SecLoop's repositories
APIKit
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
Awesome-Redteam
一个攻防知识仓库 Red Teaming and Offensive Security
aws-vault
A vault for securely storing and accessing AWS credentials in development environments
Choccy
GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)
EasyEASM
Zero-dollar attack surface management tool
electron_shell
Developing a more covert Remote Access Trojan (RAT) tool by leveraging Electron's features for command injection and combining it with remote control methods.
evilarc-go
Create tar/zip/tgz/bz2 archives that can exploit directory traversal and symlink vulnerabilities
gin-vue-admin
🚀Vite+Vue3+Gin的开发基础平台,支持TS和JS混用。它集成了JWT鉴权、权限管理、动态路由、显隐可控组件、分页封装、多点登录拦截、资源权限、上传下载、代码生成器、表单生成器和可配置的导入导出等开发必备功能。
gotlcp
Go语言实现的传输层密码协议(TLCP GMSSL),TLCP协议遵循 GB/T 38636-2020 Information security technology Transport Layer Cryptography Protocol (TLCP)
IoTSecurity101
A Curated list of IoT Security Resources
JavaSec
a rep for documenting my study, may be from 0 to 0.1
js-cookie-monitor-debugger-hook
js cookie逆向利器:js cookie变动监控可视化工具 & js cookie hook打条件断点
JsRpc
远程调用(rpc)浏览器方法,免去抠代码补环境
JYso
It can be either a JNDIExploit or a ysoserial. JYso是一个可以用于 jndi 注入攻击和生成反序列化数据流的工具。
kubetcd
Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
lucky
软硬路由公网神器,ipv6/ipv4 端口转发,反向代理,DDNS,WOL,ipv4 stun内网穿透,cron,acme,阿里云盘,ftp,webdav,filebrowser
MoonBox
月光宝盒:无侵入的流量录制与回放平台 A server-side traffic capture and replay platform with noninvasive
Mshell
Memshell-攻防内存马研究
network_proxy_flutter
开源免费抓包软件ProxyPin,支持全平台系统,用flutter框架开发
port_reuse
golang 实现的windows and linux 端口复用工具。
QlRules
Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.
router-router
Java web路由内存分析工具
SCFProxy
A proxy tool based on cloud function.
teler
Real-time HTTP Intrusion Detection
twiki
T Wiki 云安全知识文库,可能是国内首个云安全知识文库?
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter