L0nm4r

threat-broadcast

威胁情报播报

xdebug-trace-tree

Very simple XDebug trace web GUI

clash-verge-rev

Continuation of Clash Verge - A Clash Meta GUI based on Tauri (Windows, MacOS, Linux)

arthas

Alibaba Java Diagnostic Tool Arthas/Alibaba Java诊断利器Arthas

lua4dec

Lua 4.0 Decompiler

QuickNC

QuickNC，快速监听端口进行调试

MS-SharePoint-July-Patch-RCE-PoC

CMS-Hunter

CMS漏洞测试用例集合

SecurityList

A list for Web Security and Code Audit

watchvuln

一个高价值漏洞采集与推送服务 | collect valueable vulnerability and push it

CVE-2024-1086

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.

Leaked-Credentials

how to look for Leaked Credentials !

Corsy

CORS Misconfiguration Scanner

uro

declutters url lists for crawling/pentesting

URLFinder

一款快速、全面、易用的页面信息提取工具，可快速发现和提取页面中的JS、URL和敏感信息。

403bypasser

can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

subzy

Subdomain takeover vulnerability checker

apkleaks

Scanning APK file for URIs, endpoints & secrets.

Diggy

Extract endpoints from apk files.

POC-bomber

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

onlinetools

在线cms识别|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..

gosub-engine

A web browser in the making. More info at https://gosub.io

go-simplejson

a Go package to interact with arbitrary JSON

rdpgo

Go进阶53:从零Go实现Websocket-H5-RDP/VNC远程桌面客户端

WatchAD2.0

WatchAD2.0是一款针对域威胁的日志分析与监控系统

jsproxy

一个利用浏览器当代理的demo项目,让所有访问者的浏览器成为自己的代理池，所到之处皆为代理节点.

ChYing

承影 - 一款安全工具箱,集成了目录扫描、JWT、Swagger 测试、编/解码、轻量级 BurpSuite、杀软辅助功能

Luotuo-Chinese-LLM

骆驼(Luotuo): Open Sourced Chinese Language Models. Developed by 陈启源 @ 华中师范大学 & 李鲁鲁 @ 商汤科技 & 冷子昂 @ 商汤科技

go-curl

golang curl(libcurl) binding.