ipop Goto Github PK

localsend

An open source cross-platform alternative to AirDrop

locust

Write scalable load tests in plain Python 🚗💨

log4j-scan

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

log4j2burpscanner

CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks

log4j2scan

Log4j2 RCE Passive Scanner plugin for BurpSuite

lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

malleable-c2

Cobalt Strike Malleable C2 Design and Reference Guide

marshalsec

mdut

MDUT - Multiple Database Utilization Tools

menoygone

Attack cobalt strike server’s FCS by DoW

mobile-security-framework-mobsf

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

mygithub

git

mythic

A collaborative, multi-platform, red teaming framework

naabu

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

neo-regeorg

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

netbird

Connect your devices into a single secure private WireGuard®-based mesh network with SSO/MFA and simple access controls.

ngx_lua_waf

ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙

ngx_waf

Handy, High performance, ModSecurity compatible Nginx firewall module & 方便、高性能、兼容 ModSecurity 的 Nginx 防火墙模块

nps-auth-bypass

nps认证绕过利用工具，CVE-2022-40494，使用此工具可在浏览器访问web控制端后台页面，或者批量获取socks5和http代理

ofx

漏洞批量验证框架

oneforall

OneForAll是一款功能强大的子域收集工具

peiqi-wiki-book

面向网络安全从业者的知识文库🍃

pholcus

Pholcus is a distributed high-concurrency crawler software written in pure golang

plugins

Official and Community CTFd Plugins

poc_collect

(持续更新)本项目为存储团队Bot小K每日监测到的最新POC，EXP，以及自己平时总结的POC，为了方便渗透测试过程中，漏洞查询，脱网环境的渗透测试。

proxy_pool

Python爬虫代理IP池(proxy pool)

punycode.js

A robust Punycode converter that fully complies to RFC 3492 and RFC 5891.

qq-tim-elevation

CVE-2023-34312

railgun

rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with mi