keo's repositories
webshell-bypassed-human
过人 webshell 的生成工具
AlliN
A flexible scanner
ApkAnalyser
一键提取安卓应用中可能存在的敏感信息。
Awesome-Redteam
一个攻防知识仓库
Chinese-Security-RSS
网络安全资讯的RSS订阅,网络安全博客的RSS订阅,网络安全公众号的RSS订阅
f8x
红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool
FuckPHP
《PHP安全-只有PHP安全才能拯救世界》Only PHP Security Can Save The World.
GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
HackMySQL
Using To MySQL Elevate Privileges.
InCloud
运行于GitHub Actions 的仓库中自动化、自定义和执行软件开发工作流程,可以自己根据喜好定制功能,InCloud已经为您定制好了八种针对网段和域名的不同场景的信息收集与漏洞扫描流程。
infoooze
Infoooze is an Open-source intelligence (OSINT) tool in NodeJs. It provides various modules that allow efficient searches.
linux-smart-enumeration
Linux enumeration tool for pentesting and CTFs with verbosity levels
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Pentest_Note
渗透测试常规操作记录
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
rengine-bak
reNgine is a
rhizobia_P
PHP安全SDK及编码规范
Sec-Interview-4-2023
一个2023届毕业生在毕业前持续更新、收集的安全岗面试题及面试经验分享~
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
USTC-CS-Courses-Resource
:heart:**科学技术大学计算机学院课程资源(https://mbinary.xyz/ustc-cs/)
VcenterKit
Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit
vulnerability-paper
收集的文章 https://mrwq.github.io/vulnerability-paper/
windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
wxapkg-convertor
一个反编译微信小程序的工具,仓库也收集各种微信小程序/小游戏.wxapkg文件