HB666666's Stars
top-think/think
ThinkPHP Framework ——十年匠心的高性能PHP框架
nsf/gocode
An autocompletion daemon for the Go programming language
claudiouzelac/rootkit.com
Mirror of users section of rootkit.com
antonioCoco/SharPyShell
SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
0ctDay/encrypt-decrypt-vuls
加解密逻辑漏洞靶场
pingc0y/URLFinder
一款快速、全面、易用的页面信息提取工具,可快速发现和提取页面中的JS、URL和敏感信息。
Threezh1/JSFinder
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
trustedsec/nps_payload
This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several different sources. Written by Larry Spohn (@Spoonman1091) Payload written by Ben Mauch (@Ben0xA) aka dirty_ben
lemonlove7/EHole_magic
EHole(棱洞)魔改。可对路径进行指纹识别;支持识别出来的重点资产进行漏洞检测(支持从hunter和fofa中提取资产)支持对ftp服务识别及爆破
EdgeSecurityTeam/EHole
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
outlaws-bai/Galaxy
Burp插件,通过自定义 hook 自动解密加密报文,并支持联动 sqlmap、xray 等,让你测试加密报文时像明文一样简单。 The Burp plugin automatically decrypts encrypted messages through custom hooks and supports linkage with sqlmap, xray, etc., making you as simple as plain text when testing encrypted messages.
f0ng/autoDecoder
Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。
danielbohannon/Invoke-Obfuscation
PowerShell Obfuscator
test502git/awvs14-scan
针对 Acunetix AWVS扫描器开发的批量扫描脚本,支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项,支持联动xray、burp、w13scan等被动批量
yanxiu0614/subdomain3
A new generation of tool for discovering subdomains( ip , cdn and so on)
Q2h1Cg/dnsbrute
a fast domain brute tool
alibaba/arthas
Alibaba Java Diagnostic Tool Arthas/Alibaba Java诊断利器Arthas
blackhat-go/bhg
Code samples for No Starch Press Black Hat Go
fatih/vim-go
Go development plugin for Vim
mikesiko/PracticalMalwareAnalysis-Labs
Binaries for the book Practical Malware Analysis
vic4key/CFF_VExtension
VExtension for NTCore Explorer Suite aka CFF Explorer
moonD4rk/HackBrowserData
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
the-xentropy/xencrypt
A PowerShell script anti-virus evasion tool
SecWiki/windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
bigb0sss/RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops
wpscanteam/wpscan
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
lijiejie/BBScan
A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers
GhostPack/Rubeus
Trying to tame the three-headed dog.
flipkart-incubator/Astra
Automated Security Testing For REST API's
inonshk/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.