Dido1960's Stars
TheKingOfDuck/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
Dliv3/Venom
Venom - A Multi-hop Proxy for Penetration Testers
FeeiCN/ESD
Enumeration sub domains(枚举子域名)
FeeiCN/GSIL
GitHub Sensitive Information Leakage(GitHub敏感信息泄露监控)
xinyu2428/TDOA_RCE
通达OA综合利用工具
shadow1ng/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
s7ckTeam/Glass
Glass是一款针对资产列表的快速指纹识别工具,通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹,也可针对IP/IP段或资产列表进行快速的指纹识别。
fatedier/frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
Adminisme/ServerScan
ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
AlessandroZ/LaZagne
Credentials recovery project
idlefire/ew
内网穿透(跨平台)
snail007/goproxy
🔥 Proxy is a high performance HTTP(S) proxies, SOCKS5 proxies,WEBSOCKET, TCP, UDP proxy server implemented by golang. Now, it supports chain-style proxies,nat forwarding in different lan,TCP/UDP port forwarding, SSH forwarding.Proxy是golang实现的高性能http,https,websocket,tcp,socks5代理服务器,支持内网穿透,链式代理,通讯加密,智能HTTP,SOCKS5代理,黑白名单,限速,限流量,限连接数,跨平台,KCP支持,认证API。
EddieIvan01/iox
Tool for port forwarding & intranet proxy
artsploit/yaml-payload
A tiny project for generating SnakeYAML deserialization payloads
artsploit/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
k8gege/PasswordDic
2011-2019年Top100弱口令密码字典 Top1000密码字典 服务器SSH/VPS密码字典 后台管理密码字典 数据库密码字典 子域名字典
T-Jinhao/Scanner
简易的web扫描器
NS-Sp4ce/CVE-2021-21972
CVE-2021-21972 Exploit
frohoff/marshalsec
macrozheng/mall
mall项目是一套电商系统,包括前台商城系统及后台管理系统,基于SpringBoot+MyBatis实现,采用Docker容器化部署。 前台商城系统包含首页门户、商品推荐、商品搜索、商品展示、购物车、订单流程、会员中心、客户服务、帮助中心等模块。 后台管理系统包含商品管理、订单管理、会员管理、促销管理、运营管理、内容管理、统计报表、财务管理、权限管理、设置等模块。
Raysmond/SpringBlog
A simple blogging system implemented with Spring Boot + Hibernate + MySQL + Bootstrap4.
kost/dvcs-ripper
Rip web accessible (distributed) version control systems: SVN/GIT/HG...
BishopFox/GadgetProbe
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
obheda12/GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
w-digital-scanner/w13scan
Passive Security Scanner (被动式安全扫描器)
Qianlitp/crawlergo
A powerful browser crawler for web vulnerability scanners
mm0r1/exploits
Pwn stuff.
tom0li/collection-document
Collection of quality safety articles. Awesome articles.
welk1n/JNDI-Injection-Bypass
Some payloads of JNDI Injection in JDK 1.8.0_191+
LandGrey/SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list