Pinned Repositories
1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
adminer
Database management in a single PHP file
ADVsock2pipe
A small utility to connect a TCP socket to a Windows named pipe. It can be used, for exemple, to capture network data with tcpdump on Linux or iPhone/iPad and to see the capture in (almost) realtime in Wireshark on Windows. Released under GPLv3.
crack_geetest
滑动验证码破解示例
DOMXSSHilight
Burp Extension in Python hilighting DOM Sinks and Hosts using DOM XSS Wiki regex
jdwphack
jdwphack
scriptkid
hack script
sgk
仿findmima的社工库代码,基于elasticsearch和PHP构建
ShadowVPN
New home of ShadowVPN (actively maintained and developed)
wydomain
目标系统信息收集组件
sechacking's Repositories
sechacking/sgk
仿findmima的社工库代码,基于elasticsearch和PHP构建
sechacking/crack_geetest
滑动验证码破解示例
sechacking/1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
sechacking/artillery
The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
sechacking/autorelay
Automatically performs the SMB relay attack
sechacking/BadTunnel_exp
Usage: python badtunnel.py wpad_server_ip
sechacking/chuckle
An automated SMB relay exploitation script.
sechacking/cobra
Cobra(眼镜蛇) - static code security scan & analyse (白盒- 代码安全审计系统)
sechacking/CrackMapExec
A swiss army knife for pentesting Windows/Active Directory environments
sechacking/RSPET
RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
sechacking/dradis-ce
Dradis Community Edition repo (for v3.1 and onwards)
sechacking/elasticsql
convert sql to es elasticsearch DSL in golang
sechacking/F-Scrack
对各类服务进行弱口令检测的脚本
sechacking/form-input-nginx-module
This is a nginx module that reads HTTP POST and PUT request body encoded in "application/x-www-form-urlencoded", and parse the arguments in request body into nginx variables.
sechacking/GitPrey
Searching sensitive files and contents in GitHub associated to company name or other key words
sechacking/impacket-1
Impacket is a collection of Python classes for working with network protocols.
sechacking/jexboss
JexBoss: Jboss verify and EXploitation Tool
sechacking/Keyhole
Malware injection framework
sechacking/m3u
kodi list
sechacking/mimikittenz
A post-exploitation powershell tool for extracting juicy info from memory.
sechacking/nginxparser
Parses nginx configuration with Pyparsing
sechacking/octotree
Code tree for GitHub and GitLab
sechacking/proxy.py
Lightweight HTTP Proxy Server in Python
sechacking/pwdlogy
A victims'-profile-based wordlist generating tool for social engineers and security researchers!
sechacking/S2-032
sechacking/security
Happy Hacker
sechacking/tvm3u
sechacking/VeryNginx
A very powerful and friendly nginx base on lua-nginx-module( openresty ) which provide WAF, Control Panel, and Dashboards.
sechacking/xss_jsfirewall
前端xss防火墙
sechacking/XXEinjector
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.