2583560975

2583560975's Stars

• wy876/POC

  收集整理漏洞EXP/POC,大部分漏洞来源网络，目前收集整理了1400多个poc/exp，长期更新。

  4.6k970

• outlaws-bai/Galaxy

  一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.

  Language:Java80659

• R4gd0ll/I-Wanna-Get-All

  OA漏洞利用工具

  1.2k85

• tarihub/blackjump

  JumpServer 堡垒机未授权综合漏洞利用, Exploit for CVE-2023-42442 / CVE-2023-42820 / RCE 2021

  Language:Python22423

• API-Security/APIKit

  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

  Language:Java2k173

• xmendez/wfuzz

  Web application fuzzer

  Language:Python6k1.4k

• TheKingOfDuck/fuzzDicts

  You Know, For WEB Fuzzing ! 日站用的字典。

  Language:Python7.7k2.4k

• hy0jer/HostScan

  一款支持检测host头攻击的burp suite插件

  Language:Java515

• eeeeeeeeee-code/e0e1-wx

  微信小程序辅助渗透-自动化

  Language:Python1.1k164

• RUB-NDS/PRET

  Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

  Language:Python4k615

• sting8k/BurpSuite_403Bypasser

  Burpsuite Extension to bypass 403 restricted directory

  Language:Python1.6k204

• maurosoria/dirsearch

  Web path scanner

  Language:Python12.4k2.3k

• fatedier/frp

  A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

  Language:Go89k13.6k

• 0x7eTeam/0x7eTeamTools

  javafx练习,JS接口提取,漏洞检测

  Language:Java21813

• syxxhacker/music-player

  Language:CSS1

• HimmelAward/Goby_POC

  在公网收集的gobypoc+部分自己加的poc

  1067

• 0xHJK/dumpall

  一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出

  Language:Python1.4k147

• Threezh1/JSFinder

  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.

  Language:Python2.7k407

• infosec-au/altdns

  Generates permutations, alterations and mutations of subdomains and then resolves them

  Language:Python2.4k448

• chenjj/CORScanner

  🎯 Fast CORS misconfiguration vulnerabilities scanner

  Language:Python1.1k180

• 0verSp4ce/PoCBox

  PoCBox - Vulnerability Test Aid Platform

  Language:JavaScript954170

• nomi-sec/PoC-in-GitHub

  📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

  6.6k1.2k

• Mr-xn/Penetration_Testing_POC

  渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

  Language:HTML6.7k2k

• duyet/bruteforce-database

  Bruteforce database

  1.5k574

• zxcvbn001/password_brute_dictionary

  口令爆破字典，有键盘组合字典、拼音字典、字母与数字混合这三种类型

  Language:Python1.2k323

• smxiazi/xia_sql

  xia SQL (瞎注) burp 插件 ，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。

  Language:Java98976

• tomnomnom/waybackurls

  Fetch all the URLs that the Wayback Machine knows about for a domain

  Language:Go3.6k482

• pingc0y/URLFinder

  一款快速、全面、易用的页面信息提取工具，可快速发现和提取页面中的JS、URL和敏感信息。

  Language:Go2.7k204

• wgpsec/ENScan_GO

  一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。

  Language:Go3.2k309

• bytedance/Elkeid

  Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.

  Language:Go2.3k448