Automatic SQL injection and database takeover tool

Your AI second brain. Self-hostable. Get answers from the web or your docs. Build custom agents, schedule automations, do deep research. Turn any online or local LLM into your personal, autonomous …

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

🕵️‍♂️ Offensive Google framework.

🕵️‍♂️ Collect a dossier on a person by username from thousands of sites

Most advanced XSS scanner.

Web path scanner

A swiss army knife for pentesting networks

CTFs as you need them

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

Pydoll is a library for automating chromium-based browsers without a WebDriver, offering realistic interactions.

HTTP parameter discovery suite.

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Simple cross-platform colored terminal text in Python

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

The All in One Framework to Build Undefeatable Scrapers

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

This script automates SQL injection testing using SQLMap with AI-powered decision making.

Stuff that doesn't deserves its own repository.

Network Forensics CLI utility that performs Network Scanning, OSINT, and Attack Detection

Simple blog app.

undust is a URL pattern generator that helps uncover archived, backup, and temporary files left behind on web servers. Given a URL, it generates the most common archive, temp and backup file name v…