jeffyds Goto Github PK
Type: User
Type: User
Github Action Example with Semgrep SAST
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
cyber security mind maps collection
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Cover various security approaches to attack techniques and also provides new discoveries about security breaches.
用于解决判断出网情况的问题,以http、ldap、rmi以及socket形式批量监听端口,在web界面进行结果查看
一款针对Shiro550漏洞进行快速漏洞利用工具。 对 @SummerSec 大佬的项目https://github.com/SummerSec/ShiroAttack2 进行了一些改进。
Simple tool to test for SSRF/OOB HTTP Read within the Path of a request
社会工程学密码生成器,是一个利用个人信息生成密码的工具
Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
SpringScan 漏洞检测 Burp插件
SubdomainFinder is a tool for collecting subdomains. It increases the range of information gathering during the penetration test.
In this repo, I have created a subdomain enumeration function that grab subdomains in deep.
Python script that allows you to monitor subdomains for a given list of domains from various sources, including crt.sh, hackertarget, anubis, Alienvault, rapiddns, and urlscan.io.
基于实战沉淀下的各种弱口令字典
This tool checks if the given Url/File has Swagger Ui, That can be tested later..
溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)
未授权检测的命令行版,支持批量检测
一款快速、全面、易用的页面信息提取工具,可快速发现和提取页面中的JS、URL和敏感信息。
用户名密码字典生成工具(将中文汉字姓名转成14种格式的拼音、IP地址处理、网络设备密码生成)
Pre-Built Vulnerable Environments Based on Docker-Compose
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
WEB_Penetration Testing Methodology , Notes and Tips
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.