A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Run macOS on QEMU/KVM. With OpenCore + Monterey + Ventura + Sonoma support now! Only commercial (paid) support is available now to avoid spammy issues. No Mac system is required.

Pythonic HTML Parsing for Humans™

Most advanced XSS scanner.

A next generation HTTP client for Python. 🦋

Web path scanner

Incredibly fast crawler designed for OSINT.

fsociety Hacking Tools Pack – A Penetration Testing Framework

Create web-based user interfaces with Python. The nice way.

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

structured outputs for llms

Hide screen when boss is approaching.

Convolutional Neural Network for Text Classification in Tensorflow

The Unofficial TikTok API Wrapper In Python

A collection of custom security tools for quick needs.

Striker is an offensive information and vulnerability scanner.

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Deep Learning model to analyze a large corpus of clear text passwords.

Reconnaissance Swiss Army Knife

👻 Experimental library for scraping websites using OpenAI's GPT API.

The All in One Framework to build Awesome Scrapers.

A PoC backdoor that uses Gmail as a C&C server

Making Favicon.ico based Recon Great again !

1-click, self-hosted deployment of OpenVPN with DNS ad blocking sinkhole

Python / C# Unmanaged PowerShell based RAT

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Google Search Scraper

Find emails of Github users

Blockchain Transactions Investigation Tool

A friend of SQLmap which will do what you always expected from SQLmap.