BeingEasy

BeingEasy's Stars

• paralax/awesome-honeypots

  an awesome list of honeypot resources

  Language:Python8.5k382191.3k

• ffffffff0x/1earn

  ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

  Language:C++5.3k143101.2k

• reddelexc/hackerone-reports

  Top disclosed reports from HackerOne

  Language:Python3.8k14610706

• epinna/tplmap

  Server-Side Template Injection and Code Injection Detection and Exploitation Tool

  Language:Python3.7k8279668

• Threekiii/Awesome-POC

  一个漏洞POC知识库 目前数量 1000+

  3.5k722738

• H4ckForJob/dirmap

  An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

  Language:Python3.1k4977546

• nabla-c0d3/ssl-kill-switch2

  Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and macOS applications.

  Language:Objective-C3.1k115102466

• neargle/my-re0-k8s-security

  :atom: [WIP] 整理过去的分享，从零开始的Kubernetes攻防 🧐

  Language:Shell2.9k462451

• welk1n/JNDI-Injection-Exploit

  JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）

  Language:Java2.6k277723

• Ascotbe/Medusa

  :cat2:Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中

  Language:Python2.1k4451339

• tanc7/hacking-books

  1.8k778461

• EASY233/Finger

  一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具

  Language:Python1.6k1847160

• ibaiw/2023Hvv

  2023 HVV情报速递~

  1.5k445416

• 3gstudent/Pentest-and-Development-Tips

  A collection of pentest and development tips

  1.1k572305

• d3ckx1/Fvuln

  F-vuln（全称：Find-Vulnerability）是为了自己工作方便专门编写的一款自动化工具，主要适用于日常安全服务、渗透测试人员和RedTeam红队人员，它集合的功能包括：存活IP探测、开放端口探测、web服务探测、web漏洞扫描、smb爆破、ssh爆破、ftp爆破、mssql爆破等其他数据库爆破工作以及大量web漏洞检测模块。

  1.1k1625142

• feihong-cs/Java-Rce-Echo

  Java RCE 回显测试代码

  Language:Java994231177

• TideSec/FuzzScanner

  一个主要用于信息搜集的工具集，主要是用于对网站子域名、开放端口、端口指纹、c段地址、敏感目录等信息进行批量搜集。

  Language:Ruby994188207

• hack2fun/BypassAV

  Cobalt Strike插件，用于快速生成免杀的可执行文件

  8981617127

• myzxcg/RealBlindingEDR

  Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

  Language:C++8972012169

• javaweb-sec/javaweb-sec

  Language:Java845113160

• Echocipher/AUTO-EARN

  一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具

  Language:C7282011136

• orangetw/My-Presentation-Slides

  Collections of Orange Tsai's public presentation slides.

  70834177

• Getshell/Mshell

  Memshell-攻防内存马研究

  Language:Java62610485

• MD-SEC/MDPOCS

  猫蛋儿安全团队编写的poc能报就能打。企业微信、海康、Metabase、Openfire、泛微OA......

  Language:Python56117072

• kN6jq/gatherBurp

  一款burp插件,请看简介

  Language:Java43462524

• wy876/wiki

  漏洞文库 wiki.wy876.cn

  Language:HTML35614068

• chaitin/xray-plugins

  1196111

• zaproxy/fuzzdb-offensive

  ZAP add-on containing the web-backdoors and attack files from FuzzDB

  Language:PHP179012

• x-f1v3/Struts2_vulnerability_Environment

  Struts2漏洞环境

  6106

• Pear1y/JNDIExploit

  Optimization of feihong-cs/JNDIExploit project.

  Language:Java5112