Sakura-501's Stars
pentestmonkey/php-reverse-shell
rapid7/metasploitable3
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
16667/Metasploitable-3-CTF
Metasploitable3 CTF Write-up
openwall/john
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
rebootuser/LinEnum
Scripted Local Linux Enumeration & Privilege Escalation Checks
maurosoria/dirsearch
Web path scanner
rmb122/rogue_mysql_server
A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.
u21h2/nacs
事件驱动的渗透测试扫描器 Event-driven pentest scanner
fnmsd/MySQL_Fake_Server
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
White-hua/Apt_t00ls
高危漏洞利用工具
threedr3am/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
k8gege/K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
SecWiki/windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
yaklang/yakit
Cyber Security ALL-IN-ONE Platform
tarunkant/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
knownsec/404StarLink
404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目
shadow1ng/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
n0b0dyCN/redis-rogue-server
Redis(<=5.0.5) RCE
007gzs/meeting
开源会议室预约小程序+Django服务端后台
PeiQi0/PeiQi-WIKI-Book
面向网络安全从业者的知识文库🍃
phith0n/code-breaking
Code-Breaking Puzzles
AmazingAng/WTF-Solidity
WTF Solidity 极简入门教程,供小白们使用。Now supports English! 官网: https://wtf.academy
vulhub/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
mo-xiaoxi/CTF_Web_docker
dockers for CTF_Web.
Ciphey/Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
rxrw/daily_morning
给别人家的女朋友发早安
wyzxxz/jndi_tool
JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具
AntSwordProject/AntSword-Loader
AntSword 加载器
i2ii/i
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF