777erp

777erp's Stars

• lemono0/FastJsonParty

  FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用

  Language:Python86099

• fdx-xdf/darkPulse

  darkPulse是一个用go编写的shellcode Packer，用于生成各种各样的shellcode loader，免杀火绒，360核晶等国内常见杀软。

  Language:Go765109

• Findomain/Findomain

  The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

  Language:Rust3.3k369

• HackerCalico/No_X_BOF

  Loading BOF & ShellCode without executable permission memory.

  Language:C++34363

• sqlsec/TuBi

  t00ls 每日签到脚本 整合了钉钉和邮件通知

  Language:Python4222

• ca3tie1/CrackSleeve

  破解CS4.0

  Language:Java16048

• oldboy21/RflDllOb

  Reflective DLL Injection Made Bella

  Language:C19638

• wux1an/wxapkg

  微信小程序反编译工具，.wxapkg 文件扫描 + 解密 + 解包工具

  Language:Go1.9k410

• emo-crab/observer_ward

  侦查守卫(observer_ward)Web应用和服务指纹识别工具

  Language:Rust1.3k135

• f3di006/vxRat

  Remote administration tool with native client

  Language:C#3220

• 2017403603/My_Net_Sniffer

  基于Jnetpcap的网络嗅探器（抓包程序）设计与实现

  Language:Java111

• gao79135/network-sniffer

  Language:Python4

• birdhan/SecurityProduct

  开源安全产品源码，IDS、IPS、WAF、蜜罐等

  947164

• smarttang/w3a_SOC

  元豚科技 - 基于日志安全分析做切入，做最好用的「云原生安全运维工作台」

  Language:Python295153

• al0ne/suricata-rules

  Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

  1.1k291

• C3ting/ARL

  ARL官方仓库备份项目+指纹添加工具：ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

  Language:Python134115

• ca01h/WebShell-Traffic-Dataset

  自建 WebShell 流量数据集

  Language:Zeek132

• SexyBeast233/SecDictionary

  实战沉淀字典

  1.2k156

• kyxiaxiang/Beacon_Source

  not a reverse-engineered version of the Cobalt Strike Beacon

  Language:C334150

• F6JO/RouteVulScan

  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件

  Language:Java1.1k82

• libaibaia/cloudSec

  云安全利用工具-云平台AK/SK-WEB利用工具，添加AK/SK自动检测资源，无需手动执行，支持云服务器、存储桶、数据库操作

  Language:Java45853

• mrknow001/API-Explorer

  API接口管理工具(目前内置微信公众号、微信小程序、企业微信、飞书、钉钉等)

  Language:Python49235

• MaorSabag/TrueSightKiller

  CPP AV/EDR Killer

  Language:C++35261

• charonlight/NacosExploitGUI

  Nacos漏洞综合利用GUI工具，集成了默认口令漏洞、SQL注入漏洞、身份认证绕过漏洞、反序列化漏洞的检测及其利用

  Language:Java93567

• G0mini/Jmc_Tools

  分享极梦C团队写的一些使用工具

  526

• jwilk/traversal-archives

  archive file samples for testing against directory traversal

  Language:Makefile13114

• tyranid/DotNetToJScript

  A tool to create a JScript file which loads a .NET v2 assembly from memory.

  Language:C#1.2k298

• elastic/examples

  Home for Elasticsearch examples available to everyone. It's a great way to get started.

  Language:Jupyter Notebook2.6k1.2k

• bytedance/Elkeid

  Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.

  Language:Go2.3k441

• bytedance/vArmor

  vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.

  Language:Go28330