Android malware (.apk) can be spread through a fake PDF document by manipulating the file extension in the WhatsApp application. PoC is available in this repo

CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13

PDF dropper Red Team Scenairos

An XSS exploitation command-line interface and payload generator.

The Offensive Manual Web Application Penetration Testing Framework.

Disable WD using VBS

Simple obfuscation tool

Open-Source Remote Administration Tool For Windows C# (RAT)

Anti-forensics tool Inspired by NSA's Marble framework.

Wi-Fi Exploitation Framework

C# obfuscator that bypass windows defender

OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.

This python program gets all the saved passwords, credit cards and bookmarks from chromium based browsers supports chromium 80 and above!

A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them billions of unique source addresses!

An easy to install and easy to run tool for generating exploit payloads for CVE-2023-38831, WinRAR RCE before versions 6.23

Generate smart and powerful wordlists

Trace Labs OSINT Linux Distribution based on Kali.

O ESPhishing é um ataque de captive portal que é executado na placa de desenvolvimento NodeMCU com o microcontrolador ESP8266. É uma ferramenta de engenharia social que gera uma rede WiFi de um det…

All In One Web Recon

RAR-NextgenerationAI-expliot (use ai and more new techniques)

functions to exploit common web application vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Server-Side Request Forgery (SSRF), and Path Traversal.

You should never use malware to infiltrate a target system. With the skill of writing and exploiting technical codes, you can do the best ways of penetration. This is done in order to test and incr…

An insane list of all dorks taken from everywhere from various different sources.

Search & Parse Password Leaks

Dump cookies and credentials directly from Chrome/Edge process memory

Undetectable Keylogger that reports to Discord

List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting.

Python code to extract chrome cookie, history and login data files

Get unencrypted 'Saved Password' from Google Chrome

get all wifi and password from windows using python