vikiName's Stars
ibaiw/2024Hvv
2024 HVV情报速递~
Schira4396/VcenterKiller
一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webshell,命令执行或者上传公钥使用SSH免密连接
shadow1ng/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
yaklang/yakit
Cyber Security ALL-IN-ONE Platform
thatformat/Hvv2023
HW2023@POC@EXP@CVE-2023-2023
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
genmeta/gm-quic
An IETF quic transport protocol implemented natively using async Rust
shuanx/BurpFingerPrint
BurpSuite插件集成Ehole指纹库并进行常见OA弱口令爆破插件
apachecn/apachecn-kali-zh
gophish/gophish
Open-Source Phishing Toolkit
xiecat/goblin
一款适用于红蓝对抗中的仿真钓鱼系统
lcatro/PHP-WebShell-Bypass-WAF
分享PHP WebShell 绕过WAF 的一些经验 Share some experience about PHP WebShell bypass WAF and Anti-AV
Safe3/CVS
CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台,化繁为简,以一御百。
maurosoria/dirsearch
Web path scanner
MyCATApache/Mycat-Server
XmirrorSecurity/OpenSCA-cli
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
SonarSource/sonarqube
Continuous Inspection
codeshold/ddos-dos-tools
some sort of ddos-tools
Safe3/tianji
天机办公安全平台(简称:TJOSG)是有安科技推出的一款全方位办公安全防护产品,包含SWG、CASB、FIDO2、PassKey、ZTNA、SASE、DLP等功能。
actiontech/sqle
一个支持多种不同类型数据库,覆盖事前控制、事后监督、标准发布场景,帮助您建立质量规范的SQL全生命周期质量管理平台
hhyo/Archery
SQL 审核查询平台
cookieY/Yearning
🐳 A most popular sql audit platform for mysql
chaitin/SafeLine
serve as a reverse proxy to protect your web services from attacks and exploits.
AabyssZG/WebShell-Bypass-Guide
从零学习Webshell免杀手册
baidu/openrasp
🔥Open source RASP solution
Mr-xn/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Jun-5heng/CVE-2021-22005
VMware vCenter Server任意文件上传漏洞 / Code By:Jun_sheng
jixing-lab/blaster
blaster 是一款弱密码隐患检测工具,用于网站登录弱密码检测。
synacktiv/Radmin3-Password-Cracker
Radmin Server 3 credentials dumper/cracker