Dictionary sets often used in penetration testing work , 渗透测试工作中经常使用的字典集。

GTFO Command Line Interface for easy binaries search commands that can be used to bypass local security restrictions in misconfigured systems.

SAP Penetration Testing: A Comprehensive Analysis of SAP Security Issues

GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.

口令爆破字典，有键盘组合字典、拼音字典、字母与数字混合这三种类型

A nodejs implementation of the sha512crypt hash algorithm

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)

Browser In The Browser (BITB) Templates

This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.

OneWordlistToListThemAll is a huge mix of password wordlists, proven to be pretty useful to provide some quick hits when cracking several hashes

Instant negative hash cracking wordlist lookup

Tool for CVE-2018-16323

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Converts Half-WPA handshake to hashcat

Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)

Impacket is a collection of Python classes for working with network protocols.

Pipal, THE password analyser

🎓 Path to a free self-taught education in Computer Science!

World's fastest and most advanced password recovery utility

SuperGenPass, spiced up with bcrypt and special character support!

Inject code and spy on wifi users

Official vibe.d development

static analysis of C/C++ code