977812671

followers

following

stars

apple

977812671's starred repositories

player.js

Interact with and control an embedded Vimeo Player.

Language:JavaScriptMIT142700

clickjackingpoc

A Proof of Concept for Clickjacking Attacks

Language:CSSGPL-2.05000

lazyCSRF

A more useful CSRF PoC generator on Burp Suite

Language:JavaMIT8700

Research-Data

100

CrossSiteContentHijacking

Content hijacking proof-of-concept using Flash, PDF and Silverlight

Language:HTMLAGPL-3.038000

paynode

Mega library that includes various loadable modules for interacting with different payment gateways

Language:JavaScript300

paypal-woocommerce

PayPal payment gateway extension for WooCommerce.

Language:PHPGPL-3.012500

WechatExporter

Wechat Chat History Exporter 微信聊天记录导出备份程序

Language:C++GPL-2.0606000

WeChatMsg

提取微信聊天记录，将其导出成HTML、Word、Excel文档永久保存，对聊天记录进行分析生成年度聊天报告，用聊天数据训练专属于个人的AI聊天助手

Language:PythonGPL-3.03204700

PyWxDump

获取微信账号信息(昵称/账号/手机/邮箱/数据库密钥/wxid)；PC微信数据库读取、解密脚本；聊天记录查看工具；聊天记录导出为html(包含语音图片)。支持多账户信息获取，支持所有微信版本。

Language:PythonNOASSERTION447600

CVE-2024-4367-PoC

CVE-2024-4367 & CVE-2024-34342 Proof of Concept

Language:Python8700

Web-Fuzzing-Box

Web Fuzzing Box - Web 模糊测试字典与一些Payloads

Language:HTML208900

disu

包含crt.sh、fullhunt、fofa、360quake、fofa、hunter、virustotal、zoomeye、rapiddns、certspotter、chaziyu、dnsscan、threatminer的一款收集子域名的集成工具。

Language:Python10200

rapiddns

Rapidly enumerate subdomains and domains using rapiddns.io.

Language:PythonMIT5700

JWT_Clack

JWT签名爆破

Language:Python200

CrackJWTKey

JWT秘钥爆破脚本

Language:Python1900

JWT_GUI

基于pyqt5和pyjwt实现的jwt加解密爆破一体化工具(ps:其实是水的python课设)

1300

HaE

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Language:JavaApache-2.0270800

TsojanScan

An integrated BurpSuite vulnerability detection plug-in.

JsRouteScan

Burpsuite - Js Route Scan 正则匹配获取响应中的路由进行被动探测与递归目录探测的burp插件

Language:Java18900

Autorize

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

Language:Python2700

CaA

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

Language:JavaApache-2.070900

Hacking-Group-0872-Slide

Here is Hacking-Group-0872-Slide

2700

EZ

EZ是一款集信息收集、端口扫描、服务暴破、URL爬虫、指纹识别、被动扫描为一体的跨平台漏洞扫描器。

http-request-smuggler

Language:JavaNOASSERTION95000

PentestGPT

A GPT-empowered penetration testing tool

Language:PythonMIT680400

Advanced-SQL-Injection-Cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

Jie

Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gathering, and exploitation, elevating it to an indispensable toolkit for both security professionals and penetration testers. 挖洞辅助工具(漏洞扫描、信息收集)

Language:GoAGPL-3.054500

gatherBurp

一款burp插件,请看简介

Language:Java36500

XSS-Bypass-Filters