A collective list of free APIs

Command-line program to download videos from YouTube.com and other video sites

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Hunt down social media accounts by username across social networks

Clone a voice in 5 seconds to generate arbitrary speech in real-time

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

DeepFaceLab is the leading software for creating deepfakes.

🕵️‍♂️ Offensive Google framework.

An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.

Impacket is a collection of Python classes for working with network protocols.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

an awesome list of honeypot resources

Main Sigma Rule Repository

A swiss army knife for pentesting networks

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

You Know, For WEB Fuzzing ! 日站用的字典。

Infection Monkey - An open-source adversary emulation platform

🔥 Web-application firewalls (WAFs) from security standpoint.

RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Compilation of Resources from TCM's Practical Ethical Hacking Udemy Course

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

Fawkes, privacy preserving tool against facial recognition systems. More info at https://sandlab.cs.uchicago.edu/fawkes

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Drop-down terminal for GNOME

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Continuously jam all wifi clients/routers

Clarity AI | AI Image Upscaler & Enhancer - free and open-source Magnific Alternative