P1kAju's Stars
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
knownsec/404StarLink
404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目
xinliangnote/go-gin-api
基于 Gin 进行模块化设计的 API 框架,封装了常用功能,使用简单,致力于进行快速的业务研发。比如,支持 cors 跨域、jwt 签名验证、zap 日志收集、panic 异常捕获、trace 链路追踪、prometheus 监控指标、swagger 文档生成、viper 配置文件解析、gorm 数据库组件、gormgen 代码生成工具、graphql 查询语言、errno 统一定义错误码、gRPC 的使用、cron 定时任务 等等。
ffffffff0x/Digital-Privacy
Information Protection & OSINT resources | 一个关于数字隐私搜集、保护、清理集一体的方案,外加开源信息收集(OSINT)对抗
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
slowmist/Knowledge-Base
Knowledge Base 慢雾安全团队知识库
ysrc/xunfeng
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
peewpw/Invoke-PSImage
Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
WhiteHSBG/JNDIExploit
对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改
lijiejie/swagger-exp
A Swagger API Exploit
feihong-cs/Java-Rce-Echo
Java RCE 回显测试代码
Ridter/redis-rce
Redis 4.x/5.x RCE
josephspurrier/goversioninfo
Golang Microsoft Windows File Properties/Version Info and Icon Resource Generator
knownsec/404StarLink-Project
Focus on promoting the evolution of tools in different aspects of security research.专注于推动安全研究各个领域工具化.(项目收录逐步迁移至 https://github.com/knownsec/404StarLink)
huoji120/DuckMemoryScan
检测绝大部分所谓的内存免杀马
cckuailong/reapoc
OpenSource Poc && Vulnerable-Target Storage Box.
burpheart/koko-moni
一个基于网络空间搜索引擎的攻击面管理平台,可定时进行资产信息爬取,及时发现新增资产,本项目聚合了 Fofa、Hunter、Quake、Zoomeye 和 Threatbook 的数据源,并对获取到的数据进行去重与清洗
knownsec/LSpider
LSpider 一个为被动扫描器定制的前端爬虫
canc3s/cSubsidiary
利用天眼查查询企业子公司
jas502n/CVE-2020-14882
CVE-2020–14882、CVE-2020–14883
c1y2m3/ATAttack
敌后侦察
TheKingOfDuck/Loki
一个轻量级Web蜜罐 - A Little Web Honeypot.🍯🍯🍯🐝🐝🐝
qboy0000/honeypotcollection
蜜罐集合
demonxian3/crack-yakpro-php
破解由 yakpro 混淆的PHP代码 (cracking PHP code obfuscation using yarkpo method)
P1kAju/httpx
httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
lcatro/etherum_rpc_steal
The Etherum RPC Steal Toolset and honeypot .以太坊"偷渡"漏洞利用和蜜罐工具集.
Jireh012/nps
一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发,可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面,内网dns解析、内网socks5代理等等……,并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal.
chaitin/xray_document
cyal1/bbrf-client
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices