beicheng-maker's Stars
dark-kingA/superSearchPlus
superSearchPlus是聚合型信息收集插件,支持综合查询,资产测绘查询,信息收集 敏感信息提取 js资源扫描 目录扫描 vue组件扫描 整合了目前常见的资产测绘平台 专为白帽子提供快速侦测目标。
gh0stkey/Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
TheKingOfDuck/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
ax1sX/SecurityList
A list for Web Security and Code Audit
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
broken5/WebAliveScan
对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描
rtcatc/Packer-Fuzzer
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
Lucifer1993/TPscan
一键ThinkPHP漏洞检测
pentestmonkey/php-reverse-shell
le31ei/ctf_challenges
适用于一线安服的ctf培训题目,全docker环境一键启动
s0md3v/Arjun
HTTP parameter discovery suite.
Dliv3/Venom
Venom - A Multi-hop Proxy for Penetration Testers
zan8in/afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
Ridter/redis-rce
Redis 4.x/5.x RCE
ev0A/ArbitraryFileReadList
CTF中任意文件读取的fuzz列表 (Arbitrary file read fuzz list in CTF)
daikerSec/windows_protocol
frankli0324/libphpserialize
implements php-style serialize/unserialize for python 3.7+
ambionics/phpggc
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
hackerhackrat/R-poc
一款用于快速验证漏洞的简易框架