A collective list of free APIs

Drop in a screenshot and convert it to clean code (HTML/Tailwind/React/Vue)

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Hunt down social media accounts by username across social networks

ALL IN ONE Hacking Tool For Hackers

Automatic SQL injection and database takeover tool

Real-time face swap for PC streaming or video calls

🕵️‍♂️ Offensive Google framework.

Impacket is a collection of Python classes for working with network protocols.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Most advanced XSS scanner.

The Rogue Access Point Framework

Privacy-respecting metasearch engine

Web path scanner

CTF framework and exploit development library

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…

E-mails, subdomains and names Harvester - OSINT

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

Incredibly fast crawler designed for OSINT.

fsociety Hacking Tools Pack – A Penetration Testing Framework

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Fast subdomains enumeration tool for penetration testers

an awesome list of honeypot resources

The recursive internet scanner for hackers. 🧡

🍻 awesome cheatsheet

Malicious traffic detection system

🔥 Web-application firewalls (WAFs) from security standpoint.

Web application fuzzer

RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…