0dayCTF / PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
β34Updated 3 years ago
Related projects: β
- Automate installation of extra pentest tools on Kali Linuxβ40Updated 3 years ago
- π€ The Modern Port Scanner π€β13Updated 3 years ago
- XSS Rocket is written by Black Hat Ethical Hacking with the help of #ChatGPT as experimentation, with a lot of hours spent modifying the β¦β92Updated last week
- SQLMutant is a comprehensive SQL injection testing tool that provides several features to test for SQL injection vulnerabilities in web aβ¦β64Updated last week
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSRβ¦β118Updated last week
- Xfinity / Comcast Wordlist Generatorβ43Updated last year
- HaxorHandbook is the ultimate cheat sheet for cybersecurity enthusiasts looking to up their game. Our comprehensive guide includes must-hβ¦β59Updated 6 months ago
- This demonstration video shows how we can control the victim's device by sending the innocent-looking PDF file to the target which actualβ¦β49Updated 3 years ago
- A Python http(s) server designed to assist in red teaming activities such as receiving intercepted data via POST requests and serving conβ¦β122Updated 2 months ago
- Scripts for offensive securityβ59Updated 3 weeks ago
- LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.β101Updated 3 months ago
- capNcook - a dark web exploration toolβ51Updated 5 months ago
- A powerful tool that utilizes the technique of google dorking to search for specific information on the internet.β97Updated last year
- Certina is an OSINT tool for red teamers and bug hunters to discover subdomains from web certificate dataβ46Updated 6 months ago
- An OSINT focused tool made with Nodejs!β84Updated last year
- ADAT is a small tool used to assist CTF players and Penetration testers with easy commands to run against an Active Directory Domain Contβ¦β92Updated last year
- a collection of payloads and scripts from my "Building an Ethical Hacker EDC" YouTube Seriesβ22Updated 3 years ago
- β25Updated last month
- Collection of extra pentest tools for Kali Linuxβ93Updated last year
- A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.β10Updated last year
- A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vectβ¦β62Updated last week
- Subdomain Bruteforce - Bounty Quick Codeβ28Updated last week
- OWASP based Web Application Security Testing Checklistβ64Updated 2 months ago
- A simple and stealthy reverse shell written in Nim that bypasses Windows Defender detection. This tool allows you to establish a reverse β¦β76Updated 7 months ago
- RedNeuron - Framework Creator of Malware focused in attacking Windows but created to execute framework in Linux πΎβ67Updated last year
- Stuff about it-security that might be good to knowβ12Updated 4 years ago
- A tool for WI-FI penetration testing that automates your attacking processes.β26Updated last month
- Resources, repos and scripts for pentesters and bug bounty.β55Updated last week
- Basics on commands/tools/info on how to do binary exploitation on a mobile phoneβ41Updated last year
- A collection of pentesting web scannersβ31Updated 5 months ago