Beast code in Giters

yang's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT59231 18180

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPMIT56368 1901 261

PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Language:C#NOASSERTION15564 224 182

GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Language:HTMLGPL-3.010530 142 47

webshell

This is a webshell open source project

Language:PHPMIT9961 488 31

windows-kernel-exploits

windows-kernel-exploits Windows平台提权漏洞集合

Language:CMIT7993 440 16

exploitdb

The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb

GPL-2.07697 736 95

LinEnum

Scripted Local Linux Enumeration & Privilege Escalation Checks

Language:ShellMIT6893 196 29

All-Defense-Tool

本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms、OA漏洞利用工具，爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。

5163 99 9

naabu

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Language:GoMIT4546 69 334

AD-Attack-Defense

Attack and defend active directory using modern post exploitation adversary tradecraft activity

4360 221 5

InfoSec-Black-Friday

All the deals for InfoSec related software/tools this Black Friday

2865 241 28

OSCPRepo

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Language:CMIT2477 169 10

penetration-suite-toolkit

本项目制作的初衷是帮助渗透新手快速搭建工作环境，工欲善其事，必先利其器。

2402 32 91

clash-for-linux-backup

基于Clash Core 制作的Clash For Linux备份仓库 A Clash For Linux Backup Warehouse Based on Clash Core

Language:ShellGPL-3.01970 10 74

pimpmykali

Kali Linux Fixes for Newly Imported VM's

Language:Shell1840 550

Finger

一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具

Language:Python1552 17 45

SweetPotato

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

Language:C#1533 19 13

OSEP-Code-Snippets

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

Language:C#1095 20 6

ClickShow

鼠标点击特效

Language:C#MIT939 12 54

JustTryHarder

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Language:Python789 330

vulntarget

vulntarget靶场系列

GPL-3.0659 6 5

SUID3NUM

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Language:PythonMIT611 19 4