Pinned Repositories
amass-action
In-depth Attack Surface Mapping and Asset Discovery for Github Actions
Arlcopy.sh
ARL(灯塔系统)替换子域名字典和路径扫描字典
CVE
dirsearch_bypass403
目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别
Easy-XSS-V2
Easy-XSS-V2 火狐XSS插件修改版
PocList
Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile
Rad-Team-tools
赏金技巧|红队|RedTeam|信息侦查|漏洞挖掘
s7safe
Config files for my GitHub profile.
ScopeSentry
ScopeSentry-网络空间测绘、子域名枚举、端口扫描、敏感信息发现、漏洞扫描、分布式节点
tianjun.github.io
个人工作日志
s7safe's Repositories
s7safe/Rad-Team-tools
赏金技巧|红队|RedTeam|信息侦查|漏洞挖掘
s7safe/Easy-XSS-V2
Easy-XSS-V2 火狐XSS插件修改版
s7safe/Arlcopy.sh
ARL(灯塔系统)替换子域名字典和路径扫描字典
s7safe/CVE
s7safe/amass-action
In-depth Attack Surface Mapping and Asset Discovery for Github Actions
s7safe/dirsearch_bypass403
目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别
s7safe/s7safe
Config files for my GitHub profile.
s7safe/ScopeSentry
ScopeSentry-网络空间测绘、子域名枚举、端口扫描、敏感信息发现、漏洞扫描、分布式节点
s7safe/tianjun.github.io
个人工作日志
s7safe/3klCon
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
s7safe/AFLplusplus
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
s7safe/All-Defense-Tool
本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。
s7safe/Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
s7safe/Android-safe
s7safe/ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
s7safe/awesome-bugbounty-tools
A curated list of various bug bounty tools
s7safe/awesome-chatgpt-prompts-zh
ChatGPT 中文调教指南。各种场景使用指南。学习怎么让它听你的话。
s7safe/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
s7safe/Bug-Bounty
Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More
s7safe/dirfuzz
s7safe/Findomain
The complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.
s7safe/Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
s7safe/gosint
Gosint is a distributed asset information collection and vulnerability scanning platform
s7safe/hackerone-reports
Top disclosed reports from HackerOne
s7safe/platform-corehub-reports.githubapp.com
platform-corehub-reports.githubapp.com
s7safe/POC-bomber
利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点
s7safe/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
s7safe/UEditorGetShell
UEditor编辑器批量GetShell / Code By:Tas9er
s7safe/W5_Soar_APP
W5 Soar的APP
s7safe/wails
Create beautiful applications using Go