A list of useful payloads and bypass for Web Application Security and Pentest/CTF

The Python micro framework for building web applications.

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Automatic SQL injection and database takeover tool

Make Your Company Data Driven. Connect to any data source, easily visualize, dashboard and share your data.

A cd command that learns - easily navigate directories from the command line

Impacket is a collection of Python classes for working with network protocols.

MicroK8s is a small, fast, single-package Kubernetes for datacenters and the edge.

Python library for audio and music analysis

CTFs as you need them

🌠 Dark powered asynchronous completion framework for neovim/Vim8

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Developer-friendly incident response with brilliant Slack integration

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A command line tool for interacting with cloud storage services.

Active Directory ACL exploitation with BloodHound

OSCP

「Linuxのしくみ 増補改訂版」の実験コードです

A multi-tenant network sandbox for security challenges

ChaetSheet for Pwn Reversing of CTF

A proof-of-concept deployment to showcase Envoy's OAuth2 filter with Google's OAuth2 API.

LFI to RCE tool.

A joke script :)