along-sep

along-sep's Stars

• r0ysue/r0capture

  安卓应用层抓包通杀脚本

  Language:Python6.6k1.4k

• PortSwigger/js-link-finder

  Burp Extension for a passive scanning JS files for endpoint links.

  Language:Python16218

• assetnote/blind-ssrf-chains

  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

  799108

• Ed1s0nZ/cool

  Golang-Gin 框架写的免杀平台，内置分离、捆绑等多种BypassAV方式。

  Language:HTML689112

• momosecurity/FindSomething

  基于chrome、firefox插件的被动式信息泄漏检测工具

  Language:JavaScript1.1k115

• teamssix/awesome-cloud-security

  awesome cloud security 收集一些国内外不错的云安全资源，该项目主要面向国内的安全人员

  1.8k218

• hakluke/hakoriginfinder

  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!

  Language:Go847110

• achuna33/Memoryshell-JavaALL

  收集内存马打入方式

  49647

• Raghavd3v/CRLFsuite

  The most powerful CRLF injection (HTTP Response Splitting) scanner.

  Language:Python55577

• INotGreen/GlllPowerloader

  绕过AV/EDR的代码例子（Code example to bypass AV/EDR）

  Language:Python438103

• samogod/tornado

  Anonymously Reverse Shell over Tor Network using Hidden services without Portforwarding.

  Language:Python41766

• cube0x0/KrbRelay

  Framework for Kerberos relaying

  Language:C#865121

• hadyang/interview

  Java 笔试、面试 知识整理

  4.8k1.3k

• dodola/Gitbook

  收录找到的不错的文档

  548156

• Threekiii/Awesome-Exploit

  一个漏洞利用工具仓库

  Language:C32477

• Threekiii/Vulnerability-Wiki

  基于 docsify 快速部署 Awesome-POC 中的漏洞文档

  Language:HTML1.6k329

• Threekiii/Awesome-Redteam

  一个攻防知识仓库 Red Teaming and Offensive Security

  Language:Python3.6k631

• ewilded/shelling

  SHELLING - a comprehensive OS command injection payload generator

  Language:Java438112

• Bl0omZ/JNDIEXP

  JNDI在java高版本的利用工具,FUZZ利用链

  Language:Java52465

• ffffffff0x/Pentest101

  一些关于渗透测试的Tips

  58386

• neargle/my-re0-k8s-security

  :atom: [WIP] 整理过去的分享，从零开始的Kubernetes攻防 🧐

  Language:Shell2.9k453

• pmiaowu/BurpShiroPassiveScan

  一款基于BurpSuite的被动式shiro检测插件

  Language:Java1.7k155

• Paper-Pen/GatherInfo

  信息收集 OR 信息搜集

  909111

• NeoTheCapt/PowerScanner

  面向HW的红队半自动扫描器

  Language:Java22048

• wikiZ/RedGuard

  RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.

  Language:Go1.4k194

• wyzxxz/heapdump_tool

  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等

  1.3k139

• KingOfBugbounty/KingOfBugBountyTips

  Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

  Language:Go4.2k810

• ffffffff0x/name-fuzz

  针对目标已知信息的字典生成工具

  Language:Python20429

• 24-2021/fscan-POC

  强化fscan的漏扫POC库

  46260

• mazen160/bfac

  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source code.

  Language:Python530103