SRW-OG's Stars
ginuerzh/gost
GO Simple Tunnel - a simple tunnel written in golang
rshipp/awesome-malware-analysis
Defund the Police.
horsicq/Detect-It-Easy
Program for determining types of files for Windows, Linux and MacOS.
NVIDIA/garak
the LLM vulnerability scanner
vaib25vicky/awesome-mobile-security
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
xuchengsheng/wx-dump-4j
一款基于Java开发的微信数据分析工具。
netero1010/EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
swisskyrepo/GraphQLmap
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
CuriousLearnerDev/Online_tools
该工具是一个集成了非常多渗透测试工具,类似软件商城的工具可以进行工具下载,工具的更新,工具编写了自动化的安装脚本,不用担心工具跑不起来。
wh1t3zer/SpringBootVul-GUI
一个半自动化springboot打点工具,内置目前springboot所有漏洞
qi4L/qscan
轻量化全方位扫描器
moyuwa/ApkCheckPack
apk文件加固特征检查工具,汇总收集已知特征和手动收集大家提交的app加固特征,目前总计约170条特征,支持40个厂商的加固检测,欢迎大家提交无法识别的app
BBD-YZZ/week-passwd
FTP,SSH,MYSQL,MSSQL等弱口令爆破工具!
ImCoriander/ZeroEye
自动化找白文件,用于扫描 EXE 文件的导入表,列出导入的DLL文件,并筛选出非系统DLL,符合条件的文件将被复制到特定的 X64 或 X86 文件夹
Chanzi-keji/chanzi
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompile, custom rule, and is compatible with the technology stacks of Servlet&filter, Spring,struts,Dubbo,Thrift, jax-rs,jax-ws,JFinal,Netty,MyBatis,and JSP.
teamdArk5/FscanParser
一个用于处理fsacn输出结果的图形化工具(尤其面对大量资产的fscan扫描结果做输出优化,让你打点快人五步!!!)
Maldev-Academy/EmbedPayloadInPng
Embed a payload inside a PNG file
YouChenJun/CheckCdn
精确检查IP是否为CDN节点的工具
xk11z/unauthorized
常见的未授权漏洞检测
P001water/P1soda
一款渗透场景下的内网漏洞自动化扫描工具
helviojunior/knowsmore
KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).
vulnerability-lookup/vulnerability-lookup
Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD).
wjlin0/riverPass
riverPass 是一个用Go编写的瑞数WAF绕过工具。它利用了WebSocket协议,将请求发送的自身浏览器中,从而绕过了瑞数WAF的检测。
ribbondz/rsv
A command-line tool written in Rust for analyzing CSV, TXT, and Excel files.
murat-exp/Domain-Checker-Tool
A high-performance Go-based tool for checking the availability and responsiveness of domains, utilizing both HTTP requests and browser automation for comprehensive analysis.
ait-aecid/logdata-anomaly-miner
This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.
nikhilpatel4/FUZZ
This repository contains the best fuzzing wordlist files
ChinaRan0/padaili
爬代理
bladedream123/smartcrypto_V1.0-decode-crypto
一键报文解码,HVV,蓝队防守利器
0xgh057r3c0n/ObFuscate
ObFuscate - is a tool designed to assist security researchers and penetration testers in bypassing Web Application Firewalls (WAFs) by leveraging obfuscation techniques. It injects payloads into URL parameters and POST data, testing whether the WAF can detect and block the payload.