.

Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

rep+ — Burp-style HTTP Repeater for Chrome DevTools with built‑in AI to explain requests and suggest attacks

The Most Comprehensive Docker Security Scanner

Metis is an open-source, AI-driven tool for deep security code review

🎁 App deals for Black Friday/Cyber Monday etc. Free to submit yours!

Black Friday Deals for macOS / iOS Software & Books

A curated list of Black Friday 2025 deals for web developers, featuring top tools, libraries, and services for React and Vue projects.

Black Friday 2025 deals for developers and designers covering SaaS tools, UI kits, templates, boilerplates, icon libraries, design resources, and AI tools.

OSV-SCALIBR: A library for Software Composition Analysis

An automatic funny code reviewer, written in Ruby

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "wr…

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

Kingfisher is a blazingly fast and highly accurate tool for secret detection and live validation across files, Git repos, GitHub, GitLab, Azure Repos, BitBucket, Gitea, AWS S3, Docker images, Jira,…

Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations

Scan for secrets in dangling commits on GitHub using GH Archive data.

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

HackerOne Notifier is an automated bot that monitors new programs launched on HackerOne and sends Telegram Bot notifications whenever a new program is detected. The process is fully automated using…

Enumerate the permissions associated with AWS credential set

a javascript change monitoring tool for bugbounties

👨‍💻 A list of semi to fully remote-friendly 🇩🇪 companies in or around tech

The recursive internet scanner for hackers. 🧡

Find, verify, and analyze leaked credentials

Running more than 20 production blockchains, SKALED is Ethereum-compatible, high performance C++ Proof-of-Stake client, tools and libraries. Uses SKALE consensus as a blockchain consensus core. Inc…

My dotfiles

Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.

DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.

Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.