MENGJY

MENGJY's Stars

• vulhub/vulhub

  Pre-Built Vulnerable Environments Based on Docker-Compose

  Language:Dockerfile18.3k5751884.5k

• maurosoria/dirsearch

  Web path scanner

  Language:Python12.5k3085582.3k

• LandGrey/SpringBootVulExploit

  SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

  Language:Java5.9k9981.3k

• Tib3rius/AutoRecon

  AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

  Language:Python5.3k101172897

• Ridter/Intranet_Penetration_Tips

  2018年初整理的一些内网渗透TIPS，后面更新的慢，所以整理出来希望跟小伙伴们一起更新维护~

  4.5k15831.1k

• cobbr/Covenant

  Covenant is a collaborative .NET C2 framework for red teamers.

  Language:C#4.3k117308777

• TheRook/subbrute

  A DNS meta-query spider that enumerates DNS records, and subdomains.

  Language:Python3.4k13256656

• m0bilesecurity/RMS-Runtime-Mobile-Security

  Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

  Language:JavaScript2.7k6592384

• byt3bl33d3r/SILENTTRINITY

  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

  Language:Boo2.2k11088409

• wyzxxz/jndi_tool

  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具

  2k2619320

• mm0r1/exploits

  Pwn stuff.

  Language:PHP1.8k5813391

• Adminisme/ServerScan

  ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

  Language:Go1.6k338220

• TideSec/Mars

  Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等

  Language:Ruby1.3k2832280

• timwhitez/crawlergo_x_XRAY

  360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能

  Language:Python1.2k1627211

• basecamp/xip-pdns

  PowerDNS pipe backend adapter powering xip.io

  Language:Shell1.1k530181

• nsacyber/Mitigating-Web-Shells

  Guidance for mitigation web shells. #nsacyber

  Language:YARA972597204

• luodaoyi/kms-server

  a docker image for kms

  Language:Dockerfile925505326

• broken5/WebAliveScan

  对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描

  Language:Python9111710115

• Echocipher/AUTO-EARN

  一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具

  Language:C7342011135

• JoshuaMart/AutoRecon

  Simple shell script for automated domain recognition with some tools

  Language:Shell30115468

• joinsec/BadDNS

  Language:Rust2727149

• LangziFun/LangNetworkTopologys

  主机资产自动化扫描绘测

  Language:HTML2699356

• Slzdude/behinder_source

  Behinder3.0 Beta4 源码（Decompile and Fixed）

  Language:Java2066391

• rabbitmask/WeblogicScanLot

  WeblogicScanLot系列，Weblogic漏洞批量检测工具，V2.2

  Language:Python1838436

• wh1t3p1g/ysoserial

  forked from frohoff/ysoserial and added my own payloads.

  Language:Java1503016

• mhausenblas/k8s-sec

  Kubernetes Security: from Image Hygiene to Network Policies

  1438021

• iSafeBlue/fastjson-autotype-bypass-demo

  fastjson 1.2.68 版本 autotype bypass

  Language:Java1403116

• duasynt/xfrm_poc

  Linux kernel XFRM UAF poc (3.x - 5.x kernels)

  13311537

• k8gege/WinrmCmd

  WinrmCmd/WinrmShell ( Golang\PowerShell\Python)

  Language:Go333011

• ASkyeye/CVE-2020-11492

  Language:C++200