Alan-Hacker

Alan-Hacker's Stars

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP60.8k1.9k27624.1k

• alist-org/alist

  🗂️A file list/WebDAV program that supports multiple storages, powered by Gin and Solidjs. / 一个支持多存储的文件列表/WebDAV程序，使用 Gin 和 Solidjs。

  Language:Go42.9k1953.6k5.5k

• alibaba/arthas

  Alibaba Java Diagnostic Tool Arthas/Alibaba Java诊断利器Arthas

  Language:Java36k1.1k2.1k7.5k

• gchq/CyberChef

  The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

  Language:JavaScript30.3k3921k3.4k

• hashcat/hashcat

  World's fastest and most advanced password recovery utility

  Language:C22k5122.1k3k

• fortra/impacket

  Impacket is a collection of Python classes for working with network protocols.

  Language:Python13.9k3779803.6k

• gophish/gophish

  Open-Source Phishing Toolkit

  Language:Go12.2k3602.9k2.4k

• brannondorsey/wifi-cracking

  Crack WPA/WPA2 Wi-Fi Routers with Airodump-ng and Aircrack-ng/Hashcat

  11.6k37101.1k

• Momo707577045/m3u8-downloader

  m3u8 视频在线提取工具

  Language:JavaScript6.2k581451.2k

• CodingGay/BlackDex

  BlackDex is an Android unpack(dexdump) tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phone or emulator, you can unpack APK File in several seconds.

  Language:C++5.9k1021281.3k

• AdminTest0/SharpWxDump

  微信客户端取证，可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录))；支持获取多用户信息，不定期更新新版本偏移，目前支持所有新版本、正式版本

  Language:C#4.3k3768613

• WithSecureLabs/drozer

  The Leading Security Assessment Framework for Android.

  Language:Python4.1k182326790

• threedr3am/learnjavabug

  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。

  Language:Java2.6k756496

• shmilylty/netspy

  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）

  Language:Go2k1912214

• dqzg12300/fridaUiTools

  frida工具的缝合怪

  Language:Python1.8k3461401

• dperson/samba

  Samba docker container

  Language:Shell1.6k37399525

• Schira4396/VcenterKiller

  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webshell，命令执行或者上传公钥使用SSH免密连接

  Language:Go1.4k1514167

• threedr3am/JSP-WebShells

  Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势

  Language:Java1.4k222325

• Tsojan/TsojanScan

  An integrated BurpSuite vulnerability detection plug-in.

  1.2k156666

• n0b0dyCN/redis-rogue-server

  Redis(<=5.0.5) RCE

  Language:C1k75196

• halfkiss/ZjDroid

  Android app dynamic reverse tool based on Xposed framework.

  Language:Java1k730627

• NickstaDB/SerializationDumper

  A tool to dump Java serialization streams in a more human readable form.

  Language:Java1k715125

• vaycore/OneScan

  OneScan 是一款用于递归目录扫描的 BurpSuite 插件

  Language:Java826103438

• linshaoSec/WaterExp

  WaterExp:面向安服仔的 水报告模板和工具

  Language:Python6577463

• aeverj/NimShellCodeLoader

  免杀，bypassav，免杀框架，nim，shellcode，使用nim编写的shellcode加载器

  Language:C6471312119

• r00tSe7en/Flash-Pop

  Flash钓鱼弹窗优化版

  Language:HTML633114178

• teamssix/container-escape-check

  docker container escape check || Docker 容器逃逸检测

  Language:Shell57710570

• BishopFox/sliver-gui

  A Sliver GUI Client

  Language:TypeScript2939031

• yuyan-sec/Doraemon

  渗透辅助 BurpSuite 小插件

  22341110

• AugustineFulgur/PackFilling

  基于selenium的无脑绕前端加密表单爆破工具 开源 欢迎提交脚本

  Language:Python42101