RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine based on deep document understanding.

Get up and running with Llama 3.3, DeepSeek-R1, Phi-4, Gemma 2, and other large language models.

Monitor linux processes without root permissions

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5

Password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and …

mall项目是一套电商系统，包括前台商城系统及后台管理系统，基于SpringBoot+MyBatis实现，采用Docker容器化部署。 前台商城系统包含首页门户、商品推荐、商品搜索、商品展示、购物车、订单流程、会员中心、客户服务、帮助中心等模块。 后台管理系统包含商品管理、订单管理、会员管理、促销管理、运营管理、内容管理、统计报表、财务管理、权限管理、设置等模块。

Collection of some common wordlists such as RDP password, user name list, ssh password wordlist for brute force. IP Cameras Default Passwords.

Easily train a good VC model with voice data <= 10 mins!

Impacket is a collection of Python classes for working with network protocols.

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Remote Code Execution EJS Web Applications using express-fileupload

CVE-2021-4034 1day

🎯 XML External Entity (XXE) Injection Payload List

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.