GYLover's Stars
BC-SECURITY/Empire
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
abc123info/BlueTeamTools
蓝队分析研判工具箱,功能包括内存马反编译分析、各种代码格式化、网空资产测绘功能、溯源辅助、解密冰蝎流量、解密哥斯拉流量、解密Shiro/CAS/Log4j2的攻击payload、IP/端口连接分析、各种编码/解码功能、蓝队分析常用网址、java反序列化数据包分析、Java类名搜索、Fofa搜索、Hunter搜索等。
adysec/RingQ
一款后渗透免杀工具,助力每一位像我这样的脚本小子快速实现免杀,支持bypass 360 火绒 Windows Defender
KimJun1010/inspector
IDEA代码审计辅助插件(深信服深蓝实验室天威战队强力驱动)
Autumn-27/ScopeSentry
ScopeSentry-网络空间测绘、子域名枚举、端口扫描、敏感信息发现、漏洞扫描、分布式节点
DeEpinGh0st/WindowsBaselineAssistant
Windows安全基线核查加固助手
BlackINT3/OpenArk
The Next Generation of Anti-Rookit(ARK) tool for Windows.
eslerm/nvd-api-client
NVD API 2.0 client for CVE information
eslerm/nvd-mirror
A mirror of CVE json provided by NVD's API 2.0.
xiaokp7/TongdaOATool
通达OA漏洞检测工具
TideSec/TscanPlus
一款综合性网络安全检测和运维工具,旨在快速资产发现、识别、检测,构建基础资产信息库,协助甲方安全团队或者安全运维人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
hiddify/hiddify-next
Multi-platform auto-proxy client, supporting Sing-box, X-ray, TUIC, Hysteria, Reality, Trojan, SSH etc. It’s an open-source, secure and ad-free.
YulinSec/ChatGPTScanner
A white box code scan powered by ChatGPT
rustdesk/rustdesk
An open-source remote desktop application designed for self-hosting, as an alternative to TeamViewer.
ropnop/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
FunnyWolf/pystinger
Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具
Daybr4ak/C2ReverseProxy
一款可以在不出网的环境下进行反向代理及cs上线的工具
java-decompiler/jd-gui
A standalone Java Decompiler GUI
GhostTroops/scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
ExpLangcn/NucleiTP
自动整合全网Nuclei的漏洞POC,实时同步更新最新POC!
djytmdj/Tool_Summary
网络安全测试工具汇总,包含漏洞库、漏洞利用工具、漏洞扫描工具、密码读取工具、中间件利用工具、内网渗透工具。cs、burp、浏览器插件工具、字典等
knownsec/404StarLink
404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目
sule01u/SBSCAN
SBSCAN是一款专注于spring框架的渗透测试工具,可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive information/unauthorized for specified sites and scan and validate spring related vulnerabilities]
de4dot/de4dot
.NET deobfuscator and unpacker.
ki9mu/ARL-plus-docker
基于ARL-V2.6.2修改后的版本
whwlsfb/SpringSpider
Spring Actuator端点的BurpSuite被动扫描插件。
gchq/CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
MrWQ/vulnerability-paper
收集的文章 https://mrwq.github.io/tools/paper/
moonD4rk/HackBrowserData
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
djytmdj/Network-security-study-notes
主要记录网络安全学习笔记,包含WEB安全、提权、APP渗透、内网渗透、横向移动、红队、工具学习等