Open-source Windows and Office activator featuring HWID, Ohook, TSforge, and Online KMS activation methods, along with advanced troubleshooting.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Community curated list of templates for the nuclei engine to find security vulnerabilities.

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Scripted Local Linux Enumeration & Privilege Escalation Checks

Fly through your Windows 11 setup 🐝

Collection of Cyber Threat Intelligence sources from the deep and dark web

Linux privilege escalation auditing tool

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

📦 Make security testing of K8s, Docker, and Containerd easier.

A repository with 3 tools for pwn'ing websites with .git repositories available

Deserialization payload generator for a variety of .NET formatters

Potentially dangerous files

Find leaked secrets via github search

A wrapper around grep, to help you grep for things

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

declutters url lists for crawling/pentesting

Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)

Check your WAF before an attacker does

Burp Plugin to Bypass WAFs through the insertion of Junk Data

Transparent proxy through Tor for Kali Linux OS

High performance ping tool

A wordlist of API names for web application assessments