Stars
Tools, utilities and scripts to help you write redis modules!
redis 4.x/5.x master/slave getshell module
A robust streaming log template miner based on the Drain algorithm
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。
个人安全开发代码缩编:包括但不扩展渗透测试,资产收集,大规模裂缝扫描器,网络安全相关资料文档
一款基于各大企业信息API的工具,解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。支持MCP接入
一键调用subfinder+ksubdomain+httpx 强强联合 从域名发现-->域名验证-->获取域名标题、状态码以及响应大小 最后保存结果,简化重复操作命令
Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second
项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用漏洞、降低漏洞利用门槛。
China's first CTFTools framework.中国国内首个CTF工具框架,旨在帮助CTFer快速攻克难关
一款基于go的windows信息收集工具,主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录
开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
数据库和其他服务的弱端口的弱口令检测以及未授权访问的集成检测工具。 Weak password blasting of weak ports and integrated detection tools for unauthorized access.
CMS识别,CMS检测,多线程,超大指纹库。CMS identification, CMS detection, multi-threading, large fingerprint library.
Getting started with java code auditing 代码审计入门的小项目
Shiro550/Shiro721 一键化利用工具,支持多种回显方式
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
JumpServer is an open-source Privileged Access Management (PAM) platform that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints…
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
thelostworldFree / sec-admin
Forked from smallcham/sec-admin资产安全扫描核心管理系统(弱口令扫描,漏洞扫描)