Stars
[漏洞复现] 全球首款利用PHP默认环境(XAMPP)的CVE-2024-4577 PHP-CGI RCE 漏洞 EXP。
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
A Security Tool for Bug Bounty, Pentest and Red Teaming.
Fast passive subdomain enumeration tool.
WeblogicTool,GUI漏洞利用工具,支持漏洞检测、命令执行、内存马注入、密码解密等(深信服深蓝实验室天威战队强力驱动)
ChatGLM-6B: An Open Bilingual Dialogue Language Model | 开源双语对话语言模型
Top disclosed reports from HackerOne
The Next Generation of Anti-Rookit(ARK) tool for Windows.
Analyze the security of any domain by finding all the information possible. Made in python.
用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统
Low bandwidth DoS tool. Slowloris rewrite in Python.
自动化进行目标资产探测和安全漏洞扫描|适用于赏金活动、SRC活动、大规模使用、大范围使用|通过使用被动在线资源来发现网站的有效子域|通过强大且灵活的模板,模拟各种安全漏洞检查!Automate target asset detection and security vulnerability scanning | Suitable for bounty campaigns, SRC camp…
Simple HS256, HS384 & HS512 JWT token brute force cracker.
EasyPen is a GUI program which helps pentesters do target discovery, vulnerability scan and exploitation
The most powerful Android RPA agent framework, next generation of mobile automation robots.
猫抓 浏览器资源嗅探扩展 / cat-catch Browser Resource Sniffing Extension
一个攻防知识库。A knowledge base for red teaming and offensive security.
javascript-obfuscator cleaner & deobfuscator
🍉一款基于Python-Django的多功能Web安全渗透测试工具,包含漏洞扫描,端口扫描,指纹识别,目录扫描,旁站扫描,域名扫描等功能。