A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Hunt down social media accounts by username across social networks

🙌 OpenHands: AI-Driven Development

The official gpt4free repository | various collection of powerful language models | o4, o3 and deepseek r1, gpt-4.1, gemini 2.5

A natural language interface for computers

Ultralytics YOLO 🚀

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

Framework for orchestrating role-playing, autonomous AI agents. By fostering collaborative intelligence, CrewAI empowers agents to work together seamlessly, tackling complex tasks.

Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.

OCRmyPDF adds an OCR text layer to scanned PDF files, allowing them to be searched

Convert PDF to markdown + JSON quickly with high accuracy

Set up a personal VPN in the cloud

Full reference of LinkedIn answers 2024 for skill assessments (aws-lambda, rest-api, javascript, react, git, html, jquery, mongodb, java, Go, python, machine-learning, power-point) linkedin excel t…

🕵️‍♂️ Collect a dossier on a person by username from thousands of sites

🕵️‍♂️ Offensive Google framework.

An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.

Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods

Impacket is a collection of Python classes for working with network protocols.

CTF framework and exploit development library

Exploitation Framework for Embedded Devices

Deduplicating archiver with compression and authenticated encryption.

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Credentials recovery project

an awesome list of honeypot resources

Self-hosted bookmark manager that is designed be to be minimal, fast, and easy to set up using Docker.

An open-source post-exploitation framework for students, researchers and developers.

📱 objection - runtime mobile exploration

Malicious traffic detection system

A tool that bootstraps your dotfiles ⚡️