#Payload
Showing 60 of 81 repositories tagged #payload, ranked by stars
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Payload is the open-source, fullstack Next.js framework, giving you instant backend superpowers. Get a full TypeScript backend and admin panel instantly. Use Payload as a headless CMS or for building powerful applications.
Tools and Techniques for Red Team / Penetration Testing
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
All about bug bounty (bypasses, payloads, and etc)
The LAZY script will make your life easier, and of course faster.
Git All the Payloads! A collection of web attack payloads.
Python Remote Administration Tool (RAT)
:fire: CHAOS is a free and open-source Remote Administration Tool that allow generate binaries to control remote operating systems.
Penetration tests guide based on OWASP including test cases, resources and examples.
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
RubberDucky like payloads for DigiSpark Attiny85
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
Everything for pentest. | 渗透测试知识库,以 AI Agent 可执行的格式沉淀安全方法论。
Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.
Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )
Athena OS is a Arch/Nix-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
AppSec Payloads Arsenal for Pentration Tester and Bug Bounty Hunters
Infosec Wordlists and more.
ALL IN ONE Hacking Tool For Hackers, Penetration Tester and Cybersecurity. New Version Beginner to Advanced Tool. This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !
HERCULES is a special payload generator that can bypass antivirus softwares.
link is a command and control framework written in rust
RomBuster is a router exploitation tool that allows to disclosure network router admin password.
Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
Simple and easy Metasploit payload generator for Linux & Termux
Generates malicious LNK file payloads for data exfiltration
渗透测试Payload速查平台 | Pentest Payload Quick Reference | XSS/SQLi/SSRF/RCE | React+TypeScript
This repository contains full code examples from the book Gray Hat C#
AiScan-N 来了!这是一款基于人工智能驱动的Ai自动化网络安全(运维)工具,专注于网络安全评估、漏洞扫描、运维、应急响应、渗透测试自动化,Ai大模型工具集【CLI Agent】 ,Ai驱动的安全检测技术,提升安全测试(运维)效率,专为企业和个人用户打造,尤其适合初学者(小白)快速上手使用,让你轻松迈入智能安全攻防时代!适用场景 :如(红队演练、CTF比赛、Web应用渗透测试、内网横向移动、密码破解与暴力攻击、流量分析与威胁检测、APT攻击模拟、漏洞赏金挑战等场景)🎥演示视频(文章中):https://mp.weixin.qq.com/s/7lsUdbrxkDy4P5pZhEWv7Q
A collection of selected badUSB script for Flipper Zero, written by me. This repo is always Work In Progress.
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Authentication plugin for Payload CMS
AI assistant that utilizes GPT language models to interpret and generate cybersecurity payloads 🪄
Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.
RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.
Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for security professionals and enthusiasts.
SPY BOMB is a tool used to generate various payloads for android,windows,ios,mac and many more it is very user friendly tool.
Athena OS Nix configuration files focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!
The BackDoor of HIPHP gives you the power to control websites based on PHP using HTTP/HTTPS protocol. By sending files, tokens and commands through port 80's POST/GET method, users can access a range of activities such as downloading and editing files. It also allows for connecting to Tor networks with password protection for extra security.
🐱💻 👍 Google Chrome - File System Access API - vulnerabilities reported by Maciej Pulikowski | Total Bug Bounty Reward: $5.000 | CVE-2021-21123 and 5 more...
Arcane is a simple script designed to backdoor iOS packages (iphone-arm) and create the necessary resources for APT repositories.
This repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Legacy OpenSource malware packer for .NET Framework executable files
This project aims to provide a comprehensive resource for understanding and testing Cross-Site Scripting (XSS) vulnerabilities, one of the OWASP Top 10 security risks. It is designed to be a useful resource for security researchers, penetration testers, and developers.
PowerShell payload generator
Collection of script templates to create infinite UAC prompts forcing a user to run as admin ⚠
Windows Hacking FrameWork using Reverse Shell
A new simple and powerfull packer for malware
The purpose of this tool is to test the window10 defender protection and also other antivirus protection.
Feature-rich Post Exploitation Framework with Network Pivoting capabilities.
This repository contains a curated list of websites and repositories featuring pentest & red-team resources such as cheatsheets, write-ups, tools, techniques, programming/scripting notes, and more. I documented them in this repo to provide like-minded offensive security enthusiasts and professionals easy access to these valuable resources.
İçerisinde 100'den fazla modül ve özelliği barındıran çok amaçlı bir siber güvenlik aracı.
Automated PowerHacker Suite: Your all-in-one solution for ethical hacking. Conduct comprehensive network mapping, vulnerability assessments, password cracking, wireless network analysis, social engineering simulations, and more. Generate real-time reports with actionable insights to identify vulnerabilities and recommend countermeasures.
Wiki漏洞库管理系统&网络安全知识库-渗透测试常见漏洞知识库文档-该网站收集了Web应用层漏洞、中间件安全缺陷、系统配置不当、移动端(Android)安全问题、权限提升、RCE、网络设备及IOT安全。
Fast, safe, and reliable Android OTA partition extractor
Loki.Rat is a fork of the Ares RAT, it integrates new modules, like recording , lockscreen , and locate options. Loki.Rat is a Python Remote Access Tool.
¿Quieres empezar en el mundo hacking? En esta revista te enseño a instalar Kali Linux desde cero y a manipular herramientas esenciales en el Hacking Ético.
The primary goal of this project is to explain SQL Injection (one of the OWASP Top 10 vulnerabilities) and to provide a beneficial resource for the security community.
Payload CMS plugin for event tracking, auditing, and security. Monitor activities and analyze user behavior.