Pinned Repositories
ant
http://root.cool
Audit-Learning
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
DarkNet_ChineseTrading
🚇暗网中文网监控爬虫
fenghuangscanner_v3
常见端口及服务弱口令扫描
pyekaboo
A proof-of-concept program that is able to to hijack/hook/proxy Python module(s) thanks to $PYTHONPATH variable
pyvulhunter
python audit tool 审计 注入 inject
Scan_WebShell
Web后门扫描
Scanners-Box
安全行业从业人员自研开源扫描器合集(不收录w3af、brakeman等知名扫描工具)
security_w1k1
collect
VulScritp
内网渗透脚本
xfkxfk's Repositories
xfkxfk/pyekaboo
A proof-of-concept program that is able to to hijack/hook/proxy Python module(s) thanks to $PYTHONPATH variable
xfkxfk/Scanners-Box
安全行业从业人员自研开源扫描器合集(不收录w3af、brakeman等知名扫描工具)
xfkxfk/VulScritp
内网渗透脚本
xfkxfk/android-training-course-in-chinese
Android官方培训课程中文版
xfkxfk/CTF_web
a project aim to collect CTF web practices .
xfkxfk/My-CTF-Web-Challenges
Collection of CTF Web challenges I made
xfkxfk/browsermob-proxy
A free utility to help web developers watch and manipulate network traffic from their AJAX applications.
xfkxfk/build-web-application-with-golang
A golang ebook intro how to build a web with golang
xfkxfk/BurpSuite
BurpSuite using the document and some extensions
xfkxfk/changeme
A default credential scanner.
xfkxfk/cobra
Cobra(眼镜蛇) - Static code security scanner & analyser (白盒代码安全扫描与分析系统)
xfkxfk/distribute_crawler
使用scrapy,redis, mongodb,graphite实现的一个分布式网络爬虫,底层存储mongodb集群,分布式使用redis实现,爬虫状态显示使用graphite实现
xfkxfk/exploits-1
Miscellaneous exploit code
xfkxfk/F-Scrack
对各类服务进行弱口令检测的脚本
xfkxfk/Fox-scan
Fox-scan is a initiative and passive SQL Injection vulnerable Test tools.
xfkxfk/github-dorks
Collection of github dorks and helper tool to automate the process of checking dorks
xfkxfk/GitPrey
Searching sensitive files and contents in GitHub associated to company name or other key words
xfkxfk/headfirst-saltstack
xfkxfk/java_deserialization_exploits
A collection of Java Deserialization Exploits
xfkxfk/MobileApp-Pentest-Cheatsheet
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
xfkxfk/myBFF
myBFF - a Brute Force Framework
xfkxfk/passivedns
A network sniffer that logs all DNS server replies for use in a passive DNS setup
xfkxfk/payloads
Git All the Payloads! A collection of web attack payloads.
xfkxfk/Sec-Box
information security Tools Box (信息安全工具集合)
xfkxfk/SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
xfkxfk/shadowbroker
xfkxfk/SQLiScanner
Automatic SQL injection with Charles and sqlmap api
xfkxfk/TBDEx
Exploiting Timed Based RCE
xfkxfk/wiki.secmobi.com
SecMobi Wiki is a collection of mobile security resources.
xfkxfk/x-waf-admin
x-waf的web管理后台