mohghezal

mohghezal's Stars

• sqlmapproject/sqlmap

  Automatic SQL injection and database takeover tool

  Language:Python33.7k1.1k5.3k5.8k

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.9k1921.6k2.8k

• nomi-sec/PoC-in-GitHub

  📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

  6.8k432301.2k

• six2dez/reconftw

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

  Language:Shell6.1k111470979

• lcvvvv/kscan

  Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

  Language:Go4.1k44146531

• kleiton0x00/Advanced-SQL-Injection-Cheatsheet

  A cheat sheet that contains advanced queries for SQL Injection of all types.

  3k610677

• TH3xACE/SUDO_KILLER

  A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

  Language:Shell2.3k5011257

• jaeles-project/jaeles

  The Swiss Army knife for automated Web Application Testing

  Language:Go2.2k7951322

• 0xHJK/dumpall

  一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出

  Language:Python1.4k1722148

• t3l3machus/toxssin

  An XSS exploitation command-line interface and payload generator.

  Language:Python1.3k187191

• nemesida-waf/waf-bypass

  Check your WAF before an attacker does

  Language:Python1.3k2216173

• 4ra1n/super-xray

  Web漏洞扫描工具XRAY的GUI启动器

  Language:Java1.3k18158148

• hahwul/XSpear

  🔱 Powerfull XSS Scanning and Parameter analysis tool&gem

  Language:Ruby1.3k4572231

• test502git/awvs14-scan

  针对 Acunetix AWVS扫描器开发的批量扫描脚本，支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项，支持联动xray、burp、w13scan等被动批量

  Language:Python1.2k1733208

• niudaii/zpscan

  一个有点好用的信息收集工具。A somewhat useful information gathering tool.

  Language:Go1.1k144999

• awake1t/PortBrute

  一款跨平台小巧的端口爆破工具，支持爆破FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD / A cross-platform compact port blasting tool that supports blasting FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD

  Language:Go1k1512157

• PortSwigger/BChecks

  BChecks collection for Burp Suite Professional and Burp Suite Enterprise Edition

  6742575120

• 20142995/Goby

  Language:Go5762311139

• knownsec/ZoomEye-python

  ZoomEye-python: The official Python library and CLI by Knownsec 404 Team.

  Language:Python5441836126

• root4loot/rescope

  Bugbounty scope tool

  Language:Go32510260

• jaeles-project/jaeles-signatures

  Default signature for Jaeles Scanner

  319321171

• ExpLangcn/EPScan

  被动收集资产并自动进行SQL注入检测（插件化 自动Bypass）、XSS检测、RCE检测、敏感信息检测

  Language:Go20411119

• drak3hft7/VPS-Bug-Bounty-Tools

  Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

  Language:Shell1963651

• Mostafa-Elguerdawi/Automation_Bug_Hunting

  Language:Python683016

• regorsec/Linux-Post-Exploitation

  Tips, Tricks, and Scripts for Linux Post Exploitation

  Language:Shell38216

• yeswehack/BCheck-Burp-scripts

  Bcheck scripts for Burp

  25305

• root4loot/recrawl

  A web crawler written in Go

  Language:Go9200

• dwisiswant0/fuzzing-templates

  Community curated list of nuclei templates for finding unknown security vulnerabilities.

  4201

• killdayu/burp_pro_crack

  Language:Shell3200

• reewardius/time-based-sqli-payloads

  3201