70 Cybersecurity Projects, Certification Roadmaps & Resources
Made possible by CertGames
Currently building: Self-Hosted Shodan Clone
Hands-on cybersecurity projects with full source code, organized in four tiers — Foundations (pre-beginner, first-time programmers), Beginner, Intermediate, and Advanced.
10 structured career paths with certification guides for SOC Analyst, Pentester, Security Engineer, and more.
Tools, courses, certifications, communities, and frameworks for cybersecurity professionals.
[!TIP] Want to be walked through building these instead of reading finished source? CertGames has guided project courses that build real security tools from scratch, step by step, with the concepts explained as you go. Same projects, less getting stuck. FREE
[!NOTE] Start here if this is your first time coding. The Foundations tier is pre-beginner — built for someone who has never written Python, has barely used a terminal, and is new to cybersecurity. Source files are heavily commented as a teaching aid, and every
learn/folder explains concepts from zero. Once you're comfortable here, the Beginner projects assume you already know the language and move faster.What makes Foundations different: - Single-file projects — the entire tool lives in one readable Python file. No file-hopping. - Heavy teaching comments — every line that introduces a new concept is annotated inline. - Numpy-style docstrings on every function — what it does, why it exists, every parameter. - Extra-deep
learn/folders — Python features and security concepts both explained from zero. - Senior-level code, beginner-level explanations — the code itself is still production-quality.
| Project | Info | What You'll Learn |
|---|---|---|
| Hash Identifier |
Identify hash types by prefix, length, and charset |
| Hash families (MD5, SHA, bcrypt, Argon2) • PHC string format • Pattern matching • Pure-function design
Source Code | Docs | | HTTP Headers Scanner
Audit a URL's response headers for missing or weak security controls |
| HTTP fundamentals • Security headers (CSP, HSTS, X-Frame-Options) • httpx requests • Scored audits
Source Code | Docs | | Password Manager
Encrypted local vault with master password unlock |
| Argon2id key derivation • AES-GCM authenticated encryption • Secure on-disk vaults • Master-password workflows
Source Code | Docs |
| Project | Info | What You'll Learn |
|---|---|---|
| Simple Port Scanner |
Async TCP port scanner in C++ @deniskhud |
| TCP socket programming • Async I/O patterns • Service detection
Source Code | Docs | | Keylogger
Capture keyboard events with timestamps |
| Event handling • File I/O • Ethical considerations
Source Code | Docs | | Caesar Cipher
CLI encryption/decryption tool |
| Classical cryptography • Brute force attacks • CLI design
Source Code | Docs | | DNS Lookup CLI Tool
Query DNS records with WHOIS |
| DNS protocols • WHOIS queries • Reverse DNS lookup
Source Code | Docs | | Simple Vulnerability Scanner
Check software against CVE databases |
| CVE databases • Dependency scanning • Vulnerability assessment
Source Code | Docs | | Metadata Scrubber Tool
Remove EXIF and privacy metadata @Heritage-XioN |
| EXIF data • Privacy protection • Batch processing
Source Code | Docs | | Network Traffic Analyzer
Capture and analyze packets |
| Packet capture • Protocol analysis • Traffic visualization
Source (C++) | Docs (C++) | Source (Python) | Docs (Python) | | Hash Cracker
Dictionary and brute-force cracking |
| Hash algorithms • Dictionary attacks • Password security
Source Code | Docs | | Steganography Multi-Tool
Hide data in images, audio, QR, PDFs, text |
| Multi-format steganography • Zero-width Unicode • Audio LSB • QR exploitation
Learn More | | Ghost on the Wire
L2 attack & defense: MAC spoofing + ARP detection |
| ARP protocol • MAC spoofing • MITM detection • L2 trust mapping
Learn More | | Canary Token Generator
Self-hosted honeytokens that alert on access |
| Deception defense • Honeytokens • MySQL wire protocol • PDF/DOCX patching • Webhook + Telegram alerting
Aggregate cybersecurity news |
| Web scraping • CVE parsing • Database storage
Learn More | | Phishing Domain Generator & Quishing Scanner
Typosquat generation + QR phishing detection |
| Homoglyph attacks • Typosquatting • QR code analysis • Domain intelligence
Learn More | | SSH Brute Force Detector
Monitor and block SSH attacks |
| Log parsing • Attack detection • Firewall automation
Learn More | | Simple C2 Beacon
Command and Control beacon/server |
| C2 architecture • MITRE ATT&CK •
$ claude mcp add Cybersecurity-Projects \
-- python -m otcore.mcp_server <graph>