Pinned Repositories
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
awesome-burp-suite
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
awesome-cyber-security
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
awesome-hacking
Awesome hacking is an awesome collection of hacking tools.
awesome-webshell
Awesome webshell collection. Including 150 Github repo, and 200+ blog posts.
captcha-killer
burp验证码识别接口调用插件
Exploit-scripts
存放一些自己写过的漏洞利用脚本
FuzzScanner
一个主要用于信息搜集的工具集,主要是用于对网站子域名、开放端口、端口指纹、c段地址、敏感目录等信息进行批量搜集。
Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以公开出来希望跟小伙伴们一起更新维护~
ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
playplaying's Repositories
playplaying/awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
playplaying/awesome-burp-suite
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
playplaying/awesome-cyber-security
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
playplaying/awesome-hacking
Awesome hacking is an awesome collection of hacking tools.
playplaying/awesome-webshell
Awesome webshell collection. Including 150 Github repo, and 200+ blog posts.
playplaying/captcha-killer
burp验证码识别接口调用插件
playplaying/Exploit-scripts
存放一些自己写过的漏洞利用脚本
playplaying/FuzzScanner
一个主要用于信息搜集的工具集,主要是用于对网站子域名、开放端口、端口指纹、c段地址、敏感目录等信息进行批量搜集。
playplaying/Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以公开出来希望跟小伙伴们一起更新维护~
playplaying/ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
playplaying/BiliBiliTool
.Net 5 编写的B站(哔哩哔哩)任务工具,通过GitHub Actions实现每日线上自动运行任务:每日自动登录、观看、分享、投币视频,获取每日任务的满额经验,轻松升级Level 6,实现自动领取大会员权益、月底自动为自己充电等功能。
playplaying/NoXss
Faster xss scanner,support reflected-xss and dom-xss
playplaying/penetration
渗透 超全面的渗透资料💯 包含:0day,xss,sql注入,提权……
playplaying/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc html-poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql
playplaying/poc--exp
常用渗透poc收集
playplaying/PoC-in-GitHub
PoC auto collect from GitHub.
playplaying/Red_Team
Some scripts useful for red team activities
playplaying/sec-chart
安全思维导图集合
playplaying/vulnerability-list
在渗透测试中快速检测常见中间件、组件的高危漏洞。
playplaying/wooyun-payload
从wooyun中提取的payload,以及burp插件
playplaying/wyportmap
目标端口扫描+系统服务指纹识别