pe4ch

pe4ch's Stars

• pentester-io/commonspeak

  Content discovery wordlists generated using BigQuery

  Language:Shell56172

• bingohuang/play-docker-images

  网易蜂巢《玩转 Docker 镜像》系列

  Language:JavaScript17571

• quay/clair

  Vulnerability Static Analysis for Containers

  Language:Go10.4k1.2k

• Rhynorater/CVE-2018-15473-Exploit

  Exploit written in Python for CVE-2018-15473 with threading and export formats

  Language:Python521183

• ysrc/GourdScanV2

  被动式漏洞扫描系统

  Language:Python871313

• Q2h1Cg/dnsbrute

  a fast domain brute tool

  Language:Go41097

• tidwall/gjson

  Get JSON values quickly - JSON parser for Go

  Language:Go14.6k865

• yahoo/gryffin

  Gryffin is a large scale web security scanning platform.

  Language:Go2.1k233

• iceyhexman/onlinetools

  在线cms识别|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..

  Language:Python1.7k349

• lufeirider/Project

  Language:Java12251

• gmarik/go-erd

  Go-ERD (Entity Relationship Diagrams) for Golang with Graphviz [WIP]

  Language:Go28622

• analysis-tools-dev/static-analysis

  ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

  Language:Rust13.5k1.4k

• qax-os/goreporter

  A Golang tool that does static analysis, unit testing, code review and generate code quality report.

  Language:Go3.1k271

• enjoiz/XXEinjector

  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.

  Language:Ruby1.6k315

• CHYbeta/Web-Security-Learning

  Web-Security-Learning

  Language:HTML4.2k1k

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP59.9k24k

• rastating/wordpress-exploit-framework

  A Ruby framework designed to aid in the penetration testing of WordPress systems.

  Language:Ruby1k263

• cjoudrey/gluahttp

  gluahttp: an http module for gopher-lua

  Language:Go5923

• melvinsh/subresolve

  Resolve and quickly portscan a list of (sub)domains.

  Language:Ruby8528

• guelfoweb/knock

  Knock Subdomain Scan

  Language:Python3.9k866

• jeanphorn/common-password

  字典生成脚本, 用python语言写成的可交互性的字典生成脚本。尤其适合社会工程学，当你收集到目标的具体信息后，你就可以通过这个脚本来智能化生成关于目标的字典。

  Language:Python8732

• pe4ch/wordlist

  Collection of some common wordlists such as RDP password, user name list, ssh password wordlist for brute force. IP Cameras Default Passwords.

  1

• lifesinger/blog

  岁月如歌

  Language:HTML5.6k

• goinaction/code

  Source Code for Go In Action examples

  Language:Go4.1k2.4k

• xl7dev/WebShell

  Webshell && Backdoor Collection

  Language:PHP1.8k1k

• Hell0W0rld0/Github-Hunter

  This tool is for sensitive information searching on Github - The Fast Version here: https://github.com/Hell0W0rld0/Github_Hunter_By_Golang

  Language:Python401116

• OWASP/owasp-mastg

  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  Language:Python11.9k2.4k

• xibijj/Bugscan

  Bugscan Web Vulnerability Scaner Online System

  Language:PHP6973

• magicming200/tomcat-weak-password-scanner

  醉考拉tomcat后台弱口令扫描器，命令行版+图形界面版。

  Language:Python19160

• Xyntax/POC-T

  渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

  Language:Python2k751