🐶 A curated list of Web Security materials and resources.

Search & Parse Password Leaks

Secrets Find0r is a multithreaded SMB share crawler that hunts for exposed credentials and secrets across Windows networks. It enumerates shares, recursively scans files with regex/keyword rules, h…

Empire is a PowerShell and Python post-exploitation agent.

Calculate Favicon Hash for Shodan

This script can help with BIP39 seed phrase recovery if you have partial information and wallet address for PI Network account. Mainly helpful when you’ve lost or forgotten part of your mnemonic se…

Binary Ninja plugin to analyze and simplify obfuscated code

A curated list of awesome OSCP resources

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure …

A WiFi security auditing software mainly based on aircrack-ng tools suite

Official Whop design system

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Ghosting-AMSI

Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data

A tool for exploring Firebase datastores.

A mini adminer tools for execute sql query, import sql file, export database, dump database.

Send push notifications to your phone or desktop using PUT/POST

Gather and update all available and newest CVEs with their PoC.

Modern Java decompiler aiming to be as accurate as possible, with an emphasis on output quality. Fork of the Fernflower decompiler.

Rust for malware Development is a repository for advanced Red Team techniques and offensive malwares & Ransomwares, focused on Rust 🦀

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

A zero-config VS Code database extension with affordances to aid development and debugging.

A Laravel package for handling OTP verification, The most reliable SMS & WhatsApp & Telegram verification platform for your business in Iraq

A PoC for Early Cascade process injection technique.

Stay on top of trending topics on social media and the web with AI

windows 11 icons (.ico)

KeyDecoder app lets you use your smartphone or tablet to decode your mechanical keys in seconds.

#1 Locally hosted web application that allows you to perform various operations on PDF files

Tool that exploits the WordPress resource “xmlrpc.php” to perform a brute-force dictionary attack on a user to extract their password.

AI app store powered by 24/7 desktop history. open source | 100% local | dev friendly | 24/7 screen, mic recording