Building 70 Projects ranging from beginner to advanced so anyone can — learn from, build upon, use as a reference, or even copy directly. Gamified Cybersecurity learning 👇
Go to file
CarterPerez-dev d97662ee61 feat(foundations): add foundations tier — three teaching-first Python projects
Adds the foundations tier: three Python projects pitched at someone
who has never written Python before, ramping from a single-file hash
identifier up to the cryptographic boundary of the beginner tier.

Projects
- hash-identifier: identify ~30 hash formats by prefix, length, and
  charset (one file, ~30 tests).
- http-headers-scanner: fetch a URL and grade its security headers
  A–F (httpx + rich + respx, single-file scanner, 13 tests).
- password-manager: Argon2id + AES-256-GCM encrypted CLI vault with
  atomic durable writes and advisory file locking (the hardest
  foundations project — stepping stone into the beginner tier).

Each project ships with
- Heavily-commented source as a teaching aid (foundations-tier override
  of the no-comments rule — explanations targeted at first-time readers).
- A full learn/ folder: Overview, Concepts, Architecture, line-by-line
  Implementation walkthrough, Challenges.
- README with ASCII banner, badges (incl. tier + difficulty), demo
  sessions, command tables, learn-folder index, see-also links.
- install.sh + justfile + uv-managed dependencies.
- pytest + ruff + mypy + pylint config, all linters at 10.00/10.

Also centralizes the docs/ exclude in .gitignore (was a per-project
list of advanced/beginner docs paths) so dev-only audit reports and
plan documents stay local across the whole repo without needing
individual entries.
2026-05-13 13:57:33 -04:00
.github fix: pin pnpm to v10 in CI and add .npmrc to all frontend projects 2026-05-08 05:46:38 -04:00
PROJECTS feat(foundations): add foundations tier — three teaching-first Python projects 2026-05-13 13:57:33 -04:00
RESOURCES Update README.md 2026-04-29 03:14:28 -04:00
ROADMAPS docs(roadmaps): replace mentorship CTAs with CertGames 2026-04-29 03:20:45 -04:00
SYNOPSES Update Base64.Encoder.Decoder.md 2026-04-29 03:19:37 -04:00
TEMPLATES Update Makefile.example 2026-04-29 03:18:41 -04:00
.gitguardian.yml feat: Complete Go secrets scanner - Portia 2026-02-22 20:02:38 -05:00
.gitignore feat(foundations): add foundations tier — three teaching-first Python projects 2026-05-13 13:57:33 -04:00
.gitmodules Fix submodule path: rename templates to TEMPLATES 2026-01-30 02:24:37 -05:00
.pre-commit-config.yaml fix(monitor): pick conflict-free host ports (8432/5432/4432/6432/3432); JWT keygen-on-boot, healthcheck path, baseline migration; ignore frontend/.pnpm-store; pre-commit excludes 2026-05-01 20:13:00 -04:00
LICENSE move docs to .github/ 2026-02-11 07:52:29 -05:00
README.md add learn folder to IM MONITORING THE SITUATION DASHBOARD project 2026-05-08 04:43:29 -04:00

README.md

Kali-dragon-icon svg

Cybersecurity Projects 🐉

67 Cybersecurity Projects, Certification Roadmaps & Resources

stars forks issues license
projects resources

Made possible by CertGames

View Complete Projects:

Currently building: Steganography Multi-Tool


Quick Navigation

Projects

67 hands-on cybersecurity projects with full source code, from beginner to advanced level.

Certification Roadmaps

10 structured career paths with certification guides for SOC Analyst, Pentester, Security Engineer, and more.

Learning Resources

Tools, courses, certifications, communities, and frameworks for cybersecurity professionals.


Projects

Beginner Projects

Project Info What You'll Learn
Simple Port Scanner
Async TCP port scanner in C++ @deniskhud
2-4h C++ Beginner TCP socket programming • Async I/O patterns • Service detection
Source Code | Docs
Keylogger
Capture keyboard events with timestamps
1-2h Python Beginner Event handling • File I/O • Ethical considerations
Source Code | Docs
Caesar Cipher
CLI encryption/decryption tool
1-2h Python Beginner Classical cryptography • Brute force attacks • CLI design
Source Code | Docs
DNS Lookup CLI Tool
Query DNS records with WHOIS
2-3h Python Beginner DNS protocols • WHOIS queries • Reverse DNS lookup
Source Code | Docs
Simple Vulnerability Scanner
Check software against CVE databases
3-4h Go Beginner CVE databases • Dependency scanning • Vulnerability assessment
Source Code | Docs
Metadata Scrubber Tool
Remove EXIF and privacy metadata @Heritage-XioN
2-3h Python Beginner EXIF data • Privacy protection • Batch processing
Source Code | Docs
Network Traffic Analyzer
Capture and analyze packets
3-5h Python C++ Beginner Packet capture • Protocol analysis • Traffic visualization
Source (C++) | Docs (C++) | Source (Python) | Docs (Python)
Hash Cracker
Dictionary and brute-force cracking
3-4h C++ Beginner Hash algorithms • Dictionary attacks • Password security
Source Code | Docs
Steganography Multi-Tool
Hide data in images, audio, QR, PDFs, text
2-3h Python Beginner Multi-format steganography • Zero-width Unicode • Audio LSB • QR exploitation
Learn More
Ghost on the Wire
L2 attack & defense: MAC spoofing + ARP detection
2-3h Python Beginner ARP protocol • MAC spoofing • MITM detection • L2 trust mapping
Learn More
Canary Token Generator
Self-hosted honeytokens that alert on access
2-3h Go Beginner Deception defense • Honeytokens • Webhook alerting • Intrusion detection
Learn More
Security News Scraper
Aggregate cybersecurity news
3-4h Python Beginner Web scraping • CVE parsing • Database storage
Learn More
Phishing Domain Generator & Quishing Scanner
Typosquat generation + QR phishing detection
2-3h Python Beginner Homoglyph attacks • Typosquatting • QR code analysis • Domain intelligence
Learn More
SSH Brute Force Detector
Monitor and block SSH attacks
2-4h Python Beginner Log parsing • Attack detection • Firewall automation
Learn More
Simple C2 Beacon
Command and Control beacon/server
3-5h Python React Docker Beginner C2 architecture • MITRE ATT&CK • WebSocket protocol • XOR encoding
Source Code | Docs
Base64 Encoder/Decoder
Multi-format encoding tool
1h Python Beginner Base64/32 encoding • URL encoding • Auto-detection
Source Code | Docs
Linux CIS Hardening Auditor
CIS benchmark compliance checker
3-4h Bash Beginner CIS benchmarks • System hardening • Compliance scoring • Shell scripting
Source Code | Docs
Systemd Persistence Scanner
Hunt Linux persistence mechanisms
2-3h Go Beginner Persistence techniques • Systemd internals • Cron analysis • Threat hunting
Source Code | Docs
Linux eBPF Security Tracer
Real-time syscall tracing with eBPF
2-3h Python C Beginner eBPF programs • Syscall tracing • BCC framework • Security observability
Source Code | Docs
Trojan Application Builder
Educational malware lifecycle demo
2-3h Python Beginner Trojan anatomy • Data exfiltration • File encryption • Attack lifecycle
Learn More
DNS Sinkhole
Pi-hole-style malware domain blocker
3-4h Go Beginner DNS protocol • Blocklist management • Query logging • Network defense
Learn More
Firewall Rule Engine
Parse and validate iptables/nftables rules
2-3h V Beginner Firewall internals • Rule parsing • iptables/nftables • V language
Source Code | Docs
LLM Prompt Injection Firewall
Detect and block prompt injection attacks
2-3h Python Beginner AI security • Prompt injection • Input sanitization • LLM defense
Learn More

Intermediate Projects

Project Info What You'll Learn
Payload Obfuscation Engine
Multi-layer payload obfuscation toolkit
2-4d Go Intermediate Obfuscation techniques • Polymorphism • AV evasion • Signature detection
Learn More
SIEM Dashboard
Log aggregation with correlation
3-5d Flask React Intermediate SIEM concepts • Log correlation • Full-stack development
Source Code | Docs
Token Abuse Playground
15+ token vulnerabilities to exploit and fix
3-5d FastAPI React Intermediate JWT exploitation • OAuth attacks • Session security • Token forensics
Learn More
Supply Chain Attack Simulator
Fake PyPI package dependency confusion demo
2-4d Python Intermediate Supply chain attacks • Dependency confusion • Package security • PyPI internals
Learn More
DDoS Mitigation Tool
Detect traffic spikes
2-4d Go Intermediate DDoS detection • Rate limiting • Anomaly detection
Learn More
Secrets Scanner
Scan codebases and git history for leaked secrets
1-2d Go Intermediate Secret detection • Shannon entropy • HIBP k-anonymity • SARIF output
Source Code | Docs
API Security Scanner
Enterprise API vulnerability scanner
3-5d FastAPI React Docker Intermediate OWASP API Top 10 • ML fuzzing • GraphQL/SOAP testing
Source Code | Docs
Wireless Deauth Detector
Monitor WiFi deauth attacks
2-4d Rust Intermediate Wireless security • Packet sniffing • Attack detection
Learn More
Credential Enumeration
Post-exploitation credential collection
2-4d Nim Intermediate Credential extraction • Browser forensics • Red team tooling • Nim language
Source Code | Docs
Binary Analysis Tool
Disassemble and analyze executables
3-5d Rust Intermediate Binary analysis • String extraction • Malware detection
Source Code | Docs
Chaos Engineering Security Tool
Inject security failures to test resilience
3-5d Go Intermediate Chaos engineering • Security resilience • Credential spraying • Auth testing
Learn More
Credential Rotation Enforcer
Track and enforce credential rotation policies
2-4d Python Intermediate Credential hygiene • Secret rotation • Compliance dashboards • API integration
Source Code | Docs
Race Condition Exploiter
TOCTOU race condition attack & defense lab
3-5d FastAPI React Intermediate TOCTOU attacks • Double-spend bugs • Concurrent exploitation • Race visualization
Learn More
Self-Hosted Shodan Clone
Internet-connected device search engine
3-5d Go React Intermediate Service fingerprinting • Network scanning • OSINT • Search engine design
Learn More
JA3/JA4 TLS Fingerprinting Tool
Fingerprint TLS clients by handshake
2-4d Rust Intermediate TLS handshake analysis • JA3/JA4 hashing • Bot detection • Malware C2 identification
Learn More
Mobile App Security Analyzer
Decompile and analyze mobile apps
3-5d Python Intermediate APK/IPA analysis • Reverse engineering • OWASP Mobile
Learn More
DLP Scanner
Data Loss Prevention for files, DBs, and traffic
2-4d Python Intermediate PII detection • GDPR/HIPAA compliance • Pattern matching • Data classification
Source Code | Docs
Lua/Nginx Edge Backend
Full CRUD backend via Lua in Nginx
3-5d Lua Nginx Intermediate Edge computing • OpenResty • Lua scripting • WAF • JWT at the edge
Learn More
Privesc Playground
20+ privilege escalation paths to exploit
3-5d Python Intermediate SUID exploitation • Sudo abuse • Cron hijacking • GTFOBins • Capability abuse
Learn More
SBOM Generator & Vulnerability Matcher
Software Bill of Materials with CVE matching
2-4d Go Intermediate SPDX/CycloneDX formats • Dependency analysis • CVE databases • EO 14028 compliance
Source Code | Docs
Subdomain Takeover Scanner
Detect dangling DNS records
2-4d Go Intermediate DNS enumeration • CNAME analysis • Cloud resource claiming • Bug bounty
Learn More
GraphQL Security Tester
Automated GraphQL vulnerability testing
2-4d Python Intermediate Introspection attacks • Query depth DoS • Authorization bypass • Batching abuse
Learn More
Docker Security Audit
CIS Docker Benchmark scanner
1-2d Go Docker Intermediate CIS benchmarks • Container security • Multiple output formats
Source Code | Docs

Advanced Projects

Project Info What You'll Learn
API Rate Limiter
Distributed rate limiting middleware
1w Python Redis Advanced Token bucket algorithm • Distributed systems • Redis backend
Source Code | Docs
Encrypted Chat Application
Real-time E2EE messaging
1-2w FastAPI SolidJS PostgreSQL Advanced Signal Protocol • Double Ratchet • WebAuthn • WebSockets
Source Code | Docs
Exploit Development Framework
Modular exploitation framework
3-4w C++ Advanced Exploit development • Payload generation • Plugin architecture
Learn More
AI Threat Detection
ML-powered nginx threat detection
3-4w FastAPI React PyTorch Advanced ML ensemble (AE + RF + IF) • ONNX inference • Real-time detection
Source Code
Bug Bounty Platform
Full vulnerability disclosure platform
2-3w FastAPI React PostgreSQL Advanced Full-stack development • CVSS scoring • Workflow automation
Source Code | Docs
Cloud Security Compliance Dashboard
Multi-cloud compliance with CIS, SOC2, HIPAA
2-3w Go React AWS Advanced CIS benchmarks • SOC2/HIPAA compliance • Cost-security optimization • Drift detection
Learn More
Malware Analysis Platform
Automated sandbox analysis
2-3w Rust Docker Advanced Malware analysis • Sandboxing • YARA rules • IOC extraction
Learn More
Quantum Resistant Encryption
Post-quantum cryptography
3-4w Python Advanced Post-quantum algorithms • Hybrid encryption • Kyber/Dilithium
Learn More
Zero Day Vulnerability Scanner
Coverage-guided fuzzing
2-3w Rust C Advanced Fuzzing • Vulnerability research • Crash triage
Learn More
Distributed Password Cracker
GPU-accelerated cracking
3-4w C++ CUDA Advanced Distributed systems • GPU computing • Hash cracking
Learn More
Kernel Rootkit Detection
Detect kernel-level rootkits
2-3w Rust Advanced Kernel internals • Memory forensics • Rootkit detection
Learn More
Blockchain Smart Contract Auditor
Solidity vulnerability analysis
3-4w Python Solidity Advanced Smart contracts • Static analysis • Solidity security
Learn More
Adversarial ML Attacker
Generate adversarial examples
3-4w Python TensorFlow Advanced Adversarial ML • FGSM/DeepFool • Model robustness
Learn More
Advanced Persistent Threat Simulator
Multi-stage APT simulation
3-4w Go Advanced APT techniques • C2 infrastructure • Lateral movement
Learn More
Hardware Security Module Emulator
Software HSM with PKCS#11
2-3w C Advanced HSM concepts • PKCS#11 interface • Cryptographic operations
Learn More
Network Covert Channel
Data exfiltration techniques
3-4w Rust Advanced Covert channels • Data exfiltration • Steganography
Learn More
Automated Penetration Testing
Full pentest automation
3-4w Python Advanced Pentest automation • Recon to exploitation • Report generation
Learn More
Haskell Reverse Proxy
Functional reverse proxy with security middleware
2-3w Haskell Advanced Functional programming • Reverse proxy design • Security middleware • Haskell
Source Code
"Monitor the Situation" Dashboard
Real-time cyber threat situational awareness
3-4w Go React PostgreSQL Advanced Threat intel feeds • EPSS/KEV/CVE velocity • BGP hijacks • WebSocket fan-out • 3D globe SOC view
Source Code | Docs
Honeypot Network
Multi-service honeypot deployment & analysis
2-3w Go React Docker Advanced Honeypot deployment • Attacker behavior analysis • IOC extraction • MITRE mapping
Source Code | Docs
Supply Chain Security Analyzer
Dependency vulnerability analysis
2-3w Go Advanced Supply chain security • Dependency analysis • Malicious packages
Learn More

Learn More

Certification Roadmaps - Career paths for SOC Analyst, Pentester, Security Engineer, GRC Analyst, and 6 more tracks

Learning Resources - Tools, courses, certifications, YouTube channels, Reddit communities, and security frameworks

License

AGPL 3.0