asfduibkjewr

asfduibkjewr's Stars

• Lissy93/personal-security-checklist

  🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

  Language:TypeScript16.4k212801.1k

• knownsec/404StarLink

  404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目

  8k224144786

• Mr-xn/Penetration_Testing_POC

  渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

  Language:HTML6.4k25571.9k

• jeremylong/DependencyCheck

  OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

  Language:Java6.2k1804.5k1.2k

• six2dez/reconftw

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

  Language:Shell5.5k104446893

• commixproject/commix

  Automated All-in-One OS Command Injection Exploitation Tool.

  Language:Python4.4k161894806

• Findomain/Findomain

  The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

  Language:Rust3.2k59159364

• r4j0x00/exploits

  Language:C2.5k969694

• JoyChou93/java-sec-code

  Java web common vulnerabilities and security code which is base on springboot and spring security

  Language:Java2.3k4628628

• S3cur3Th1sSh1t/Pentest-Tools

  2.1k913509

• awake1t/linglong

  一款甲方资产巡航扫描系统。系统定位是发现资产，进行端口爆破。帮助企业更快发现弱口令问题。主要功能包括: 资产探测、端口爆破、定时任务、管理后台识别、报表展示

  Language:Go1.7k2395306

• chainreactors/gogo

  面向红队的, 高度可控可拓展的自动化引擎

  Language:Go1.2k2539127

• httpvoid/writeups

  1.2k773175

• projectdiscovery/public-bugbounty-programs

  Community curated list of public bug bounty and responsible disclosure programs.

  Language:Go9955025352

• knownsec/Kunyu

  Kunyu, more efficient corporate asset collection

  Language:Python9901545137

• taielab/awesome-hacking-lists

  平常看到好的渗透hacking工具和多领域效率工具的集合

  968270210

• ZeroMemoryEx/Terminator

  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes

  Language:C++8871810151

• uknowsec/SharpSQLTools

  SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。

  Language:C#8731229130

• rasta-mouse/TikiTorch

  Process Injection

  Language:C#753300140

• Neo23x0/log4shell-detector

  Detector for Log4Shell exploitation attempts

  Language:Python7302725126

• horizon3ai/vcenter_saml_login

  A tool to extract the IdP cert from vCenter backups and log in as Administrator

  Language:Python475101789

• horizon3ai/CVE-2021-21972

  Proof of Concept Exploit for vCenter CVE-2021-21972

  Language:Python24710086

• safe6Sec/MemoryShell

  内存马学习

  Language:Java1685022

• Kevin-Robertson/Sharpmad

  C# version of Powermad

  Language:C#1507029

• puzzlepeaches/Log4jHorizon

  Exploiting CVE-2021-44228 in VMWare Horizon for remote code execution and more.

  Language:Python1186216

• ARPSyndicate/kenzer-templates

  essential templates for kenzer [DEPRECATED]

  Language:Python10812136

• uknowsec/SharpOSS

  Quickly upload files to aliyun OSS by aliyun-oss-csharp-sdk

  Language:C#733118

• 0x90/rdp-arsenal

  RDP pentest tools & scripts

  665027

• mitchmoser/SharpLDAPSearch

  C# .NET Assembly to perform LDAP Queries

  Language:C#26606

• gujifly/dnscmd

  将 AD域控 DNS 的操控，封装成一个通用接口，方便集成在 运维平台中。

  Language:JavaScript112