ylsg7781

ylsg7781's Stars

• MobSF/Mobile-Security-Framework-MobSF

  Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

  Language:JavaScript17.4k3.2k

• ffffffff0x/f8x

  红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool

  Language:Shell1.8k277

• hanc00l/nemo_go

  Nemo是用来进行自动化信息收集的一个简单平台，通过集成常用的信息收集工具和技术，实现对内网及互联网资产信息的自动收集，提高隐患排查和渗透测试的工作效率。

  Language:JavaScript1.7k247

• guchangan1/All-Defense-Tool

  本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms、OA漏洞利用工具，爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。

  5.5k1.1k

• newbe3three/gotoscan

  由Go语言实现的一款CMS指纹识别工具。

  Language:Go709

• Threezh1/JSFinder

  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.

  Language:Python2.6k404

• Tai7sy/fuckcdn

  CDN真实IP扫描，易语言开发

  Language:Batchfile443145

• Pluto-123/Bypass_cdn

  绕过CDN查找网站的真实IP地址

  Language:Python18728

• Ghr07h/Heimdallr

  一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗

  Language:JavaScript1.5k106

• 360quake/quake_rs

  Quake Command-Line Application

  Language:Rust11412

• cnrstar/anti-honeypot

  一款可以检测WEB蜜罐并阻断请求的Chrome插件

  Language:JavaScript81570

• hacklcx/HFish

  安全、可靠、简单、免费的企业级蜜罐

  4.1k654

• stamparm/identYwaf

  Blind WAF identification tool

  Language:Python614119

• EnableSecurity/wafw00f

  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

  Language:Python5.3k933

• rtcatc/Packer-Fuzzer

  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

  Language:Python2.9k293

• pingc0y/URLFinder

  一款快速、全面、易用的页面信息提取工具，可快速发现和提取页面中的JS、URL和敏感信息。

  Language:Go2.6k199

• TheKingOfDuck/fuzzDicts

  Web Pentesting Fuzz 字典,一个就够了。

  Language:Python7.5k2.4k

• ffuf/ffuf

  Fast web fuzzer written in Go

  Language:Go12.7k1.3k

• ScoopInstaller/Scoop

  A command-line installer for Windows.

  Language:PowerShell21.2k1.4k

• JanDeDobbeleer/oh-my-posh

  The most customisable and low-latency cross platform/shell prompt renderer

  Language:Go17.4k2.4k

• microsoft/terminal

  The new Windows Terminal and the original Windows console host, all in the same place!

  Language:C++95.6k8.3k

• Tuhinshubhra/CMSeeK

  CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs

  Language:Python2.3k499

• shmilylty/OneForAll

  OneForAll是一款功能强大的子域收集工具

  Language:Python8.3k1.3k

• hlmd/Postman-cn

  Postman汉化中文版

  Language:PHP5.4k624

• Safe3/CVS

  CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

  8612

• gentilkiwi/mimikatz

  A little tool to play with Windows security

  Language:C19.4k3.7k

• nmap/nmap

  Nmap - the Network Mapper. Github mirror of official SVN repository.

  Language:C10.2k2.4k

• Audi-1/sqli-labs

  SQLI labs to test error based, Blind boolean based, Time based.

  Language:PHP5.3k1.5k

• lintstar/About-Attack

  一个旨在通过应用场景 / 标签对 Github 红队向工具 / 资源进行分类收集，降低红队技术门槛的手册【持续更新】

  608137

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP58.4k23.9k