Eachann's Stars
JannisKirschner/Horn3t
Powerful Visual Subdomain Enumeration at the Click of a Mouse
lijiejie/subDomainsBrute
A fast sub domain brute tool for pentesters
HXSecurity/DongTai-engine
This repository has been merged into https://github.com/HXSecurity/DongTai. DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, data packet replay processing, etc.
praetorian-inc/gokart
A static analysis tool for securing Go code
BeichenDream/Godzilla
哥斯拉
cSploit/android
cSploit - The most complete and advanced IT security professional toolkit on Android.
Ekultek/WhatWaf
Detect and bypass web application firewalls and protection systems
LyleMi/Learn-Web-Hacking
Study Notes For Web Hacking / Web安全学习笔记
FeeiCN/GSIL
GitHub Sensitive Information Leakage(GitHub敏感信息泄露监控)
lijiejie/BBScan
A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers
jwasham/coding-interview-university
A complete computer science study plan to become a software engineer.
saucer-man/penetration-script
渗透测试脚本,为防忘记开设(垃圾桶)
puma/puma
A Ruby/Rack web server built for parallelism
iSecurity-Club/Pentest-Methodologies
渗透测试方法论
Tencent/weui
A UI library by WeChat official design team, includes the most useful widgets/modules in mobile web applications.
robotshell/magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
greenbone/openvas-scanner
This repository contains the scanner component for Greenbone Community Edition.
j3ssie/osmedeus
A Workflow Engine for Offensive Security
scipag/vulscan
Advanced vulnerability scanning with Nmap NSE
Echocipher/AUTO-EARN
一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
zhzyker/vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
ysrc/xunfeng
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
r3curs1v3-pr0xy/vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
linkedin/qark
Tool to look for several security related Android application vulnerabilities
vincentcox/StaCoAn
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
m0bilesecurity/RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime
possib1e/OneDragon
OneDragon 安全圈一条龙服务,全自动化挖洞,助力挖SRC的赏金猎人白帽子,一键实现子域名扫描,全端口扫描,目录扫描,漏洞扫描。
iceyhexman/onlinetools
在线cms识别|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..
k8gege/Ladon
Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。Ladon 12.2内置262个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息,高危漏洞检测16个含MS17010、Zimbra、Exchange
s7ckTeam/LeakFinder
LeakFinder(觅露)为s7ck Team 红队云武器库F-Box里的一款信息泄露浏览搜集浏览器插件。