MuQiYip's Stars
jespinhara/j-is-the-boss
ASkyeye/nTimetools
Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
doimet/AuxTools
图形化渗透测试辅助工具
d1nfinite/go-icmpshell
一款基于 gopacket 编写的 ICMP 反弹 shell 工具
achuna33/Memoryshell-JavaALL
收集内存马打入方式
pulumusita/PxFish
练手php写的xss钓鱼演示系统
yuyan-sec/RedisEXP
Redis 漏洞利用工具
biggerduck/RedTeamNotes
红队笔记
S3cur3Th1sSh1t/SharpImpersonation
A User Impersonation tool - via Token or Shellcode injection
wgpsec/ENScan
基于各大API的一款企业信息查询工具,为了更快速的获取企业的信息,省去收集的麻烦过程,web端于plat平台上线
UzJu/Cloud-Bucket-Leak-Detection-Tools
六大云存储,泄露利用检测工具
jweny/pocassist
傻瓜式漏洞PoC测试框架
find-sec-bugs/find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
pwntester/ysoserial.net
Deserialization payload generator for a variety of .NET formatters
JaneMandy/ThinkPHP_RCE
一款综合漏洞利用工具箱。
jx-sec/jxwaf
JXWAF是一款开源web应用防火墙
yanghaoi/CobaltStrike_CNA
使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。
LDrakura/Remote_ShellcodeLoader
远程shellcode加载&权限维持+小功能
le31ei/ctf_challenges
适用于一线安服的ctf培训题目,全docker环境一键启动
Integration-IT/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
volkandindar/agartha
A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations, while also converting HTTP requests to JavaScript for enhanced XSS exploitation.
m0sway/Yosakura
Red Team Tools 快速扫描端口,识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息。
ASTTeam/CodeQL
《深入理解CodeQL》Finding vulnerabilities with CodeQL.
inbug-team/SweetBabyScan
Red Tools 渗透测试
Lotus6/ThinkphpGUI
Thinkphp(GUI)漏洞利用工具,支持各版本TP漏洞检测,命令执行,getshell。
H4ckForJob/EmailAll
EmailAll is a powerful Email Collect tool — 一款强大的邮箱收集工具
ExpLangcn/WanLi
方便红队人员对目标站点进行安全检测,快速获取资产。It is convenient for red team personnel to conduct security detection on the target site and quickly obtain assets.
achuna33/MYExploit
OAExploit一款基于产品的一键扫描工具。
NHPT/FireEyeGoldCrystal
一个GitHub监控和信息收集工具,支持监控和收集CVE、免杀、漏洞利用等内置关键字和自定义关键字。
SD-XD/Catch-Browser
This is a crawler password tool