AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.

Magnificent app which corrects your previous console command.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Grok open release

Automatic SQL injection and database takeover tool

JumpServer is an open-source Privileged Access Management (PAM) platform that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints…

Open-source AI hackers to find and fix your app’s vulnerabilities.

Impacket is a collection of Python classes for working with network protocols.

Most advanced XSS scanner.

Web path scanner

Your Personal AI Assistant; easy to install, deploy on your own machine or on the cloud; supports multiple chat apps with easily extensible capabilities.

OneForAll是一款功能强大的子域收集工具

A swiss army knife for pentesting networks

You Know, For WEB Fuzzing !

The most powerful Android RPA agent framework, next generation of mobile automation robots.

Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

The Network Execution Tool

Windows Exploit Suggester - Next Generation

The Leading Security Assessment Framework for Android.

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-…

信息收集自动化工具

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

A DNS meta-query spider that enumerates DNS records, and subdomains.

Tool for Active Directory Certificate Services enumeration and abuse

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers