The Network Execution Tool

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.

Mach-O analysis library 💪

UNIX-like reverse engineering framework and command-line toolset

A utility for hiding jailbreak from iOS applications

🔥🔥🔥Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++, the architecture and usage like Cobalt Strike

Install Magisk on Official Android Emulator

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate issues of dependenc…

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.

A list of interesting payloads, tips and tricks for bug bounty hunters.

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Safe Method Swizzling.