diff --git a/README.md b/README.md
index 4cbfddd..807f749 100644
--- a/README.md
+++ b/README.md
@@ -1,10 +1,3 @@
-
-# Openfire Exploit Suite
-#### > **Openfire Exploit Suite** — A full-stack security testing toolkit (recon, PoC, Burp plugin, Metasploit modules) for identifying and exploiting Openfire admin console and setup weaknesses.
-#### > **Repository description (sidebar):**
-#### >> Openfire Exploit Suite — recon, PoC, Burp plugin, and Metasploit modules for Openfire vulnerabilities. Open‑source and responsibly shared.
-#### > **Suggested GitHub Topics (tags):** Openfire • Exploit • Metasploit • Burp Extension • PoC • Security Tool • Responsible Disclosure • CVE-2023-32315 • Recon Tool
-###
 [![Burp Suite](https://img.shields.io/badge/Burp%20Suite-Pro%20Edition-orange)]()
 [![Metasploit](https://img.shields.io/badge/Metasploit-Framework-blue)]()
 [![Python](https://img.shields.io/badge/Python-3.11-green)]()
@@ -12,12 +5,20 @@
 [![Shell](https://img.shields.io/badge/Bash-Scripts-informational)]()
 [![JetBrains](https://img.shields.io/badge/IDE-IntelliJ%20Ultimate-yellow)]()
 [![JDK](https://img.shields.io/badge/Java-JDK17-lightgrey)]()
-
+# Openfire Exploit Suite
+#### **Openfire Exploit Suite** — A full-stack security testing toolkit (recon, PoC, Burp plugin, Metasploit modules) for identifying and exploiting Openfire admin console and setup weaknesses.
+#### **Repository description (sidebar):**
+#### Openfire Exploit Suite — recon, PoC, Burp plugin, and Metasploit modules for Openfire vulnerabilities. Open‑source and responsibly shared.
+#### **Suggested GitHub Topics (tags):** Openfire • Exploit • Metasploit • Burp Extension • PoC • Security Tool • Responsible Disclosure • CVE-2023-32315 • Recon Tool
+###
 ## 📘 Documentation
-
 - [Exploit Workflow Guide](docs/Exploit_Workflow.md)
 - [Module Integration Manual](docs/Module_Integration.md)
 - [Recon Reporting Format](docs/Recon_Report_Format.md)
+- [Security Policy](docs/SECURITY.md)
+- [Contribution Guidelines](docs/CONTRIBUTING.md)
+- [Changelog](docs/CHANGELOG.md)
+- [Code of Conduct](docs/CODE_OF_CONDUCT.md)
 
 ## 🔥 Overview
 
@@ -152,8 +153,6 @@ For defenders and system administrators:
 - Monitor logs for unusual access to `admin-login.jsp` and lingering setup JSPs.
 - Use Burp Collaborator or Canary Tokens to trace callback attempts.
 
----
-
 ##  README Best Practices
 This README is designed to:
 - Provide an immediate project overview and quick setup instructions for new users.
diff --git a/docs/CHANGELOG.md b/docs/CHANGELOG.md
new file mode 100644
index 0000000..f54c09a
--- /dev/null
+++ b/docs/CHANGELOG.md
@@ -0,0 +1,23 @@
+
+
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [Unreleased]
+
+### Added
+- Initial implementation of Burp Suite extension with GUI tab and logging features
+- Integration of Metasploit exploit module template and development environment
+- Security, Contributing, and Code of Conduct documentation
+
+### Changed
+- Repository structure updated to accommodate multi-tool architecture
+
+## [0.1.0] - 2025-09-07
+
+### Added
+- Project initialization and tooling layout
\ No newline at end of file
diff --git a/docs/CODE_OF_CONDUCT.md b/docs/CODE_OF_CONDUCT.md
new file mode 100644
index 0000000..9a1a1cd
--- /dev/null
+++ b/docs/CODE_OF_CONDUCT.md
@@ -0,0 +1,51 @@
+
+
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our community a harassment-free experience for everyone, regardless of age, body size, visible or invisible disability, ethnicity, sex characteristics, gender identity and expression, level of experience, education, socio-economic status, nationality, personal appearance, race, caste, color, religion, or sexual identity and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming, diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment include:
+
+- Demonstrating empathy and kindness toward other people
+- Being respectful of differing opinions, viewpoints, and experiences
+- Giving and gracefully accepting constructive feedback
+- Accepting responsibility and apologizing to those affected by our mistakes, and learning from the experience
+- Focusing on what is best not just for us as individuals, but for the overall community
+
+Examples of unacceptable behavior include:
+
+- The use of sexualized language or imagery, and sexual attention or advances of any kind
+- Trolling, insulting or derogatory comments, and personal or political attacks
+- Public or private harassment
+- Publishing others’ private information, such as a physical or email address, without their explicit permission
+- Other conduct which could reasonably be considered inappropriate in a professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of acceptable behavior and will take appropriate and fair corrective action in response to any behavior that they deem inappropriate, threatening, offensive, or harmful.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when an individual is officially representing the community in public spaces.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be reported to the community leaders responsible for enforcement at [maintainer@rag.fish](mailto:maintainer@rag.fish). All complaints will be reviewed and investigated promptly and fairly.
+
+All community leaders are obligated to respect the privacy and security of the reporter of any incident.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 2.1, available at https://www.contributor-covenant.org/version/2/1/code_of_conduct.html.
+
+Community Impact Guidelines were inspired by [Mozilla’s code of conduct enforcement ladder](https://github.com/mozilla/diversity).
+
+[homepage]: https://www.contributor-covenant.org
+
+For answers to common questions about this code of conduct, see the FAQ at https://www.contributor-covenant.org/faq. Translations are available at https://www.contributor-covenant.org/translations.
\ No newline at end of file
diff --git a/docs/CONTRIBUTING.md  b/docs/CONTRIBUTING.md 
new file mode 100644
index 0000000..2b8130b
--- /dev/null
+++ b/docs/CONTRIBUTING.md 	
@@ -0,0 +1,54 @@
+
+
+# Contributing to openfire-exploit-suite
+
+Thanks for your interest in contributing to **openfire-exploit-suite**!
+
+This project is focused on ethical security research, responsible vulnerability testing, and advancing education in cybersecurity tools. Whether you're fixing a bug, improving documentation, or contributing a new scanner module, your help is appreciated.
+
+---
+
+## 🛡 Code of Conduct
+
+We expect all contributors to uphold high ethical standards and follow [HackerOne’s disclosure guidelines](https://www.hackerone.com/disclosure-guidelines) and [Bugcrowd’s code of conduct](https://www.bugcrowd.com/code-of-conduct/). This project does **not** tolerate:
+
+- Use of this tool for unauthorized testing.
+- Contributions that encourage or facilitate malicious behavior.
+- Disregard for data privacy or system integrity.
+
+White-hat mindset only. ✊
+
+---
+
+## 🛠️ How to Contribute
+
+1. **Fork** the repository
+2. Create a new branch:
+   ```bash
+   git checkout -b feature/your-feature-name
+   ```
+3. Make your changes and write clear commit messages.
+4. **Lint** and format your code (where applicable).
+5. Submit a **Pull Request** (PR) to `main` or the relevant branch.
+6. Be descriptive and include:
+   - What the PR does
+   - Why this change is needed
+   - Any potential caveats or limitations
+
+---
+
+## 📂 Module Structure
+
+If you are contributing a new exploit or scanner:
+- Place your module in the appropriate language directory (`burp-extension`, `metasploit-module`, etc.)
+- Add a corresponding test if possible.
+- Update documentation (`README.md`, inline comments, etc.)
+
+---
+
+## 💬 Getting Help
+
+Join our community on Discord: https://discord.gg/cCgVhpWc
+Or open an issue with the `question` label.
+
+Thanks for helping keep the internet safer.
\ No newline at end of file
diff --git a/docs/SECURITY.md b/docs/SECURITY.md
new file mode 100644
index 0000000..bd27d6b
--- /dev/null
+++ b/docs/SECURITY.md
@@ -0,0 +1,85 @@
+
+
+# Security Policy for Openfire Exploit Suite
+
+## 📅 Last Updated: September 2025
+
+---
+
+## 🛡 Purpose
+
+This repository, `openfire-exploit-suite`, provides responsibly disclosed and open-sourced exploit tools for research, red teaming, and educational purposes. We are committed to maintaining the highest standards of **ethical cybersecurity** while ensuring responsible usage and publication of vulnerability-related tools.
+
+---
+
+## 🔐 Scope of Security Measures
+
+- **White Hat Alignment**: This project aligns strictly with *white-hat ethical hacking* practices and aims to support defenders, researchers, and penetration testers.
+- **Zero Tolerance for Malicious Use**: Any misuse of this repository for unauthorized intrusion or malicious activity is strictly condemned and against our values.
+- **Supported Environments**: Testing is assumed to occur only in safe, **air-gapped**, **lab**, or **explicitly authorized** environments.
+
+---
+
+## 🧰 Tooling Safeguards
+
+- Metasploit modules are written for **controlled proof-of-concept (PoC)** usage.
+- Burp Suite extensions are designed with **operator transparency** and logging capabilities.
+- No automated worm-like behavior or mass exploitation functionality will ever be added.
+
+---
+
+## 🔍 Vulnerability Disclosure Policy
+
+We follow **coordinated vulnerability disclosure (CVD)** principles. If you:
+- Found a vulnerability in Openfire or our tools
+- Want to report concerns about tool usage
+
+Please contact us at: `security@rag.fish` (PGP key coming soon)
+
+---
+
+## 🧪 Testing & CI
+
+Security-related code contributions are:
+- Subject to **manual code review** by maintainers
+- Required to include **unit/integration tests**
+- Evaluated for abuse potential before being merged
+
+---
+
+## ✅ Defensive Alignment
+
+This suite helps defenders by:
+- Simulating known exploits in safe conditions
+- Aiding in building **WAF rules**, **SIEM signatures**, and **mitigation patterns**
+- Promoting awareness of real-world exploitation techniques
+
+---
+
+## 🤝 Compliance & License
+
+- All code is released under the [MIT License](../LICENSE).
+- Use is bound by local and international cybersecurity laws.
+- We do not encourage or support illegal activity of any kind.
+
+---
+
+## 🙏 Acknowledgements
+
+We stand on the shoulders of the infosec community. Inspired by:
+- Rapid7 Metasploit Framework
+- PortSwigger Burp Suite Ecosystem
+- CVE research and Open Source Security initiatives
+
+---
+
+## 📫 Contact & Feedback
+
+Found a bug, need help, or want to collaborate?
+
+📧 `security@rag.fish`  
+🌐 https://github.com/rag-fish/openfire-exploit-suite/discussions
+
+---
+
+_“Security is not a product, but a process.” — Bruce Schneier_
\ No newline at end of file