SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Damn Vulnerable Web Application (DVWA)

SuiteCRM - Open source CRM for the world

All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

ProjectSend is a free, open source software that lets you share files with your clients, focused on ease of use and privacy. It supports clients groups, system users roles, statistics, multiple lan…

Transcribe and translate your audio files - for free

PHP library for Two Factor Authentication (TFA / 2FA)

Twitter vulnerable snippets

Simple websites vulnerable to Server Side Template Injections(SSTI)

Spoof who an SMS is from using an SMS API

small set of PHP scripts to practice exploiting LFI, RFI and CMD injection vulns

A Laravel model-based CMS

Paste is a project that started from the files pastebin.com used before it was bought.

Toolkit to detect and keep track on Blind XSS, XXE & SSRF

A new and improved PHP library which bypasses the Cloudflare IUAM page using cURL

Phishing Scenarios Used for Phishing Frenzy

Damn Vulnerable WordPress

codebase for op paris

Google Hack Database dork automatic tool.

Black Hat Ethical Hacking | PHP Backdoor Shell v1.0

SniperPhish - The Web-Email Spear Phishing Toolkit

Comprehensive Web Based Phishing Suite of Tools for Rapid Deployment and Real-Time Alerting!

Toolkit to detect and keep track on Blind XSS, XXE & SSRF