A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A collection of hacking / penetration testing resources to make you better!

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

articles

CTF framework and exploit development library

Some setup scripts for security research tools.

Cross-site scripting labs for web application security enthusiasts

Community guide to securing and improving privacy on macOS.

A curated list of CTF frameworks, libraries, resources and softwares

Remote Administration Tool for Windows

Advanced dork Search & Mass Exploit Scanner

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

List of Awesome Red Teaming Resources

Google CTF

E-mails, subdomains and names Harvester - OSINT

Collection of CTF Web challenges I made