c1h2e1 Goto Github PK
Type: User
Type: User
Generates permutations, alterations and mutations of subdomains and then resolves them
List of Awesome Asset Discovery Resources
爆破字典
A list of interesting payloads, tips and tricks for bug bounty hunters.
BugBountyTips collect
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks
HackerOne Platform Documentation
一个fuzzdb扩展库
Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab Will Replace Every GET or POST Parameters With Selected TAB in "Proxy" or "Repeater" TAB
这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
Take a list of domains and probe for working HTTP and HTTPS servers
Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.
BurpSuite Extension: Log4j RCE Scanner
Fetch many paths for many hosts - without killing the hosts
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Easy Fast recon script
弱口令,敏感目录,敏感文件等渗透测试常用攻击字典
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Send output from subjs to LinkFinder
上传漏洞fuzz字典生成脚本
This is a webshell open source project
高危漏洞精准检测与深度利用框架
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.