craCk30

craCk30's Stars

• 4dogs-cn/TXPortMap

  Port Scanner & Banner Identify From TianXiang

  Language:Go607112

• hackerscrolls/SecurityTips

  974166

• salesforce/ja3

  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

  Language:Python2.6k289

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python58.2k14.2k

• iiiusky/alicloud-tools

  阿里云ECS、策略组辅助小工具

  Language:Go801127

• summitt/Nope-Proxy

  TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

  Language:Java1.5k236

• rtcatc/Packer-Fuzzer

  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

  Language:Python2.7k280

• EnableSecurity/wafw00f

  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

  Language:Python5k915

• CTFTraining/CTFTraining

  CTF Training 经典赛题复现环境

  1.1k276

• Y4er/CVE-2020-2551

  Weblogic IIOP CVE-2020-2551

  Language:Java33380

• rapid7/metasploit-framework

  Metasploit Framework

  Language:Ruby33.3k13.8k

• aaaguirrep/offensive-docker

  Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

  Language:Dockerfile722144

• Cherrison/CrackMinApp

  (反编译微信小程序)一键获取微信小程序源码(傻瓜式操作), 使用了C#加nodejs制作

  Language:JavaScript1.3k394

• lijiejie/GitHack

  A `.git` folder disclosure exploit

  Language:Python3k772

• fofapro/vulfocus

  🚀Vulfocus 是一个漏洞集成平台，将漏洞环境 docker 镜像，放入即可使用，开箱即用。

  Language:Vue3.1k489

• yyds-page/awvs-decode

  The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

  Language:Python489

• qazbnm456/awesome-web-security

  🐶 A curated list of Web Security materials and resources.

  11k1.7k

• WrBug/dumpDex

  💯一款Android脱壳工具，需要xposed支持, 易开发已集成该项目。

  Language:C++3k613

• r0ysue/AndroidSecurityStudy

  安卓应用安全学习

  Language:Python3.7k790

• Threezh1/JSFinder

  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.

  Language:Python2.5k395

• TryCatchHCF/Cloakify

  CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

  Language:Python1.5k232

• boy-hack/wooyun-payload

  从wooyun中提取的payload，以及burp插件

  Language:Java837155

• Medicean/VulApps

  快速搭建各种漏洞环境(Various vulnerability environment)

  Language:Shell3.7k1k

• knownsec/pocsuite3

  pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

  Language:Python3.6k775

• yingshang/banruo

  Language:CSS14251

• cn-panda/JavaCodeAudit

  Getting started with java code auditing 代码审计入门的小项目

  Language:JavaScript855118

• 1120362990/vulnerability-list

  在渗透测试中快速检测常见中间件、组件的高危漏洞。

  Language:Python731155

• bollwarm/SecToolSet

  The security tool(project) Set from github。github安全项目工具集合

  Language:Shell1.2k299

• chaitin/xray

  一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

  Language:Vue9.9k1.8k

• baidu-security/openrasp-iast

  IAST 灰盒扫描工具

  Language:Python43984