A list of useful payloads and bypass for Web Application Security and Pentest/CTF
-
Updated
Jun 19, 2026 - Python
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Opiniated RAG for integrating GenAI in your apps 🧠 Focus on your product rather than the RAG. Easy integration in existing products with customisation! Any LLM: GPT4, Groq, Llama. Any Vectorstore: PGVector, Faiss. Any Files. Anyway you want.
Open-source AI penetration testing tool to find and fix your app’s vulnerabilities.
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
Set up a personal VPN in the cloud
817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0
The authentication glue you need.
Daemon to ban hosts that cause multiple authentication errors
The Rogue Access Point Framework
Web path scanner
Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.
OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
🐶 A curated list of Web Security materials and resources.
Exploitation Framework for Embedded Devices
Scapy: the Python-based interactive packet manipulation program & library.
Detect open source vulnerabilities in real time with suggested fixes for quick remediation
Find, fix (and prevent!) known vulnerabilities in your code
SOC 2 Type II encrypted GitHub backups: repos, issues, PRs, LFS and more. Self-service restore, BYO storage, per-repo pricing
World's most tech-savvy GitHub backup, recovery, restore, migration & config management trusted by Fortune 500
Code scanning at ludicrous speed. Find bugs and reachable dependency vulnerabilities. Enforce standards on every commit
We help developers write clean code
Developer-first security platform that protects your code from both vulnerable and malicious dependencies
GuardRails provides continuous security feedback for modern development teams
Runtime Code Review
Automated GitHub backups so you can recover fast, stay compliant, and never lose a line of code
Dependency Automation service by Mend.io