SRW-OG's Stars
docmost/docmost
Docmost is an open-source collaborative wiki and documentation software. It is an open-source alternative to Confluence and Notion.
jokob-sk/NetAlertX
Network intruder and presence detector. Scans for devices connected to your network and alerts you if new and unknown devices are found.
login-securite/lsassy
Extract credentials from lsass remotely
wyzxxz/jndi_tool
JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具
lasting-yang/frida_dump
frida dump dex, frida dump so
spyboy-productions/CloakQuest3r
Uncover the true IP address of websites safeguarded by Cloudflare & Others
projectdiscovery/cloudlist
Cloudlist is a tool for listing Assets from multiple Cloud Providers.
seekbytes/IPA
GUI analyzer for deep-diving into PDF files. Detect malicious payloads, understand object relationships, and extract key information for threat analysis.
VirusTotal/yara-x
A rewrite of YARA in Rust.
LaurieWired/JADXecute
JADX-gui scripting plugin for dynamic decompiler manipulation
evild3ad/MemProcFS-Analyzer
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
projectdiscovery/nuclei-ai-extension
Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
howmp/reality
grs内网穿透工具通过reality协议隐藏特征
Offensive-Panda/ProcessInjectionTechniques
This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at the forefront of the field. It serves as a central repository of knowledge, offering in-depth exploration of various process injection techniques and methods used by adversaries.
safedv/RustiveDump
LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and remote file transmission.
AabyssZG/FindEverything
内网渗透过程中搜寻指定文件内容,从而找到突破口的一个小工具
AccentuSoft/LinkScope_Client
Repository for the LinkScope Client software.
0xrajneesh/Ethical-Hacking-Projects-for-beginners
Hands-on ethical hacking projects for beginners, covering network scanning, web app testing, password cracking, honeypots, Wi-Fi auditing, phishing, and SQL injection.
lizhianyuguangming/TomcatScanPro
tomcat自动化漏洞扫描利用工具,支持批量弱口令检测、后台部署war包getshell、CVE-2017-12615 文件上传、CVE-2020-1938/CNVD-2020-10487 文件包含
K-7H7l/Jeecg_Tools
本工具为jeecg框架漏洞利用工具非jeecg-boot!
stivenhacker/EchoStrike
Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operations.
kulkansecurity/gitxray
A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.
sspsec/Spear
基于GO的渗透工具箱框架
BountySecurity/gbounty
GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identify potential vulnerabilities in web applications.
securitycipher/daily-bugbounty-writeups
This repository contains Bug Bounty writeups
al0ne/cloud-audit
cloud-audit (云安全审计助手)是检测公有云厂商AK/SK泄漏被利用的工具,通过定期调用云平台接口审计日志,基于异常行为/黑特征/基线发现疑似入侵行为。
dinosn/top_400_passwords
Top 400 passwords as per HaveIBeenPwned
topmrmt/decryption-encryption
这是一款加解密工具适用于勒索病毒应急演练的展示
y0k4i-1337/frida4burp
A set of scripts to facilitate HTTP interception on mobile apps
ComplexSecurity/Burp-Suite-Exam