h0nayuzu

h0nayuzu's Stars

• winezer0/APIFinderPlus

  目标是成为当下最完善的API挖掘工具，实现自动提取响应敏感信息、URI信息，并且对URI进行自动|手动递归检查

  Language:Java1967

• open-ani/animeko

  集找番、追番、看番的一站式弹幕追番平台，Bangumi 同步，BitTorrent，弹幕云过滤，100% Kotlin/Compose Multiplatform

  Language:Kotlin3.9k110

• openp2p-cn/openp2p

  OpenP2P is a lightweight P2P sharing network. Support Cone,Symmetric(NAT1-NAT4),UPNP,IPv6,both UDP&TCP punch. NAT travelsal, sdwan.(P2P内网穿透，组网，联机)

  Language:Go1.5k228

• Eltion/Tiktok-SSL-Pinning-Bypass

  Bypass Tiktok SSL pinning on Android devices.

  Language:Python699173

• f0ng/autoDecoder

  Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。

  Language:Java1.1k84

• mitmproxy/mitmproxy

  An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

  Language:Python38.4k4.1k

• aaaademo/KillWxapkg

  自动化反编译微信小程序，小程序安全评估工具，发现小程序安全问题，自动解密，解包，可还原工程目录，支持Hook，小程序修改

  Language:Go1

• Ackites/KillWxapkg

  自动化反编译微信小程序，小程序安全评估工具，发现小程序安全问题，自动解密，解包，可还原工程目录，支持Hook，小程序修改

  Language:Go4.6k960

• The-Z-Labs/linux-exploit-suggester

  Linux privilege escalation auditing tool

  Language:Shell5.8k1.1k

• luelueking/Deserial_Sink_With_JDBC

  Some ReadObject Sink With JDBC

  Language:Java20517

• Notselwyn/CVE-2024-1086

  Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.

  Language:C2.3k312

• SillyTavern/SillyTavern

  LLM Frontend for Power Users.

  Language:JavaScript12.5k3k

• B0T1eR/ysoSimple

  ysoSimple：简易的Java漏洞利用工具，集成Java反序列化，Hessian反序列化，XStream反序列化，SnakeYaml反序列化，Shiro550，JSF反序列化，SSTI模板注入，JdbcAttackPayload，JNDIAttack，字节码生成。

  Language:Java787

• deskflow/deskflow

  Deskflow lets you share one mouse and keyboard between multiple computers on Windows, macOS and Linux. It's like a software KVM (but without video). Sponsored by Synergy.

  Language:C++16.5k4k

• abc123info/BlueTeamTools

  蓝队分析研判工具箱，功能包括内存马反编译分析、各种代码格式化、网空资产测绘功能、溯源辅助、解密冰蝎流量、解密哥斯拉流量、解密Shiro/CAS/Log4j2的攻击payload、IP/端口连接分析、各种编码/解码功能、蓝队分析常用网址、java反序列化数据包分析、Java类名搜索、Fofa搜索、Hunter搜索等。

  1.3k85

• volatilityfoundation/volatility3

  Volatility 3.0 development

  Language:Python2.9k492

• h0ny/MobaXtermDecryptor

  A simple MobaXterm password extraction tool.

  Language:C#699

• intbjw/webshell-decryptor

  通过获取到的webshell流量、url、key来还原攻击者使用webshell所做的操作。

  Language:HTML988

• Conan924/PostHikvision

  哥斯拉Hikvision综合安防后渗透插件，运行中心/web前台/MinIO 配置提取（解密）重置密码,还原密码。

  Language:Java1229

• jorhelp/Ingram

  网络摄像头漏洞扫描工具 | Webcam vulnerability scanning tool

  Language:Python1.9k297

• RuoJi6/xxl-job-FLM

  xxl-job内存马

  Language:Java16614

• lz2y/yaml-payload-for-ruoyi

  A memory shell for ruoyi

  Language:Java24136

• sun977/linuxcheckshoot

  linux应急响应检查脚本单机终极版

  Language:Shell17831

• lypd0/DeadPotato

  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the original GodPotato source code by BeichenDream.

  Language:C#37446

• idootop/mi-gpt

  🏠 将小爱音箱接入 ChatGPT 和豆包，改造成你的专属语音助手。

  Language:TypeScript10.3k1.3k

• Acmesec/PromptJailbreakManual

  Prompt越狱手册

  2.1k230

• dogadmin/windodws-logs-analysis

  windows日志一键分析小工具

  36345

• vulhub/java-chains

  vulhub Vulnerability Reproduction Designated Platform

  Language:Dockerfile1.3k106

• kezibei/fastjson_payload

  Language:Java20828

• zhayujie/chatgpt-on-wechat

  基于大模型搭建的聊天机器人，同时支持 微信公众号、企业微信应用、飞书、钉钉 等接入，可选择GPT3.5/GPT-4o/GPT-o1/ DeepSeek/Claude/文心一言/讯飞星火/通义千问/ Gemini/GLM-4/Claude/Kimi/LinkAI，能处理文本、语音和图片，访问操作系统和互联网，支持基于自有知识库进行定制企业智能客服。

  Language:Python35.8k9k