A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Undetectable Windows Payload Generation

Infosec Wordlists and more.

Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder

RomBuster is a router exploitation tool that allows to disclosure network router admin password.

Bad char generator to instruct encoders such as shikata-ga-nai to transform those to other chars.

A simple framework for sending test payloads for known web CVEs.

HatVenom is a powerful payload generation tool that provides support for all common platforms and architectures.

A keylogger, sometimes called a keystroke logger or keyboard capture, is a type of surveillance technology used to monitor and record each keystroke on a specific computer. Keylogger software is also available for use on smartphones, such as the Apple iPhone and Android devices.

The purpose of this tool is to test the window10 defender protection and also other antivirus protection.

Loki.Rat is a fork of the Ares RAT, it integrates new modules, like recording , lockscreen , and locate options. Loki.Rat is a Python Remote Access Tool.

Simple MSFVenom Payload Generator

A simple and efficent script to obfuscate python payloads to make it completely FUD

本脚本旨在生成各类畸形URL链接，进行探测使用的payload，尝试绕过服务端ssrf限制。

Collection of (4000+) malicious rMQR Codes for Penetration testing, Vulnerability assessments, Red Team operations, Bug Bounty and more

Payloads and Lists

Python - Metasploit-Framework Database Management

Every Hacker's Go to Fuzzing List. Introducing the Ultimate Fuzzing Directory: Your Go-To Resource for Penetration Testers and Bug Bounty Hunters! Unlock the power of comprehensive fuzzing with our meticulously curated Fuzzing Directory, a one-stop solution designed to streamline your penetration testing and bug bounty hunting endeavors.

Cyber Security projects. . .

An offensive security framework for writing payloads