A list of useful payloads and bypass for Web Application Security and Pentest/CTF

ALL IN ONE Hacking Tool For Hackers

Grok open release

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

OCR software, free and offline. 开源、免费的离线OCR软件。支持截屏/批量导入图片，PDF文档识别，排除水印/页眉页脚，扫描/生成二维码。内置多国语言库。

Ready-to-use OCR with 80+ supported languages and all popular writing scripts including Latin, Chinese, Arabic, Devanagari, Cyrillic and etc.

Python ProxyPool for web spider

E-mails, subdomains and names Harvester - OSINT

Impacket is a collection of Python classes for working with network protocols.

SMSBoom - Deprecate: Due to judicial reasons, the repository has been suspended!

A next generation HTTP client for Python. 🦋

Android in docker solution with noVNC supported and video recording

Web path scanner

Exploitation Framework for Embedded Devices

一款入门级的人脸、视频、文字检测以及识别的项目.

OneForAll是一款功能强大的子域收集工具

An open-source post-exploitation framework for students, researchers and developers.

A swiss army knife for pentesting networks

梦想是做出最棒的生肉翻译软件喵

You Know, For WEB Fuzzing !

获取斗鱼&虎牙&哔哩哔哩&抖音&快手等 58 个直播平台的真实流媒体地址(直播源)和弹幕，直播源可在 PotPlayer、flv.js 等播放器中播放。

安卓应用层抓包通杀脚本

Infection Monkey - An open-source adversary emulation platform

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens

An Efficient ProxyPool with Getter, Tester and Server

模拟登录一些知名的网站，为了方便爬取需要登录的网站

Scanning APK file for URIs, endpoints & secrets.

强国通 科技强国 学习强国 xuexiqiangguo 全网最好用开源网页学习强国助手：TechXueXi （懒人刷分工具 自动学习）技术强国，支持答题，支持 docker 45分/天

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.