VegyChick

VegyChick's Stars

• ffuf/ffuf

  Fast web fuzzer written in Go

  Language:Go13k1595221.3k

• paralax/awesome-honeypots

  an awesome list of honeypot resources

  Language:Python8.8k384191.3k

• s0md3v/Arjun

  HTTP parameter discovery suite.

  Language:Python5.4k87149803

• riramar/Web-Attack-Cheat-Sheet

  Web Attack Cheat Sheet

  4.2k1097645

• lc/gau

  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

  Language:Go4.1k49106462

• EdgeSecurityTeam/EHole

  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具

  Language:Go3.2k4279404

• 0dayCTF/reverse-shell-generator

  Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

  Language:JavaScript3.1k5946662

• Qianlitp/crawlergo

  A powerful browser crawler for web vulnerability scanners

  Language:Go2.9k55133485

• joaomatosf/jexboss

  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

  Language:Python2.4k9560638

• bytedance/Elkeid

  Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.

  Language:Go2.3k48282448

• cyberark/KubiScan

  A tool to scan Kubernetes cluster for risky permissions

  Language:Python1.3k2932130

• c0ny1/FastjsonExploit

  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）

  Language:Java1.3k158173

• crifan/android_app_security_crack

  安卓应用的安全和破解

  Language:Makefile1.3k367211

• P1-Team/AlliN

  A flexible scanner

  Language:Python1.2k2226156

• fofapro/Hosts_scan

  这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。

  Language:Python1.1k103157

• knownsec/Kunyu

  Kunyu, more efficient corporate asset collection

  Language:Python1k1545138

• s7ckTeam/Glass

  Glass是一款针对资产列表的快速指纹识别工具，通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹，也可针对IP/IP段或资产列表进行快速的指纹识别。

  Language:Python9851529114

• c0ny1/captcha-killer

  burp验证码识别接口调用插件

  Language:Java8851625121

• broken5/bscan

  864821104

• monkeylord/XServer

  A Xposed Module for Android Penetration Test, with NanoHttpd.

  Language:JavaScript7772931183

• istio/istio.io

  Source for the istio.io site

  Language:HTML7641132.2k1.5k

• cyberark/kubeletctl

  A client for kubelet

  Language:Go752281583

• Metarget/cloud-native-security-book

  《云原生安全：攻防实践与体系构建》资料仓库

  Language:Go731912130

• G-Security-Team/JS-Forward

  前端参数加密渗透测试通用解决方案

  Language:Python5023771

• TEag1e/BurpCollector

  通过BurpSuite来构建自己的爆破字典，可以通过字典爆破来发现隐藏资产。

  Language:Python4929178

• bigsizeme/fastjson-check

  fastjson 被动扫描、不出网payload生成

  3678331

• dyboy2017/TScan

  TScan 提供了CMS指纹识别、端口扫描、旁站信息、信息泄漏等功能，期许在最短的时间辅助安全人员在渗透前做好充分的信息搜集

  Language:Python2857348

• oldkingcone/slopShell

  the only php webshell you need.

  Language:PHP2229339

• 0xhunya/yuhScan

  web目录快速扫描工具

  Language:Go741210

• fuzz-security/MobileApp-Pentest-Cheatsheet

  The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

  712018