Haskell-powered cross-platform transport-layer distributed reverse / forward proxy & tunneling solution – currently available for all TCP protocols (RDP, VNC, HTTP(S), SSH, ...).

the autonomous implementation of ChatGPT is being touted as "empowering GPT

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A script allowing you to download images and videos from Telegram web even if the group restricts downloading.

The open source code of this project is used for userscripts (油猴脚本) for desktop browsers, including Font Rendering (Customized) (字体渲染（自用脚本）- Font Rendering.user.js), and Search Engine Assistant (优雅…

Personal TamperMonkey Userscripts

An online repository of user scripts.

Mastering Reverse Engineering, published by Packt

Burp Suite Professional Activation

CrackStation.net's Lookup Table Implementation.

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

s3 brute force tool

🔥 Web-application firewalls (WAFs) from security standpoint.

XSS payloads for bypassing WAF. This repository is updating continuously.

Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.

OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Penetration tests guide based on OWASP including test cases, resources and examples.

Simple python script for converting Nmap XML to csv (and xlsx)

A simple SSRF-testing sheriff written in Go

本项目制作的初衷是帮助渗透新手快速搭建工作环境，工欲善其事，必先利其器。

The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb

DorkScraper is a simple tool written in Python to extract all the urls that appear when using a Google Dork.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way …

PwnWiki - The notes section of the pentesters mind.

HTTrack Website Copier, copy websites to your computer (Official repository)

bevigil-cli provides a unified command line interface and python library for using BeVigil OSINT API.

Authentication Providers and UI components for Microsoft Graph 🦒

MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied t…