gaynellg

gaynellg's Stars

• INotGreen/XiebroC2

  渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理

  Language:Go1.2k180

• vulhub/vulhub

  Pre-Built Vulnerable Environments Based on Docker-Compose

  Language:Dockerfile18.6k4.6k

• pykiller/API-T00L

  互联网厂商API利用工具。

  Language:Java53251

• SuxueCode/WechatBakTool

  基于C#的微信PC版聊天记录备份工具，提供图形界面，解密微信数据库并导出聊天记录。

  Language:C#3.2k314

• r00t4dm/aLIEz

  Language:Java18424

• skylot/jadx

  Dex to Java decompiler

  Language:Java43.4k5k

• safe6Sec/Fastjson

  Fastjson姿势技巧集合

  1.7k345

• 10cks/fofaEX

  FOFA EX 是一款基于fofa api（也可导入鹰图、夸克文件）实现的红队综合利用工具，可基于模板把工具作为插件进行集成，自动化进行资产探测，目前提供的插件功能如下：探活、 nuclei 模板扫描、IP反查域名、域名反查 ICP 备案、dismap 指纹扫描

  Language:Java21812

• ibaiw/2023Hvv

  2023 HVV情报速递~

  1.5k407

• Threezh1/JSFinder

  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.

  Language:Python2.7k418

• maurosoria/dirsearch

  Web path scanner

  Language:Python12.7k2.4k

• F6JO/RouteVulScan

  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件

  Language:Java1.2k88

• Quitten/Autorize

  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

  Language:Python1k213

• nccgroup/AutoRepeater

  Automated HTTP Request Repeating With Burp Suite

  Language:Java870109

• gubeihc/blasting

  Language:Python55349

• iamj0ker/bypass-403

  A simple script just made for self use for bypassing 403

  Language:Shell1.9k300

• wyzxxz/heapdump_tool

  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等

  1.3k142

• whwlsfb/JDumpSpider

  HeapDump敏感信息提取工具

  Language:Java1.4k136

• Telefonica/Eternalblue-Doublepulsar-Metasploit

  Module of Metasploit to exploit the vulnerability Eternalblue-Doublepulsar.

  Language:Ruby1.1k520

• x64dbg/x64dbg

  An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

  Language:C++45.7k2.5k

• ezshine/wxapkg-convertor

  一个反编译微信小程序的工具，仓库也收集各种微信小程序/小游戏.wxapkg文件

  Language:JavaScript1.4k385

• horizon3ai/CVE-2023-27524

  Basic PoC for CVE-2023-27524: Insecure Default Configuration in Apache Superset

  Language:Python10329

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.9k2.8k

• Jeromeyoung/JNDIExploit-1

  一款用于JNDI注入利用的工具，大量参考/引用了Rogue JNDI项目的代码，支持直接植入内存shell，并集成了常见的bypass 高版本JDK的方式，适用于与自动化工具配合使用。

  362282

• xiaogang000/XG_NTAI

  用于Webshell木马免杀、流量加密传输，多多支持star

  80367

• API-Security/APIKit

  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

  Language:Java2.1k174

• sccmdaveli/hikvision-poc

  海康威视iVMS 综合安防任意文件上传 漏洞检测poc

  Language:Python8517

• sulab999/AppMessenger

  一款适用于以APP病毒分析、APP漏洞挖掘、APP开发、HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、鸿蒙)辅助分析工具

  1.1k100

• WhiteHSBG/JNDIExploit

  对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改

  Language:Java1.4k289

• pureqh/Hyacinth

  一款java漏洞集合工具

  79870