Stars
makedangdang / kiterunner
Forked from assetnote/kiterunnerContextual Content Discovery Tool
Collection of methodology and test case for various web vulnerabilities.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
makedangdang / redteam_vul
Forked from r0eXpeR/redteam_vul红队作战中比较常遇到的一些重点系统漏洞整理。
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
2011-2019年Top100弱口令密码字典 Top1000密码字典 服务器SSH/VPS密码字典 后台管理密码字典 数据库密码字典 子域名字典
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
RGPerson - Randomly generate identity information
QAQ Just study unserialize vulnerabilities in Java :)
超级弱口令检查工具是一款Windows平台的弱口令审计工具,支持批量多线程检查,可快速发现弱密码、弱口令账号,密码支持和用户名结合进行检查,大大提高成功率,支持自定义服务端口和字典。
(反编译微信小程序)一键获取微信小程序源码(傻瓜式操作), 使用了C#加nodejs制作
一款长亭自研的完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
A list of public penetration test reports published by several consulting firms and academic security groups.
Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)