YueXiaZouLiShang's Stars
zhuifengshaonianhanlu/pikachu
一个好玩的Web安全-漏洞测试平台
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
projectdiscovery/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
projectdiscovery/interactsh
An OOB interaction gathering server and client library
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Ph33rr/attack
Ph33rr/Tools-Tips
Wh04m1001/DFSCoerce
achuna33/MYExploit
OAExploit一款基于产品的一键扫描工具。
sry309/PwdBUD
一款SRC密码生成工具,尝试top字典无果后,可以根据域名、公司名等因素来生成特定的字典
shadowabi/AutoDomain
自动提取主域名/IP,并调用fofa、quake、hunter等网络资产测绘系统搜集子域名,可配合指纹扫描工具达到快速资产整理
mandatoryprogrammer/xsshunter-express
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
nahamsec/nahamsec.training
The labs for my Udemy course (https://www.udemy.com/course/intro-to-bug-bounty-by-nahamsec)
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
ssl/ezXSS
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
theinfosecguy/QuickXSS
Automating XSS using Bash
brevityinmotion/goodfaith
Stay within program scope
projectdiscovery/uncover
Quickly discover exposed hosts on the internet using multiple search engines.
gedoor/legado
Legado 3.0 Book Reader with powerful controls & full functions❤️阅读3.0, 阅读是一款可以自定义来源阅读网络内容的工具,为广大网络文学爱好者提供一种方便、快捷舒适的试读体验。
six2dez/OneListForAll
Rockyou for web fuzzing
OJ/gobuster
Directory/File, DNS and VHost busting tool written in Go
mazen160/bfac
BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source code.
pmiaowu/BurpShiroPassiveScan
一款基于BurpSuite的被动式shiro检测插件
gh0stkey/HaE
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
CHYbeta/Code-Audit-Challenges
Code-Audit-Challenges
CHYbeta/URLFilterBypassDemo
CHYbeta/Software-Security-Learning
Software-Security-Learning
CHYbeta/Web-Security-Learning
Web-Security-Learning