Stars
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
蓝队分析研判工具箱,功能包括内存马反编译分析、各种代码格式化、网空资产测绘功能、溯源辅助、解密冰蝎流量、解密哥斯拉流量、解密Shiro/CAS/Log4j2的攻击payload、IP/端口连接分析、各种编码/解码功能、蓝队分析常用网址、java反序列化数据包分析、Java类名搜索、Fofa搜索、Hunter搜索等。
This challenge is Inon Shkedy's 31 days API Security Tips.
Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.
Automated Security Testing For REST API's
Ridter / VcenterKit
Forked from W01fh4cker/VcenterKitVcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit
WEB安全手册(红队安全技能栈),漏洞理解,漏洞利用,代码审计和渗透测试总结。【持续更新】
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widesprea…
Automation for javascript recon in bug bounty.
whohk,linux下一款强大的应急响应工具 在linux下的应急响应往往需要通过繁琐的命令行来查看各个点的情况,有的时候还需要做一些格式处理,这对于linux下命令不是很熟悉的人比较不友好。本工具将linux下应急响应中常用的一些操作给集合了起来,并处理成了较为友好的格式,只需要通过一个参数就能代替繁琐复杂的命令来实现对各个点的检查。
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。