Contained is all my reference material for my OSCP / Red Teaming. Designed to be a one stop shop for code, guides, command syntax, and high level strategy. One simple clone and you have access to some of the most popular tools used for pentesting.
GitHub repository with 106 stars and 41 forks.
Language: Shell
Topics: pentesting, pentesting-tools, pentest-scripts, pentesting-networks, pentesting-windows, linux, linux-shell, oscp, bash-script, powershell
2026-06-04: 106 stars and 41 forks.
AI-Powered Agents for Bub-Bounty Pentesting and Red-Teaming purposes
GitHub repository with 295 stars and 60 forks.
Trending score: 1.03; stars gained: +1; forks gained: +0.
Language: Shell
Topics: bounty-hunters, bug, bug-bounty, bugbounty, bugbounty-tools, pentest-tool
An ArchLinux based distribution for penetration testers and security researchers.
GitHub repository with 3,382 stars and 654 forks.
Trending score: 0.61; stars gained: +1; forks gained: +0.
Language: Shell
Topics: cyber-security, cybersecurity, distribution, hacker, hacking, it-security
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
GitHub repository with 436 stars and 47 forks.
Trending score: 0.09; stars gained: +0; forks gained: +0.
Language: Shell
Topics: cve, nuclei, nuclei-templates, bug-bounty, bugbounty, security
An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms (like Hackerone/Bugcrowd/Intigriti/etc) (updates every 10 minutes)
GitHub repository with 83 stars and 14 forks.
Trending score: 0.05; stars gained: +0; forks gained: +0.
Language: Shell
Topics: bug-bounty, bugbounty, bugbountytips, bugcrowd, hackenproof, hackerone
Measuring frontier coding agents on original, long-horizon engineering tasks
GitHub repository with 611 stars and 33 forks.
Trending score: 3.01; stars gained: +38; forks gained: +3.
Language: Shell
GitHub repository with 2,657 stars and 373 forks.
Trending score: 2.76; stars gained: +27; forks gained: +5.
Language: Shell
Mirror official Codex desktop app installers into GitHub Releases.
GitHub repository with 372 stars and 19 forks.
Trending score: 2.58; stars gained: +26; forks gained: +1.
Language: Shell
Topics: codex-app, github-actions, installer-mirror, macos, microsoft-store, msix
Use your NVIDIA GPU's VRAM as swap space on Linux. Built for laptops with soldered memory and no upgrade path. If you have an RTX card sitting there with 8GB of VRAM and you're getting swapped to SSD, this puts that VRAM to work
GitHub repository with 386 stars and 10 forks.
Trending score: 2.51; stars gained: +220; forks gained: +5.
Language: Shell
Topics: cuda, gpu, laptop, linux, memory, nbd
A complete AI agency at your fingertips - From frontend wizards to Reddit community ninjas, from whimsy injectors to reality checkers. Each agent is a specialized expert with personality, processes, and proven deliverables.
GitHub repository with 107,446 stars and 17,719 forks.
Trending score: 2.47; stars gained: +293; forks gained: +38.
Language: Shell
Agent2Agent (A2A) is an open protocol enabling communication and interoperability between opaque agentic applications.
GitHub repository with 24,131 stars and 2,448 forks.
Trending score: 2.40; stars gained: +23; forks gained: +4.
Language: Shell
Topics: a2a, a2a-mcp, a2a-protocol, a2a-server, agents, generative-ai
A Claude Code skill bundle for bug hunting and external red-team work - 51 skills, 15 slash commands, 681 disclosed-report patterns curated across 24 vulnerability classes, plus enterprise identity + infrastructure attack matrices.
GitHub repository with 1,648 stars and 250 forks.
Trending score: 3.28; stars gained: +63; forks gained: +9.
Language: Python
Topics: ai-security, anthropic, application-security, bug-bounty, bugbounty, bugcrowd
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
GitHub repository with 13,253 stars and 18,179 forks.
Trending score: 1.39; stars gained: +14; forks gained: +9.
Language: TypeScript
Topics: owasp, javascript, vulnerable, hacking, application-security, owasp-top-10
Automatic SQL injection and database takeover tool
GitHub repository with 37,555 stars and 6,269 forks.
Trending score: 1.18; stars gained: +16; forks gained: +2.
Language: Python
Topics: database, detection, exploitation, pentesting, python, sql-injection
Bypass all api restraints within Kimi-CLI
GitHub repository with 44 stars and 5 forks.
Trending score: 1.12; stars gained: +12; forks gained: +3.
Language: Python
Topics: ai-agents, bypassing, exploit, kimi-cli, kimi-k2, moonshot-ai
AI-Powered Agents for Bub-Bounty Pentesting and Red-Teaming purposes
GitHub repository with 295 stars and 60 forks.
Trending score: 1.03; stars gained: +1; forks gained: +0.
Language: Shell
Topics: bounty-hunters, bug, bug-bounty, bugbounty, bugbounty-tools, pentest-tool
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
GitHub repository with 12,942 stars and 2,746 forks.
Trending score: 1.01; stars gained: +10; forks gained: +4.
Language: Python
Topics: android, android-application, compliancy-checklist, dynamic-analysis, hacking, ios