A list of useful payloads and bypass for Web Application Security and Pentest/CTF

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Ray is an AI compute engine. Ray consists of a core distributed runtime and a set of AI Libraries for accelerating ML workloads.

2025年最新总结，阿里，腾讯，百度，美团，头条等技术面试题目，以及答案，专家出题人分析汇总。

Automatic SQL injection and database takeover tool

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

😘 让你“爱”上 GitHub，解决访问时图裂、加载慢的问题。（无需安装）

数据结构和算法必知必会的50个代码实现

Python ProxyPool for web spider

🕵️‍♂️ Offensive Google framework.

Impacket is a collection of Python classes for working with network protocols.

E-mails, subdomains and names Harvester - OSINT

Web path scanner

Exploitation Framework for Embedded Devices

Main Sigma Rule Repository

OneForAll是一款功能强大的子域收集工具

An open-source post-exploitation framework for students, researchers and developers.

类似按键精灵的鼠标键盘录制和自动化操作 模拟点击和键入 | automate mouse clicks and keyboard input

Companion code to my O'Reilly book "Flask Web Development", second edition.

You Know, For WEB Fuzzing ! 日站用的字典。

An advanced memory forensics framework

Linux 内核揭秘

越来越多的网站具有反爬虫特性，有的用图片隐藏关键数据，有的使用反人类的验证码，建立反反爬虫的代码仓库，通过与不同特性的网站做斗争（无恶意）提高技术。（欢迎提交难以采集的网站）（因工作原因，项目暂停）

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

💖 High available distributed ip proxy pool, powerd by Scrapy and Redis

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

Study Notes For Web Hacking / Web安全学习笔记

Hunt for security weaknesses in Kubernetes clusters

Google CTF

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…