yzblog

yzblog's Stars

• hakluke/hakrawler

  Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

  Language:Go4.4k489

• gh0stkey/HaE

  HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

  Language:Java3k237

• dwisiswant0/apkleaks

  Scanning APK file for URIs, endpoints & secrets.

  Language:Python4.9k483

• adysec/h1_asset

  HackerOne资产更新 | 每日更新HackerOne资产，对HackerOne的资产进行爬行和整理，SRC资产更新仅会增加，不会进行删除，每天更新的可以进行差异化对比来获取到新的项目资产范围

  Language:Python136115

• chenjj/CORScanner

  🎯 Fast CORS misconfiguration vulnerabilities scanner

  Language:Python1k177

• projectdiscovery/httpx

  httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

  Language:Go7.5k822

• EdgeSecurityTeam/EHole

  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具

  Language:Go3.1k400

• projectdiscovery/katana

  A next-generation crawling and spidering framework.

  Language:Go10.9k578

• electric-capital/crypto-ecosystems

  A taxonomy for open source cryptocurrency, blockchain, and decentralized ecosystems

  Language:Rust1.4k1.2k

• knownsec/Kunyu

  Kunyu, more efficient corporate asset collection

  Language:Python1k137

• CyberMonitor/APT_CyberCriminal_Campagin_Collections

  APT & CyberCriminal Campaign Collection

  Language:YARA3.7k919

• RustyNoob-619/100-Days-of-YARA-2024

  Language:YARA193

• Abby-ZS/NUDT_MobileTraffic

  An anonymized mobile traffic dataset published by Chen's team (National University of Defense Technology)

  38

• rtcatc/Packer-Fuzzer

  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

  Language:Python2.8k286

• RedDrip7/APT_Digital_Weapon

  Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.

  885244

• badboycxcc/script

  各种脚本、漏洞利用工具

  Language:Python8130

• rapid7/metasploit-framework

  Metasploit Framework

  Language:Ruby33.8k13.9k

• 0xsyr0/OSCP

  OSCP Cheat Sheet

  Language:PowerShell2.7k551

• projectdiscovery/interactsh

  An OOB interaction gathering server and client library

  Language:Go3.3k355

• pppscn/SmsForwarder

  短信转发器——监控Android手机短信、来电、APP通知，并根据指定规则转发到其他手机：钉钉群自定义机器人、钉钉企业内机器人、企业微信群机器人、飞书机器人、企业微信应用消息、邮箱、bark、webhook、Telegram机器人、Server酱、PushPlus、手机短信等。包括主动控制服务端与客户端，让你轻松远程发短信、查短信、查通话、查话簿、查电量等。（V3.0 新增）PS.这个APK主要是学习与自用，如有BUG请提ISSUE，同时欢迎大家提PR指正

  Language:Kotlin17.5k2.4k

• yingshang/CybersecurityNote

  信息安全笔记（JAVA安全、代码审计、红队攻防、渗透测试）

  12218

• carlospolop/legion

  Automatic Enumeration Tool based in Open Source tools

  Language:Python858148

• snyk/zip-slip-vulnerability

  Zip Slip Vulnerability (Arbitrary file write through archive extraction)

  731114

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP57.2k23.8k

• k8gege/K8tools

  K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

  Language:PowerShell5.8k2.1k

• Hypdncy/NessusToReport

  Nessus扫描报告自动化生成工具

  Language:Python522133

• DominicBreuker/pspy

  Monitor linux processes without root permissions

  Language:Go4.9k507

• xf555er/ShellcodeLoader

  This is my FirstRepository

  Language:C++29461

• veracode-research/rogue-jndi

  A malicious LDAP server for JNDI injection attacks

  Language:Java998220

• ra66itmachine/GetInfo

  Windows Emergency Response （应急响应信息采集）

  39848