iqiqiya's Stars
acmesh-official/acme.sh
A pure Unix shell script implementing ACME client protocol
owasp-amass/amass
In-depth attack surface mapping and asset discovery
michenriksen/aquatone
A Tool for Domain Flyovers
cowrie/cowrie
Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
dwisiswant0/apkleaks
Scanning APK file for URIs, endpoints & secrets.
KingOfBugbounty/KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
Mr-xn/BurpSuite-collections
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
insightglacier/Dictionary-Of-Pentesting
Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
kozmer/log4j-shell-poc
A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
lasting-yang/frida_hook_libart
Frida hook some jni functions
w-digital-scanner/w12scan
🚀 A simple asset discovery engine for cybersecurity. (网络资产发现引擎)
Vu1nT0tal/IoT-vulhub
IoT固件漏洞复现环境
mrknow001/aliyun-accesskey-Tools
阿里云accesskey利用工具
tomnomnom/unfurl
Pull out bits of URLs provided on stdin
robotshell/magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
hluwa/Wallbreaker
🔨 Break Java Reverse Engineering form Memory World!
Qftm/Information_Collection_Handbook
Handbook of information collection for penetration testing and src
Simp1er/MobileSec
记录一些我自己在学习Android逆向过程中的有意思的东西
wupco/weblogger
针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具
003random/getJS
A tool to fastly get all javascript sources/files
Kiprey/Skr_Learning
天问之路 - 学习笔记&学习周报。内容包括但不限于C++ STL、编译原理、LLVM IR Pass代码优化、CSAPP Lab、uCore操作系统等等。
robre/jsmon
a javascript change monitoring tool for bugbounties
ghsec/webHunt
Web App bug hunting
M4DM0e/DirDar
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
bin-maker/BYPASS-CDN
rmb122/xss-receiver
简单易用的 xss 接收平台 + payload 管理平台
jeremyd2019/r6300v2
Netgear R6300v2 source
a3r0id/mass-scanning-tools
Various scripts for mass-scanning engagements of world-facing services.
domlysi/django-rat-corona
Remote Administration Tool / Botnet implemented with Django. This is for educational purposes only!