All Algorithms implemented in Python

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

YOLOv5 🚀 in PyTorch > ONNX > CoreML > TFLite

🆓免费的 ChatGPT 镜像网站列表，持续更新。List of free ChatGPT mirror sites, continuously updated.

Fast subdomains enumeration tool for penetration testers

Credentials recovery project

Web Pentesting Fuzz 字典,一个就够了。

PyQt Examples（PyQt各种测试和例子） PyQt4 PyQt5

HTTP parameter discovery suite.

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-…

信息收集自动化工具

A python script that finds endpoints in JavaScript files

A fast sub domain brute tool for pentesters

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs

Weblogic一键漏洞检测工具，V1.5，更新时间：20200730

Static Code Analysis - 静态代码分析

Python Wechaty is a Conversational RPA SDK for Chatbot Makers written in Python

🐦🌴🌴🌴🦕 A home for ethereum smart contracts. 🏠

Python3编写的CMS漏洞检测框架

Python2编写的struts2漏洞全版本检测和利用工具

MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize

Google search from Python (unofficial).

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

Redis 4.x/5.x RCE

一款针对向日葵的识别码和验证码提取工具

一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo