A list of useful payloads and bypass for Web Application Security and Pentest/CTF

The Python programming language

Automatic SQL injection and database takeover tool

Project documentation with Markdown.

Most advanced XSS scanner.

Web path scanner

Cross-platform lib for process and system monitoring in Python

A curated list of awesome things related to Django

A swiss army knife for pentesting networks

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

🚀🎬 ShortGPT - Experimental AI framework for youtube shorts / tiktok channel automation

Intelligent proxy pool for Humans™ to extract content from the internet and build your own Large Language Models in this new AI era

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

Automatic SSRF fuzzer and exploitation tool

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Striker is an offensive information and vulnerability scanner.

Deep Learning model to analyze a large corpus of clear text passwords.

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Docker security analysis & hacking tools

A PoC backdoor that uses Gmail as a C&C server

A simple but flexible plugin system for Python.

A tool to link a domain with registered organisation names and emails, to other domains.

Python / C# Unmanaged PowerShell based RAT

simple script to extract all web resources by means of .SVN folder exposed over network.

PyRat，a rat by python xmlrpc

(◍•﹏•) - Hi, I'm Eve