PayloadsGit All the Payloads! A collection of web attack payloads.
IntruderpayloadsA collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Xss LoaderXss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
Hack ToolsThe all-in-one Red Team extension for Web Pentester 🛠
HackvaultA container repository for my public web hacks!
GivingstormInfection vector that bypasses AV, IDS, and IPS. (For now...)
Tiny Xss PayloadsA collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
PwndropSelf-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.
PixloadImage Payload Creating/Injecting tools
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
ChimeraChimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
BurpcryptoBurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).
HatVenomHatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.
PayloadsPayload Arsenal for Pentration Tester and Bug Bounty Hunters
Loki.RatLoki.Rat is a fork of the Ares RAT, it integrates new modules, like recording , lockscreen , and locate options. Loki.Rat is a Python Remote Access Tool.
web-cve-testsA simple framework for sending test payloads for known web CVEs.
window-ratThe purpose of this tool is to test the window10 defender protection and also other antivirus protection.
PayloadsAllA list of useful payloads and bypass for Web Application Security and Pentest/CTF
badcharsBad char generator to instruct encoders such as shikata-ga-nai to transform those to other chars.
AMP-ResearchResearch on UDP/TCP amplification vectors, payloads and mitigations against their use in DDoS Attacks