scopion Goto Github PK

1195777-chrome0day

2-ympool

焱猫矿池

2017-11882_generator

CVE-2017-11882 File Generator PoC

404starlink2.0-galaxy

404StarLink Project 2.0 - 推荐真正优质、有意义、有趣、坚持维护的开源项目

aboutsecurity

用于渗透测试和红队基础设施建设的 payload 和 bypass 字典。A list of payload and bypass lists for penetration and red team infrastructure build.

aggressor

Ladon for Cobalt Strike & Cracked Download,Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/osscan/netscan/struts2Poc/weblogicExp

altdns

Generates permutations, alterations and mutations of subdomains and then resolves them

altman

the cross platform webshell tool in .NET

ansible-role-cve_2022-23307

Check and report for cve_2022_23307 (log4shell) on your system.

anti-anti-spider

越来越多的网站具有反爬虫特性，有的用图片隐藏关键数据，有的使用反人类的验证码，建立反反爬虫的代码仓库，通过与不同特性的网站做斗争（无恶意）提高技术。（欢迎提交难以采集的网站）（因工作原因，项目暂停）

antsword

**蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.

antsword-loader

AntSword 加载器

api-fuzzer

API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities

api-security-checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

apifuzzer

Fuzz test your application using your OpenAPI or Swagger API definition without coding

apkscan-pkid-v2.0

原工具是2018年的了，没找到新版本，也没有源码没法基于jar修改，工具查不了腾讯云加固，把里面的规则扣出来，用py3重新写了，py脚本也方便大家自己添加规则

apktool

A tool for reverse engineering Android apk files

arl

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

as-exploits

**蚁剑后渗透框架

as_webshell_venom

免杀webshell无限生成工具蚁剑版

attackwebframeworktools-5.0

本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:log4jRCE,向日葵RCE 等等.

autobarrage

自动发送斗鱼弹幕，自定义弹幕间隔和目标房间号

awesome-cobaltstrike

cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources

awesome-cve-poc

✍️ A curated list of CVE PoCs.

awesome-hacking

A collection of various awesome lists for hackers, pentesters and security researchers

awesome-jenkins-rce-2019

There is no pre-auth RCE in Jenkins since May 2017, but this is the one!

awesome-red-teaming

List of Awesome Red Teaming Resources

awesome-spider

爬虫集合

awvs-13-scan-plus

This is a companion software based on the Acunetix Web Vulnerability Scanner 12、13、14 (AWVS 12、AWVS 13、AWVS 14) scanning engine.

azscanner

自动漏洞扫描器，自动子域名爆破，自动爬取注入，调用sqlmapapi检测注入，端口扫描，目录爆破，子网段服务探测及其端口扫描，常用框架漏洞检测。 Automatic scanner, automatic sub domain blasting, automatic crawl injection, injection, call the sqlmapapi port scan detection, directory service detection and segment blasting, port scanning, vulnerability detection framework commonly used.