xingfengzi

xingfengzi's Stars

• matias-a11y/Behind_cdn

  绕过CDN查找网站背后的真实IP

  Language:Python72

• ngc660sec/NGCBot

  一个基于✨HOOK机制的微信机器人，支持🌱安全新闻定时推送【FreeBuf，先知，安全客，奇安信攻防社区】，👯Kfc文案，⚡漏洞查询，⚡手机号归属地查询，⚡知识库查询，🎉星座查询，⚡天气查询，🌱摸鱼日历，⚡微步威胁情报查询， 🐛视频，⚡图片，👯帮助菜单。📫 支持积分功能，⚡支持自动拉人，，🌱自动群发，👯Ai回复，⚡视频号解析，😄自定义程度丰富，小白也可轻松上手！

  Language:Python3.1k413

• vulhub/vulhub

  Pre-Built Vulnerable Environments Based on Docker-Compose

  Language:Dockerfile18.5k4.6k

• Mr-xn/Penetration_Testing_POC

  渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

  Language:HTML6.8k2k

• NHPT/Xray_Cracked

  Update Xray1.9.11 Cracked for Windows,Linux and Mac OS.

  45461

• shack2/SNETCracker

  超级弱口令检查工具是一款Windows平台的弱口令审计工具，支持批量多线程检查，可快速发现弱密码、弱口令账号，密码支持和用户名结合进行检查，大大提高成功率，支持自定义服务端口和字典。

  Language:C#2.5k486

• c0ny1/jsEncrypter

  一个用于前端加密Fuzz的Burp Suite插件

  Language:Java1k127

• gh0stkey/HaE

  HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

  Language:Java3.5k258

• ScriptKid-Beta/Unexpected_information

  Unexpected information 是用于标记请求包中的一些敏感信息、JS接口和一些特殊字段的BurpSuite 插件。

  Language:Java64059

• bit4woo/knife

  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

  Language:Java1.7k200

• c0ny1/chunked-coding-converter

  Burp suite 分块传输辅助插件

  Language:Java2k298

• API-Security/APIKit

  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

  Language:Java2k175

• lu2ker/ApiHelper

  一款BurpSuite插件，辅助手工测试

  722

• whwlsfb/BurpCrypto

  BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

  Language:Java1.5k173

• F6JO/RouteVulScan

  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件

  Language:Java1.2k88

• fKzhangsa/FilterJs

  Burp的JS API接口过滤插件

  Language:Java12211

• docsifyjs/docsify

  🃏 A magical documentation site generator.

  Language:JavaScript29k5.7k

• PeiQi0/PeiQi-WIKI-Book

  面向网络安全从业者的知识文库🍃

  3.9k610

• rtcatc/Packer-Fuzzer

  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

  Language:Python3k307

• TideSec/WDScanner

  WDScanner平台目前实现了如下功能：分布式web漏洞扫描、客户管理、漏洞定期扫描、子域名枚举、端口扫描、网站爬虫、暗链检测、坏链检测、网站指纹搜集、专项漏洞检测、代理搜集及部署等功能。

  Language:PHP2.1k549

• MobSF/Mobile-Security-Framework-MobSF

  Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

  Language:JavaScript18.3k3.3k

• TideSec/BypassAntiVirus

  远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

  Language:XSLT4.7k1.2k

• gfbjngjibn/JustTrustMe

  An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning

  Language:Java12432

• skylot/jadx

  Dex to Java decompiler

  Language:Java43.3k5k

• dstmath/frida-unpack

  基于Frida的脱壳工具

  Language:Python1.4k326

• horsicq/Detect-It-Easy

  Program for determining types of files for Windows, Linux and MacOS.

  Language:JavaScript8.3k773

• 0x727/SpringBootExploit

  项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

  Language:Java1.9k314

• helloexp/0day

  各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新

  Language:C2.1k835

• 1y0n/AV_Evasion_Tool

  掩日 - 免杀执行器生成工具

  Language:C#2.7k406

• BishopFox/sliver

  Adversary Emulation Framework

  Language:Go9.1k1.2k