A book series (2 published editions) on the JS language.

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

Magnificent app which corrects your previous console command.

The fastest path to AI-powered full stack observability, even for lean teams.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

A black hole for Internet advertisements

API Documentation Browser

Metasploit Framework

Reorderable drag-and-drop lists for modern browsers and touch devices. No jQuery or framework required.

.NET debugger and assembly editor

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

World's fastest and most advanced password recovery utility

Unified ingress for developers

UNIX-like reverse engineering framework and command-line toolset

A little tool to play with Windows security

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

A collection of hacking / penetration testing resources to make you better!

The personal information dashboard for your terminal

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

E-mails, subdomains and names Harvester - OSINT

Most advanced XSS scanner.

The ZAP by Checkmarx Core project

Source code for Hacker101.com - a free online web and mobile security class.

The Rogue Access Point Framework

A set of 170+ Bootstrap based design blocks ready to be used to create clean modern websites.

Web path scanner

Open-Source Phishing Toolkit

A modern, portable, easy to use crypto library.

CTF framework and exploit development library