- 👋 Hi, I’m @scopion
scopion Goto Github PK
Type: User
Type: User
焱猫矿池
CVE-2017-11882 File Generator PoC
404StarLink Project 2.0 - 推荐真正优质、有意义、有趣、坚持维护的开源项目
用于渗透测试和红队基础设施建设的 payload 和 bypass 字典。A list of payload and bypass lists for penetration and red team infrastructure build.
Ladon for Cobalt Strike & Cracked Download,Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/osscan/netscan/struts2Poc/weblogicExp
Generates permutations, alterations and mutations of subdomains and then resolves them
the cross platform webshell tool in .NET
Check and report for cve_2022_23307 (log4shell) on your system.
越来越多的网站具有反爬虫特性,有的用图片隐藏关键数据,有的使用反人类的验证码,建立反反爬虫的代码仓库,通过与不同特性的网站做斗争(无恶意)提高技术。(欢迎提交难以采集的网站)(因工作原因,项目暂停)
**蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.
AntSword 加载器
API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
Checklist of the most important security countermeasures when designing, testing, and releasing your API
Fuzz test your application using your OpenAPI or Swagger API definition without coding
原工具是2018年的了,没找到新版本,也没有源码没法基于jar修改,工具查不了腾讯云加固,把里面的规则扣出来,用py3重新写了,py脚本也方便大家自己添加规则
A tool for reverse engineering Android apk files
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
**蚁剑后渗透框架
免杀webshell无限生成工具蚁剑版
本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:log4jRCE,向日葵RCE 等等.
自动发送斗鱼弹幕,自定义弹幕间隔和目标房间号
cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources
✍️ A curated list of CVE PoCs.
A collection of various awesome lists for hackers, pentesters and security researchers
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
List of Awesome Red Teaming Resources
爬虫集合
This is a companion software based on the Acunetix Web Vulnerability Scanner 12、13、14 (AWVS 12、AWVS 13、AWVS 14) scanning engine.
自动漏洞扫描器,自动子域名爆破,自动爬取注入,调用sqlmapapi检测注入,端口扫描,目录爆破,子网段服务探测及其端口扫描,常用框架漏洞检测。 Automatic scanner, automatic sub domain blasting, automatic crawl injection, injection, call the sqlmapapi port scan detection, directory service detection and segment blasting, port scanning, vulnerability detection framework commonly used.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.