TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

A GPT-empowered penetration testing tool

SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.

A Powerful web scraper powered by LLM | OpenAI, Gemini & Ollama

Operation Archive - Saving the history behind Cybercriminal Arrests, Documentation, Raids, Seizures, and more!

Automated NoSQL database enumeration and web application exploitation tool.

SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.

FinGPT: Open-Source Financial Large Language Models! Revolutionize 🔥 We release the trained model on HuggingFace.

This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at the forefront of the field. It serves as a central repository…

Top disclosed reports from HackerOne

The Havoc Framework.

Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operations.

Parse FFUF results in GUI with option to sort based by response code , size , keyword

Automation tool to testing and confirm the xss vulnerability.

Learn how to accept a payment from customers around the world with a variety of payment methods.

A OWASP Based Checklist With 500+ Test Cases

Implementation of "Disentangled Motion Modeling for Video Frame Interpolation"

EnsLoss: Stochastic Calibrated Loss Ensembles for Preventing Overfitting in Classification

Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!!!)

All-in-One Toolkit for BruteForce Attacks

A tool that allows you to search for vulnerable android devices across the world and exploit them.

Android malware source code dataset collected from public resources.

Sandman is a NTP based backdoor for red team engagements in hardened networks.

A fast and minimal JS endpoint extractor

🎯 Command Injection Payload List

An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!

A sample for implementing retrieval augmented generation using Azure Open AI to generate embeddings, Azure Cosmos DB for MongoDB vCore to perform vector search, and semantic kernel.

POC for CVE-2024-3183 (FreeIPA Rosting)