Stars
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
ZigStrike, a powerful Payload Delivery Pipeline developed in Zig, offering a variety of injection techniques and anti-sandbox features.
Expose your local network and services to public safely
用于Linux应急响应,快速排查异常用户登录情况和入侵信息排查,准确定位溯源时间线,高效辅助还原攻击链。
httpgo是一个web指纹识别工具,支持多线程、HTTP代理、批量识别、保存结果、截图展示。可自行添加指纹。
Native white-box auditing tool for LLM with native MCP support🛠️🔍🤖
基于Deeplx和Playwright提供的简单易用,快速,免费,不限制文件大小,支持超长文本翻译,跨平台的文件翻译工具 / Easy-to-use, fast, free, unlimited file size and cross platform file translation tool based on Deeplx & Playwright that supports long …
🧙♂️ Node.js Command & Control for Script-Jacking Vulnerable Electron Applications
利用AI大模型,一键生成高清短视频 Generate short videos with one click using AI LLM.
Burp Plugin to Bypass WAFs through the insertion of Junk Data
CScan 是一个基于Go语言开发的网络空间资产搜索工具,支持多个主流网络空间搜索引擎:FOFA Hunter Quake,能够快速搜索IP、域名等资产信息。
Open-source file hosting solution based on CloudFlare (Image hosting/File storage/Cloud drive) / 基于 CloudFlare 的开源文件托管解决方案(图床/文件床/网盘)
一个基于 NextJS + Cloudflare 技术栈构建的可爱临时邮箱服务🎉
A modern, feature-rich, databaseless flat-file wiki platform built with Go.
A web honeypot library to create vulnerable-looking endpoints to detect and mislead attackers
AutoFuzz是一款安全测试的辅助型BurpSuite插件,主要用于自动识别请求中的参数,根据预设的payload逐个发包测试,从而提高测试效率。
SSRF_Detector是一款基于Burpsuite MontoyaAPI的黑盒SSRF漏洞自动化检测工具,用于检测无回显&全回显SSRF漏洞,提供了多种功能供用户自定义,包括但不限于关键字配置,Payload配置以及检测字符串配置