Master-0-0

Master-0-0's Stars

• Nocturne228/BP_Vis

  可视化作业-黑灰网络资产图谱

  Language:Python21

• Pizz33/nacos_vul

  Nacos身份验证绕过批量检测（QVD-2023-6271）+ 直接添加用户

  Language:Python598

• gh0stkey/HaE

  HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

  Language:Java3.3k256

• TheKingOfDuck/burpFakeIP

  服务端配置错误情况下用于伪造ip地址进行测试的Burp Suite插件

  Language:Java1.5k233

• HotBoy-java/PotatoTool

  这款工具是一款功能强大的网络安全综合工具，旨在为安全从业者、红蓝对抗人员和网络安全爱好者提供全面的网络安全解决方案。它集成了多种实用功能，包括解密、分析、扫描、溯源等，为用户提供了便捷的操作界面和丰富的功能选择。This tool offers robust network security solutions for professionals and enthusiasts. With features like decryption, analysis, scanning, and traceability, it provides a user-friendly interface and diverse functionality.

  97461

• jar-analyzer/jar-analyzer-v1-gui

  建议使用新版：https://github.com/jar-analyzer/jar-analyzer

  Language:Java897107

• Master-0-0/AWD-script

  AWD 批量攻击脚本

  Language:Python3

• Master-0-0/F-FILE

  快速收集沦陷机器的重要文件：F-FILE

  Language:Python2

• gentilkiwi/mimikatz

  A little tool to play with Windows security

  Language:C19.7k3.8k

• 24-2021/fscan-POC

  强化fscan的漏扫POC库

  46660

• Mr-xn/Penetration_Testing_POC

  渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

  Language:HTML6.7k2k

• Esonhugh/Attack_Code

  文章 Attack Code 的详细全文。安全和开发总是具有伴生属性，尤其是云的安全方向，本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.

  Language:Shell54040

• Phuong39/2022-HW-POC

  2022 护网行动 POC 整理

  585719

• Master-0-0/AWD-platform

  AWD靶场平台-裁判机

  Language:PHP8

• m4ll0k/SecretFinder

  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files

  Language:Python2.1k384

• OJ/gobuster

  Directory/File, DNS and VHost busting tool written in Go

  Language:Go10.6k1.2k

• pmiaowu/HostCollision

  用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统

  Language:Java60162

• rtcatc/Packer-Fuzzer

  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

  Language:Python2.9k298

• redtoolskobe/scaninfo

  fast scan for redtools

  Language:Go849111

• mysticbinary/weakpass

  个人收集的弱口令。

  13043

• fullhunt/spring4shell-scan

  A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities

  Language:Python660113

• Junehck/SQL-injection-bypass

  记录实战中的各种sql注入绕过姿势

  63268

• Guaang/s2-tool

  Struts2全版本漏洞检测工具18.09

  207

• b0bac/ApolloScanner

  自动化巡航扫描框架（可用于红队打点评估）

  Language:JavaScript696138

• CTF-MissFeng/jsForward

  解决web及移动端H5数据加密Burp调试问题

  Language:Go18331

• p0dalirius/ipsourcebypass

  This Python script can be used to bypass IP source restrictions using HTTP headers.

  Language:Python38054

• bit4woo/Fiora

  Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。

  Language:Java1.2k143

• fullhunt/log4j-scan

  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

  Language:Python3.4k739

• PowerShellEmpire/PowerTools

  PowerTools is a collection of PowerShell projects with a focus on offensive operations.

  Language:PowerShell2.1k813

• TheKingOfDuck/fuzzDicts

  You Know, For WEB Fuzzing ! 日站用的字典。

  Language:Python7.7k2.4k