A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Hunt down social media accounts by username across social networks

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

Scapy: the Python-based interactive packet manipulation program & library.

Scalable fuzzing infrastructure.

The Pokemon Go Bot, baking with community.

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈

Red Team Scripts for AWS.