along-sep's Stars
sherlock-project/sherlock
Hunt down social media accounts by username across social networks
gchq/CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
BishopFox/sliver
Adversary Emulation Framework
yaklang/yakit
Cyber Security ALL-IN-ONE Platform
blacklanternsecurity/bbot
A recursive internet scanner for hackers.
Threekiii/Awesome-POC
一个漏洞POC知识库 目前数量 1000+
wy876/POC
收集整理漏洞EXP/POC,大部分漏洞来源网络,目前收集整理了1000多个poc/exp,长期更新。
pengzhile/cocopilot
你可以把它称为:联合副驾驶。
GrrrDog/Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
t3l3machus/hoaxshell
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
Kitsun3Sec/Pentest-Cheat-Sheets
A collection of snippets of codes and commands to make your life easier!
codeskyblue/gohttpserver
The best HTTP Static File Server, write with golang+vue
JoyChou93/java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
zer0yu/CyberSecurityRSS
CyberSecurityRSS: A collection of cybersecurity rss to make you better!
MrWQ/vulnerability-paper
收集的文章 https://mrwq.github.io/tools/paper/
AabyssZG/WebShell-Bypass-Guide
从零学习Webshell免杀手册
EASY233/Finger
一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具
assetnote/wordlists
Automated & Manual Wordlists provided by Assetnote
jonluca/Anubis
Subdomain enumeration and information gathering tool
tanjiti/sec_profile
爬取secwiki和xuanwu.github.io/sec.today,分析安全信息站点、安全趋势、提取安全工作者账号(twitter,weixin,github等)
tib36/PhishingBook
红蓝对抗:钓鱼演练资源汇总&备忘录
ax1sX/SecurityList
A list for Web Security and Code Audit
lemono0/FastJsonParty
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本),主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
projectdiscovery/asnmap
Go CLI and Library for quickly mapping organization network ranges using ASN information.
ki9mu/ARL-plus-docker
基于ARL-V2.6.2修改后的版本
Getshell/LinuxTQ
《Linux提权方法论》
r0eXpeR/fingerprint
各种工具指纹收集分享
RuoJi6/Deskbypass
h4m5t/Sec-Interview
Web安全工程师/信息安全工程师/渗透测试工程师 面试题库