ykwiss's Stars
ethereal-vx/Antivirus-Artifacts
Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
gh0stkey/Binary-Learning
二进制安全相关的学习笔记,感谢滴水逆向的所有老师辛苦教学。
API-Security/APIKit
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
hosch3n/msmap
Msmap is a Memory WebShell Generator.
XRSec/Emergency-Response
红队应急响应工具(支持麒麟系统)
AbelChe/BlastWithCaptcha
BlastWithCaptcha v0.2 验证码识别 爆破 本地ocr 多线程爆破 支持带id的验证码 支持payload变形
GhostTroops/scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
HXSecurity/TerraformGoat
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
Phuong39/Ortau
一个用于隐藏C2的、开箱即用的反向代理服务器。 旨在省去繁琐的配置Nginx服务的过程。
Kento-Sec/AsamF
AsamF是集成Fofa、Quake、Hunter、Shodan、Zoomeye、Chinaz、0.zone及爱企查的一站式企业信息资产收集、网络资产测绘工具。
lmdelm/Bitrat-Hvnc-Rat-Remote-Control-Av-Bypass
BitRAT CrackedIt is coded in C++ programming language. It is the latest version of the best PC RAT 2022 in the market. It is used by hackers to remotely access their victims. This RAT can handles up to 10k bots at a single time without any kind of lag and low CPU usages. It can bind 5 files up to a time. It is the best pc remote administration tool for 2022. This best remote desktop software 2022 supports all-new browser versions for the password recovery feature. Their password recovery feature is updated every time and recovers passwords from all updated browsers. It is the best RAT tool for 2022.
eryajf/awesome-github-profile-readme-chinese
🦩 优秀的中文区个人主页搜集
SummerSec/learning-codeql
CodeQL Java 全网最全的中文学习资料
Pyy-dev/IPconfig
ip 域名 查询 轻松应对
Y5neKO/Mon3trProject
通信流量加密webshell管理客户端
ZERO-A-ONE/AutoShot
红队工具,方便远程连接RDP或者SSH的机器运行指令并自动截屏和录屏
d3ckx1/Fvuln
F-vuln(全称:Find-Vulnerability)是为了自己工作方便专门编写的一款自动化工具,主要适用于日常安全服务、渗透测试人员和RedTeam红队人员,它集合的功能包括:存活IP探测、开放端口探测、web服务探测、web漏洞扫描、smb爆破、ssh爆破、ftp爆破、mssql爆破等其他数据库爆破工作以及大量web漏洞检测模块。
i11us0ry/AScan
对/wgpsec/ENScan_GO的修改,只保留了爱企查接口,支持对外投资企业和子公司递归
di-ao/jiuji
一个小轱辘,调用常用工具帮助红队快速自动化打点。
Ranwu0/Penetration-Testing-Notes
该项目为个人渗透测试学习笔记,请勿用作其他用途!
TonyD0g/JavaHacker
记录自己学习Java安全的过程,无技术含量 。
aplyc1a/blogs
PentestNotes
TideSec/BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
passer-W/shc_bypass
内存加载shellcode绕过waf
pineappleEA/pineapple-src
A former citrus fruit-named emulator's Early Access source code
lengjibo/NetUser
使用windows api添加用户,可用于net无法使用时.分为nim版,c++版本,RDI版,BOF版。
helloexp/0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
m3n0sd0n4ld/GooFuzz
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
mo-xiaoxi/AWD_CTF_Platform
一个简单的AWD训练平台
snoopysecurity/dvws-node
Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API related vulnerabilities.