A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Web CTF CheatSheet 🐈

A new type of shell

Security Auditor Utility for GraphQL APIs

Expose local http, tcp or websocket connections to the public internet

PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registration, Intruder payload processing, passive/active scanning, …

BcryptMontoya is a powerful plugin for Burp Suite that allows you to effortlessly modify HTTP requests and responses passing through the Burp Suite proxy using Jython code or gRPC, especially when …

使用opencv对验证码进行分割

基于CNN的旋转验证码解决方案✨Predict the rotation angle of given captcha picture through CNN

open-cv, slider, rotate captcha, 缺口滑块校验, 双图旋转校验

Localroot-ALL-CVE~

📄 Awesome OCR multiple programing languages toolkits based on ONNXRuntime, OpenVINO, PaddlePaddle and PyTorch.

The 500 AI Agents Projects is a curated collection of AI agent use cases across various industries. It showcases practical applications and provides links to open-source projects for implementation…

Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available

An AI-powered security review GitHub Action using Claude to analyze code changes for security vulnerabilities.

Trae Agent is an LLM-based agent for general purpose software engineering tasks.

HackerOne "in scope" domains

Reqable issue track repo

Turn any PDF or image document into structured data for your AI. A powerful, lightweight OCR toolkit that bridges the gap between images/PDFs and LLMs. Supports 100+ languages.

Quilkin is a non-transparent UDP proxy specifically designed for use with large scale multiplayer dedicated game server deployments, to ensure security, access control, telemetry data, metrics and …

Restls Protocol: A Perfect Impersonation of TLS; Restls协议: 对TLS的完美伪装

🌳 Tiny and fast JavaScript code generator from an ESTree-compliant AST.

A faster, simpler way to drive browsers supporting the Chrome DevTools Protocol.

Lightpanda: the headless browser designed for AI and automation

An HTTP proxy library for Go

mitmproxy implemented with golang. 用 Golang 实现的中间人攻击（Man-in-the-middle），解析、监测、篡改 HTTP/HTTPS 流量。

Share your terminal over the web

Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS