NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enumeration te…

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

DNS Enumeration Script

Payload generar for different operating systems

🚀 Caido releases, wiki and roadmap

Professional bspwm desktop environment for kali linux for hacking, of all kinds, with custom shortcuts, scripts, s4vitar configurations, among other things.

Bash script to check if a domain or list of domains can be spoofed based in DMARC records

A next-generation crawling and spidering framework.

Fast passive subdomain enumeration tool.

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Fetch all the URLs that the Wayback Machine knows about for a domain

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

🔍 Search anyone's digital footprint across 300+ websites

✨ Download historical price tick data for Crypto, Stocks, ETFs, CFDs, Forex via CLI and Node.js ✨

List of Google Dorks for sites that have responsible disclosure program / bug bounty program

declutters url lists for crawling/pentesting

Web path scanner

Autonomous coding agent right in your IDE, capable of creating/editing files, executing commands, using the browser, and more with your permission every step of the way.

An AI web scraper using ollama, brightdata, selenium and other libraries.

Program for determining types of files for Windows, Linux and MacOS.

Carga de archivos sin restricciones en la funcionalidad de carga de archivos grandes en `/main/inc/lib/javascript/bigupload/inc/bigUpload.php` en Chamilo LMS en versiones <= 1.11.24 permite a ataca…

OpenBullet reinvented

Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

The Ultimate Information Gathering Toolkit

AIHawk aims to easy job hunt process by automating the job application process. Utilizing artificial intelligence, it enables users to apply for multiple jobs in a tailored way.

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

A collection of AWS penetration testing junk