A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Turn (almost) any Python command line program into a full GUI application with one line

HTTP parameter discovery suite.

Handwriting Synthesis with RNNs ✏️

Web-based SQLite database browser written in Python

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Differential testing framework for HTTP implementations

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydata…

Challenge source code, handout script and writeups of InCTF National Edition

Appollo is an open-source tool for continuous attack surface monitoring, helping organizations identify, analyze, and mitigate security risks in real time.

API to deploy and manage pre-built docker images on user demands.

SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabilities.

Simple video search/convert bot for telegram that lets the user search for videos on youtube via inline command.

EPSS client for python