Giter Club home page Giter Club logo

ashthes's Projects

404starlink icon 404starlink

404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目

all-defense-tool icon all-defense-tool

本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。

apikit icon apikit

APIKit:Discovery, Scan and Audit APIs Toolkit All In One.

apkanalyser icon apkanalyser

一键提取安卓应用中可能存在的敏感信息。

appinfoscanner icon appinfoscanner

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。

blackdex icon blackdex

BlackDex is an Android unpack(dexdump) tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phone or emulator, you can unpack APK File in several seconds.

cve icon cve

Gather and update all available and newest CVEs with their PoC.

cxmooc-tools icon cxmooc-tools

一个 超星(学习通)/智慧树(知到)/**大学mooc 学习工具,火狐,谷歌,油猴支持.全自动任务,视频倍速秒过,作业考试题库,验证码自动打码(੧ᐛ੭挂科模式,启动)

domain_hunter_pro icon domain_hunter_pro

domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等

githack icon githack

.git 泄漏利用工具,可还原历史版本

github_findpath icon github_findpath

从github爬取路径然后生成字典用来爆破,针对利用开源github搭建的网站的路径提取

hackbar icon hackbar

Firefox and Google Chrome Extension of HackBar without license

heapdump_tool icon heapdump_tool

heapdump敏感信息查询工具,例如查找 spring heapdump中的密码明文,AK,SK等

heimdallr icon heimdallr

一款完全被动监听的谷歌插件,用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗

passworddic icon passworddic

2011-2019年Top100弱口令密码字典 Top1000密码字典 服务器SSH/VPS密码字典 后台管理密码字典 数据库密码字典 子域名字典

poc-exp icon poc-exp

poc or exp of android vulnerability

qax-vpn icon qax-vpn

奇安信VPN存在未授权用户遍历漏洞导致任意账号密码修改漏洞[ikun版]

seclists icon seclists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

springbootvulexploit icon springbootvulexploit

SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 checklist

sylas icon sylas

新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool

top-500-username icon top-500-username

看见一个top 500的用户名字典,觉得还可以,因为是中文,所以搞了了很low的脚本转换一下。

upload-labs icon upload-labs

一个帮你总结所有类型的上传漏洞的靶场

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.