Rambo-996

followers

following

stars

Rambo's starred repositories

geye

🚀Faster Github Monitor🚀

Language:PythonGPL-3.010400

Java-Unserialization-Study

QAQ Just study unserialize vulnerabilities in Java :)

Language:JavaMIT19700

mimikatz

A little tool to play with Windows security

Language:C1944900

Red-Teaming-Toolkit

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

GPL-3.0909300

b374k

PHP Webshell with handy features

Language:CSSMIT239900

facebook-bug-bounty-writeups

Facebook Bug Bounties

fuzzdb

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

Language:PHP823800

ActiveScanPlusPlus

ActiveScan++ Burp Suite Plugin

Language:PythonApache-2.058500

RW_Password

此项目用来提取收集以往泄露的密码中符合条件的强弱密码

Language:Python110800

webshell

入侵分析时发现的Webshell后门

Language:Java27000

DBScanner

自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch)，包含未授权访问及常规弱口令检测

Language:PythonAGPL-3.056300

linux-exploit-suggester-2

Next-Generation Linux Kernel Exploit Suggester

Language:PerlGPL-2.0185800

cupp

Common User Passwords Profiler (CUPP)

Language:PythonGPL-3.0449900

CeWL

CeWL is a Custom Word List Generator

Language:Ruby198900

pydictor

A powerful and useful hacker dictionary builder for a brute-force attack

Language:PythonGPL-3.0329300

vulstudy

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。

Language:Shell224100

ngrok

Unified ingress for developers

Language:GoNOASSERTION2417700

powerline-shell

A beautiful and useful prompt for your shell

Language:PythonMIT622400

xsshunter

The XSS Hunter service - a portable version of XSSHunter.com

Language:JavaScriptMIT149100

GitPrey

Searching sensitive files and contents in GitHub associated to company name or other key words

Language:PythonGPL-3.060300

can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Language:PythonCC-BY-4.0486200

ImageOCR

PHP验证码识别[PHP CAPTCHA Recognition]

Language:PHPMIT27400

w12scan-client

网络资产搜索发现引擎，w12scan 扫描端程序

Language:PythonMIT21600

WDScanner

WDScanner平台目前实现了如下功能：分布式web漏洞扫描、客户管理、漏洞定期扫描、子域名枚举、端口扫描、网站爬虫、暗链检测、坏链检测、网站指纹搜集、专项漏洞检测、代理搜集及部署等功能。

Language:PHP204700

IntruderPayloads

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Language:BlitzBasic368100

dictionaries

Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks

Language:Python23200

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPMIT5843700

wfuzz

Web application fuzzer

Language:PythonGPL-2.0595800

Mirai-Source-Code

Leaked Mirai Source Code for Research/IoC Development Purposes

Language:CGPL-3.0853500

xvwa

XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.

Language:PHPGPL-3.0169800