This repo includes ChatGPT prompt curation to use ChatGPT and other LLM tools better.

前端技能汇总 Frontend Knowledge Structure

HTTP, HTTP2, HTTPS, Websocket debugging proxy

The Browser Exploitation Framework Project

Program for determining types of files for Windows, Linux and MacOS.

🤖一个基于 WeChaty 结合 DeepSeek / ChatGPT / Kimi / 讯飞等Ai服务实现的微信机器人 ，可以用来帮助你自动回复微信消息，或者管理微信群/好友，检测僵尸粉等...

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

🔍 An LLM-based Multi-agent Framework of Web Search Engine (like Perplexity.ai Pro and SearchGPT)

Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.

Produces persistent, respawning "super" cookies in a browser, abusing over a dozen techniques. Its goal is to identify users after they've removed standard cookies and other privacy data such as Fl…

P4wnP1 A.L.O.A. by MaMe82 is a framework which turns a Rapsberry Pi Zero W into a flexible, low-cost platform for pentesting, red teaming and physical engagements ... or into "A Little Offensive Ap…

A collaborative, multi-platform, red teaming framework

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Cloud Security Posture Management (CSPM)

Search and browse documents and data; find the people and companies you look for.

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

Fast Incident Response

基于Frida的Android App隐私合规检测辅助工具

The XSS Hunter service - a portable version of XSSHunter.com

A simple demo of phishing by abusing the browser autofill feature

基于 Whistle 实现的多账号多环境远程配置及抓包调试平台

A Swagger API Exploit

基于chrome、firefox插件的被动式信息泄漏检测工具

Help your LLMs online

This is a project for a browser fingerprinting technique that can track users not only within a single browser but also across different browsers on the same machine.

A DNS rebinding attack framework.

飞刃是一套完整的企业级黑盒漏洞扫描系统，集成漏洞扫描、漏洞管理、扫描资产、爬虫等服务。 拥有强大的漏洞检测引擎和丰富的插件库，覆盖多种漏洞类型和应用程序框架。

安全隐私卫士（AppScan）一款免费的企业级自动化App隐私合规检测工具。

Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.

BurpSuite using the document and some extensions