BlackJack0

HowToCook

程序员在家做饭方法指南。Programmer's guide about how to cook at home (Simplified Chinese only).

Probable-Wordlists

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

cve

Gather and update all available and newest CVEs with their PoC.

arkime

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

cuckoo

Cuckoo Sandbox is an automated dynamic malware analysis system

Viper

Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台

pikachu

一个好玩的Web安全-漏洞测试平台

securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, and case management. It also includes other tools such as Playbook, osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

Information_Security_Books

信息安全方面的书籍

penetration-suite-toolkit

本项目制作的初衷是帮助渗透新手快速搭建工作环境，工欲善其事，必先利其器。

railgun

Pentest_Interview

个人准备渗透测试和安全面试的经验之谈，和去部分厂商的面试题，干货真的满满~

Pentest-Windows

Windows11 Penetration Suite Toolkit 一个开箱即用的windows渗透测试环境

bruteforce-database

Bruteforce database

ThreatPursuit-VM

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

SELKS

A Suricata based IDS/IPS/NSM distro

offensive-ai-compilation

A curated list of useful resources that cover Offensive AI.

x64dbg-Plugin-Manager

Plugin manager for x64dbg

WeChat_tweak

iOS版功能最全的微信插件，支持最新版微信，具备自动抢红包，屏蔽消息和群消息，过滤特定的群聊，防止撤回消息，伪定位 (朋友圈和附近的人)，修改微信运动步数和实时取景做聊天页的背景等功能。

sec-books-part1

:books: 网安类绝版图书

Malware-IOCs

yarb

方便获取每日安全资讯的爬虫和推送程序

Limon

Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open source tools

IOCs

Indicators of Compromise

CVE-Vulnerability-Information-Downloader

Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports from vulnerability scanners like OpenVAS can be enriched with this information to prioritize remediation. The repository also contains a PowerBI template to show how such a dashboard can be created.

CuckooVM

Cuckoo running in a nested hypervisor

sec-gzh-2022

网络安全类公众号离线备份