ShanRen995

ShanRen995's Stars

• TonyNPham/GodzillaPlugin-Suo5-MemProxy

  一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理

  24729

• sulab999/AppMessenger

  一款适用于以APP病毒分析、APP漏洞挖掘、APP开发、HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、鸿蒙)辅助分析工具

  94285

• c0ny1/passive-scan-client

  Burp被动扫描流量转发插件

  Language:Java1.4k170

• CnHack3r/Goby_PoC_RedTeam

  致力于收集Goby PoC，请勿用于非法操作，后果自负。

  24735

• ethushiroha/JavaAgentTools

  用Java agent实现内存马等功能

  Language:Java18528

• lwch/natpass

  🔥居家办公，远程开发神器

  Language:Go4.2k480

• Tsojan/TsojanScan

  An integrated BurpSuite vulnerability detection plug-in.

  1.1k60

• feihong-cs/memShell

  FilterBased/ServletBased in memory shell for Tomcat and some other middlewares

  Language:Java35561

• feihong-cs/Java-Rce-Echo

  Java RCE 回显测试代码

  Language:Java995177

• Tas9er/ByPassBehinder4J

  冰蝎Java WebShell自动化免杀生成

  76798

• xiao-zhu-zhu/noterce

  一种另辟蹊径的免杀执行系统命令的木马

  Language:Go49158

• wgpsec/ENScan_GO

  一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。

  Language:Go3.1k297

• lal0ne/vulnerability

  收集、整理、修改互联网上公开的漏洞POC

  Language:Go819138

• netdata/netdata

  Architected for speed. Automated for easy. Monitoring and troubleshooting, transformed!

  Language:C71.8k5.9k

• mrknow001/BurpAppletPentester

  SessionKey解密插件

  Language:Java20915

• tongcheng-security-team/NextScan

  飞刃是一套完整的企业级黑盒漏洞扫描系统，集成漏洞扫描、漏洞管理、扫描资产、爬虫等服务。 拥有强大的漏洞检测引擎和丰富的插件库，覆盖多种漏洞类型和应用程序框架。

  Language:JavaScript1.1k105

• esrrhs/pingtunnel

  Pingtunnel is a tool that send TCP/UDP traffic over ICMP

  Language:Go3.1k530

• liamg/traitor

  :arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

  Language:Go6.7k578

• ChatGPTNextWeb/ChatGPT-Next-Web

  A cross-platform ChatGPT/Gemini UI (Web / PWA / Linux / Win / MacOS). 一键拥有你自己的跨平台 ChatGPT/Gemini 应用。

  Language:TypeScript76.2k59k

• HXSecurity/DongTai-agent-java

  Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

  Language:Java681192

• HXSecurity/DongTai

  Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components through passive instrumentation. It is particularly suitable for use in the testing phase of the development pipeline.

  Language:Python1.2k145

• RowTeam/SharpDecryptPwd

  SharpDecryptPwd source, To Decrypt Navicat,Xmanager,Filezilla,Foxmail,WinSCP,etc

  Language:C#725110

• guchangan1/All-Defense-Tool

  本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms、OA漏洞利用工具，爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。

  5.5k1.1k

• brendan-rius/c-jwt-cracker

  JWT brute force cracker written in C

  Language:C2.4k259

• burpheart/koko-moni

  一个基于网络空间搜索引擎的攻击面管理平台，可定时进行资产信息爬取，及时发现新增资产，本项目聚合了 Fofa、Hunter、Quake、Zoomeye 和 Threatbook 的数据源，并对获取到的数据进行去重与清洗

  43522

• safe6Sec/PentestDB

  各种数据库的利用姿势

  989191

• xforcered/Windows_LPE_AFD_CVE-2023-21768

  LPE exploit for CVE-2023-21768

  41664

• ydnzol/memshell

  Tomcat 冰蝎内存马。

  Language:Java21223

• TideSec/BypassAntiVirus

  远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

  Language:XSLT4.6k1.2k

• byt3bl33d3r/SILENTTRINITY

  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

  Language:Boo2.2k403