Pinned Repositories
AirFly
机场订阅一键生成ip代理池,让机场起飞!
antSword
**蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.
AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
bandit
Bandit is a tool designed to find common security issues in Python code.
clashX
cpython
The Python programming language
fuckcdn
CDN真实IP扫描,易语言开发
Ladon
大型内网渗透扫描器&Cobalt Strike,Ladon9.1.4内置150个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
MySQLMonitor
监控mysql执行sql语句的小工具,用于代码审计
xmsss814's Repositories
xmsss814/MySQLMonitor
监控mysql执行sql语句的小工具,用于代码审计
xmsss814/Ladon
大型内网渗透扫描器&Cobalt Strike,Ladon9.1.4内置150个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
xmsss814/AirFly
机场订阅一键生成ip代理池,让机场起飞!
xmsss814/antSword
**蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.
xmsss814/AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
xmsss814/bandit
Bandit is a tool designed to find common security issues in Python code.
xmsss814/clashX
xmsss814/Github-CVE-Listener
无需服务器的GitHub实时漏洞利用工具监听器,目前支持微信/TG推送,中文版(https://github.com/Kira-Pgr/Github-CVE-Listener/blob/main/README_ZH.md)
xmsss814/glider
glider is a forward proxy with multiple protocols support, and also a dns/dhcp server with ipset management features(like dnsmasq).
xmsss814/gosec
Golang security checker
xmsss814/HackReport
渗透测试报告/资料文档/渗透经验文档/安全书籍
xmsss814/I-S00N
xmsss814/impacket
Impacket is a collection of Python classes for working with network protocols.
xmsss814/iron
An Extensible, Concurrent Web Framework for Rust
xmsss814/JavaThings
Share Things Related to Java - Java安全漫谈笔记相关内容
xmsss814/Kernelhub
:palm_tree:Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
xmsss814/Kunlun-M
KunLun-M是一个完全开源的静态白盒扫描工具,支持PHP、JavaScript的语义扫描,基础安全、组件安全扫描,Chrome Ext\Solidity的基础扫描。
xmsss814/nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
xmsss814/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
xmsss814/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
xmsss814/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
xmsss814/RehabilitationGuide
颈椎病腰突康复指南,为程序员群体提供简单可靠的康复指南。
xmsss814/rustdesk
Virtual / remote desktop infrastructure for everyone! Open source TeamViewer / Citrix alternative.
xmsss814/rustlings
:crab: Small exercises to get you used to reading and writing Rust code!
xmsss814/RustScan
🤖 The Modern Port Scanner 🤖
xmsss814/sensleak-rs
xmsss814/ShuiZe_0x727
信息收集自动化工具
xmsss814/TeachYourselfCS-CN
TeachYourselfCS 的中文翻译 | A Chinese translation of TeachYourselfCS
xmsss814/wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
xmsss814/Windows-exploits
🎯 Windows 平台提权漏洞大合集 (长期收集)