Reverse engineering JavaScript and CSS sources from sourcemaps

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

A C2 post-exploitation framework

Open source obfuscation tool for .NET assemblies

🛰️ Represent any GraphQL API as an interactive graph

The backend of HTTP Toolkit

Automatic Android interception & debugging with HTTP Toolkit, for Android

A Kernel based root solution for Android

A free, source-available and fair-code licensed mac app cleaner

RustDesk Server Program

smbclient-ng, a fast and user friendly way to interact with SMB shares.

Bruteforcing from various scanner output - Automatically attempts default creds on found services.

CVE-2024-21893 to CVE-2024-21887 Exploit Toolkit

A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted request…

Microsoft-Outlook-Remote-Code-Execution-Vulnerability

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

🍪 Flask Session Cookie Decoder/Encoder

Sleep Obfuscation

The fastest and more comprehensive multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷

Harvest passwords automatically from OpenSSH server

A light-weight first-stage C2 implant written in Nim (and Rust).

A next generation HTTP client for Python. 🦋

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

A terminal for a more modern age

云存储管理客户端。支持七牛云、腾讯云、青云、阿里云、又拍云，仿文件夹管理、图片预览、拖拽上传、文件夹上传、同步、批量导出URL等功能

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Clone this repo to build Frida

基于各大API的一款企业信息查询工具，为了更快速的获取企业的信息，省去收集的麻烦过程，web端于plat平台上线