xianyu403

xianyu403's Stars

• mitchellkrogza/nginx-ultimate-bad-bot-blocker

  Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders

  Language:Shell4.1k488

• linuxdeepin/deepin-unioncode

  Language:C++84969

• chaitin/SafeLine

  SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

  Language:Go14.5k878

• zema1/watchvuln

  一个高价值漏洞采集与推送服务 | collect valueable vulnerability and push it

  Language:Go1.5k160

• ainrm/cobaltstrike-suricata-rules

  17条检测cobaltstrike的suricata-ids规则

  Language:Lua6212

• jweny/pocassist

  傻瓜式漏洞PoC测试框架

  Language:Go1.4k245

• javaweb-sec/javaweb-sec

  Language:Java906165

• wongzeon/ICP-Checker

  ICP备案查询，可查询企业或域名的ICP备案信息，自动完成滑动验证，保存结果到Excel表格，适用于新版的工信部备案管理系统网站，告别频繁拖动验证，以及某站*工具要开通VIP才可查看备案信息的坑

  Language:Python55489

• sshenlian/dictionary

  来自pwn硬糖师傅的爆破字典

  5116

• cdk-team/CDK

  📦 Make security testing of K8s, Docker, and Containerd easier.

  Language:Go4k553

• kafroc/emergency-response-toolbox

  Language:Shell4820

• pmiaowu/BurpShiroPassiveScan

  一款基于BurpSuite的被动式shiro检测插件

  Language:Java1.7k154

• L-codes/Neo-reGeorg

  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

  Language:Python2.9k448

• LoRexxar/Kunlun-M

  KunLun-M是一个完全开源的静态白盒扫描工具，支持PHP、JavaScript的语义扫描，基础安全、组件安全扫描，Chrome Ext\Solidity的基础扫描。

  Language:Python2.3k312

• Mr-xn/Penetration_Testing_POC

  渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

  Language:HTML6.7k2k

• Mr-xn/BurpSuite-collections

  有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

  Language:HTML3.4k663

• AntSwordProject/antSword

  **蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.

  Language:JavaScript3.8k598

• Ares-X/VulWiki

  VulWiki

  20272

• SecWiki/linux-kernel-exploits

  linux-kernel-exploits Linux平台提权漏洞集合

  Language:C5.3k1.7k

• Ridter/Intranet_Penetration_Tips

  2018年初整理的一些内网渗透TIPS，后面更新的慢，所以整理出来希望跟小伙伴们一起更新维护~

  4.5k1.1k

• starnightcyber/subDomains

  互联网公司子域名收集

  14438

• xiaoy-sec/Pentest_Note

  渗透测试常规操作记录

  3.8k943

• ctf-wiki/ctf-wiki

  Come and join us, we need you!

  Language:Python8.4k1.4k

• c0ny1/captcha-killer

  burp验证码识别接口调用插件

  Language:Java884121

• Al1ex/Pentest-tools

  Intranet penetration tools

  Language:PowerShell872257

• er10yi/MagiCude

  分布式端口（漏洞）扫描、资产安全管理、实时威胁监控与通知、高效漏洞闭环、漏洞wiki、邮件报告通知、poc框架

  Language:Python56397

• JE2Se/AssetScan

  资产探测工具，检测存活，检测风险端口，常规端口，全端口探测等等，对探测的端口的脆弱面进行安全分析进行

  Language:Python43792

• dr0op/bufferfly

  攻防演习/渗透测试资产处理小工具，对攻防演习/渗透测试前的信息搜集到的大批量资产/域名进行存活检测、获取标题头、语料提取、常见web端口检测等。

  Language:Python636104

• Micropoor/Micro8

  Gitbook

  18k6.8k

• EtherDream/anti-portscan

  使用 iptables 防止端口扫描

  Language:Shell824117