A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Automatic SQL injection and database takeover tool

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

CTFs as you need them

Hide screen when boss is approaching.

A collection of custom security tools for quick needs.

어느 플랫폼에서든 사용할 수 있는 system-ui 대체 글꼴 | A system-ui alternative font for all cross-platform

SQLAlchemy Admin for FastAPI and Starlette

Striker is an offensive information and vulnerability scanner.

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.

Frida Node.js bindings