muyugit's Stars
CISOfy/lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
veops/cmdb
CMDB: configuration and management of IT resources
Tencent/CodeAnalysis
Static Code Analysis - 静态代码分析
murphysecurity/murphysec
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
jar-analyzer/jar-analyzer
Jar Analyzer - 一个JAR包分析工具,批量分析,SCA漏洞分析,方法调用关系搜索,字符串搜索,Spring组件分析,信息泄露检查,CFG程序分析,JVM栈帧分析,进阶表达式搜索,字节码指令级的动态调试分析,反编译JAR包一键导出,一键提取序列化数据恶意代码,一键分析BCEL字节码
ComodoSecurity/openedr
Open EDR public repository
topmrmt/Emergency
这是一款在发生应急响应事件时可以快速对Windows和Linux系统的证据链进行收集的工具
s1g0day/ReportGenX
渗透测试报告辅助生成工具
tr0uble-mAker/POC-bomber
利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点
komomon/POC_Collect
(持续更新)本项目为存储团队Bot小K每日监测到的最新POC,EXP,以及自己平时总结的POC,为了方便渗透测试过程中,漏洞查询,脱网环境的渗透测试。
reidmu/sec-note
记录安全方面的笔记/工具/漏洞合集
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
GhostPack/Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
zema1/watchvuln
一个高价值漏洞采集与推送服务 | collect valueable vulnerability and push it
gtworek/PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
AabyssZG/WebShell-Bypass-Guide
从零学习Webshell免杀手册
muyugit/UAD
用于快速检测Url是否存活的小工具
co01cat/SqlmapXPlus
sqlmap Xplus 基于 sqlmap,对经典的数据库注入漏洞利用工具进行二开!
abc123info/BlueTeamTools
蓝队分析研判工具箱,功能包括内存马反编译分析、各种代码格式化、网空资产测绘功能、溯源辅助、解密冰蝎流量、解密哥斯拉流量、解密Shiro/CAS/Log4j2的攻击payload、IP/端口连接分析、各种编码/解码功能、蓝队分析常用网址、java反序列化数据包分析、Java类名搜索、Fofa搜索、Hunter搜索等。
Just-Hack-For-Fun/Windows-INCIDENT-RESPONSE-COOKBOOK
Windows 应急响应手册
spyboy-productions/r4ven
Track the GPS location of the user's smartphone or PC and capture a picture of the target, along with IP and device information.
upx/upx
UPX - the Ultimate Packer for eXecutables
di0xide-U/LoaderGo
LoaderGo-快速生成免杀木马GUI版本,bypass主流杀软
Yehnn/kali
ExpLangcn/NucleiTP
自动整合全网Nuclei的漏洞POC,实时同步更新最新POC!
wy876/POC
收集整理漏洞EXP/POC,大部分漏洞来源网络,目前收集整理了1100多个poc/exp,长期更新。
projectdiscovery/nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
m-sec-org/d-eyes
D-Eyes为M-SEC社区一款检测与响应工具
x3t2con/Rttools-2
项目内包含工具涉及类别:漏洞利用工具、代审辅助、漏洞利用、靶场环境项目地址列表、漏洞扫描/序列化、密码/隧道项目地址链接、免杀项目地址列表、内网项目地址链接、应急响应项目地址列表、木马查杀、中间件工具项目链接、字典/钓鱼/社工/爆破项目目地址链接、自动化/资产项目链接、子域名/目录/指纹地址
KathanP19/JSFScan.sh
Automation for javascript recon in bug bounty.