An opinionated list of Python frameworks, libraries, tools, and resources

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Official home of the DB Browser for SQLite (DB4S) project. Previously known as "SQLite Database Browser" and "Database Browser for SQLite". Website at:

A little tool to play with Windows security

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

🤖 The Modern Port Scanner 🤖

Impacket is a collection of Python classes for working with network protocols.

PowerSploit - A PowerShell Post-Exploitation Framework

A curated list of CTF frameworks, libraries, resources and softwares

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and th…

This is a webshell open source project

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

windows-kernel-exploits Windows平台提权漏洞集合

Scripted Local Linux Enumeration & Privilege Escalation Checks

List of Awesome Red Teaming Resources

Empire is a PowerShell and Python post-exploitation agent.

game of active directory

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

PEDA - Python Exploit Development Assistance for GDB

Compilation of Resources from TCM's Practical Ethical Hacking Udemy Course

Reverse engineering focusing on x64 Windows.

linux-kernel-exploits Linux平台提权漏洞集合

The Network Execution Tool

Python for .NET is a package that gives Python programmers nearly seamless integration with the .NET Common Language Runtime (CLR) and provides a powerful application scripting tool for .NET develo…