TsoJanScan Burp Plugins Secondary Development

红队浏览器插件-检测VUE站点未授权漏洞

JoySafety

全网首发！！！上万道网安面试题总结（涵盖护网、渗透、红队、逆向、密码、二进制、区块链、AI、云）

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

集权设施扫描器

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

NSFOCUS API_Sword：A Burp Suite extension, Automatically recursively collect API endpoints from any response

An AI-powered security review GitHub Action using Claude to analyze code changes for security vulnerabilities.

CVE-2025-54424：1Panel 客户端证书绕过RCE漏洞 一体化工具 (扫描+利用)

PandaWiki 是一款 AI 大模型驱动的开源知识库搭建系统，帮助你快速构建智能化的 产品文档、技术文档、FAQ、博客系统，借助大模型的力量为你提供 AI 创作、AI 问答、AI 搜索等能力。

P1finger - 红队行动下的重点资产指纹识别工具，解决信息收集过程中的一小步

一款最全未授权访问漏洞批量检测工具，集成40+常见未授权访问漏洞。

Make your GenAI Apps Safe & Secure 🚀 Test & harden your system prompt

ChatGPT Jailbreaks, GPT Assistants Prompt Leaks, GPTs Prompt Injection, LLM Prompt Security, Super Prompts, Prompt Hack, Prompt Security, Ai Prompt Engineering, Adversarial Machine Learning.

A ToB solution for flexibly detecting prompt injection risks across diverse open/closed AI infrastructure and packaged APIs.

攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。

Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables users to generate intelligent security testing prompts and tai…

Zero shot vulnerability discovery using LLMs

Proxifier注册机

辅助甲方安全人员巡检网站资产，发现并分析API安全问题

🔥🔥🔥AI-driven database tool and SQL client, The hottest GUI client, supporting MySQL, Oracle, PostgreSQL, DB2, SQL Server, DB2, SQLite, H2, ClickHouse, and more.

面向中文大模型价值观的评估与对齐研究

基于Chrome开发者协议(CDP)的AI自动化JavaScript逆向分析工具

The recursive internet scanner for hackers. 🧡

the LLM vulnerability scanner

MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize