g0dark Goto Github PK
Type: User
Type: User
阿里云accesskey利用工具
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
1000+ Github Security Resource Collection Repos.
A fast vulnerability scanner
Scope gathering tool for HackerOne, Bugcrowd, and Intigriti!
一款基于BurpSuite的被动式FastJson检测插件
白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
一个全新的敏感文件发现工具
码小六 - GitHub 代码泄露监控系统
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️🔥
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
一款内网扫描工具,方便一键大保健~
Web Pentesting Fuzz 字典,一个就够了。
这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
Handbook of information collection for penetration testing and src
kernel privilege escalation enumeration and exploitation framework
从0开始学安全,注重实战+技巧的运用,分享各种安全攻防干货,包括但不限于:内网渗透、代码审计 、Web安全、企业安全等。
Gitbook
OneForAll是一款功能强大的子域收集工具
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
代码审计相关的一些知识
2019年红队资源链接,资源不是本人整理出来,来自互联网,因为流传的少,特意在此做个备份,做个分享。
“网址”传输助手,记载一下平时用到好的在线网址。
收集一些比较优秀的开源安全项目,以帮助甲方安全从业人员构建企业安全能力。
A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
日常src平台域名收集
src域名端口信息
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.