yzblog's Stars
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
gh0stkey/HaE
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
dwisiswant0/apkleaks
Scanning APK file for URIs, endpoints & secrets.
adysec/h1_asset
HackerOne资产更新 | 每日更新HackerOne资产,对HackerOne的资产进行爬行和整理,SRC资产更新仅会增加,不会进行删除,每天更新的可以进行差异化对比来获取到新的项目资产范围
chenjj/CORScanner
🎯 Fast CORS misconfiguration vulnerabilities scanner
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
EdgeSecurityTeam/EHole
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
projectdiscovery/katana
A next-generation crawling and spidering framework.
electric-capital/crypto-ecosystems
A taxonomy for open source cryptocurrency, blockchain, and decentralized ecosystems
knownsec/Kunyu
Kunyu, more efficient corporate asset collection
CyberMonitor/APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
RustyNoob-619/100-Days-of-YARA-2024
Abby-ZS/NUDT_MobileTraffic
An anonymized mobile traffic dataset published by Chen's team (National University of Defense Technology)
rtcatc/Packer-Fuzzer
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
RedDrip7/APT_Digital_Weapon
Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
badboycxcc/script
各种脚本、漏洞利用工具
rapid7/metasploit-framework
Metasploit Framework
0xsyr0/OSCP
OSCP Cheat Sheet
projectdiscovery/interactsh
An OOB interaction gathering server and client library
pppscn/SmsForwarder
短信转发器——监控Android手机短信、来电、APP通知,并根据指定规则转发到其他手机:钉钉群自定义机器人、钉钉企业内机器人、企业微信群机器人、飞书机器人、企业微信应用消息、邮箱、bark、webhook、Telegram机器人、Server酱、PushPlus、手机短信等。包括主动控制服务端与客户端,让你轻松远程发短信、查短信、查通话、查话簿、查电量等。(V3.0 新增)PS.这个APK主要是学习与自用,如有BUG请提ISSUE,同时欢迎大家提PR指正
yingshang/CybersecurityNote
信息安全笔记(JAVA安全、代码审计、红队攻防、渗透测试)
carlospolop/legion
Automatic Enumeration Tool based in Open Source tools
snyk/zip-slip-vulnerability
Zip Slip Vulnerability (Arbitrary file write through archive extraction)
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
k8gege/K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
Hypdncy/NessusToReport
Nessus扫描报告自动化生成工具
DominicBreuker/pspy
Monitor linux processes without root permissions
xf555er/ShellcodeLoader
This is my FirstRepository
veracode-research/rogue-jndi
A malicious LDAP server for JNDI injection attacks
ra66itmachine/GetInfo
Windows Emergency Response (应急响应信息采集)