Asiimov's repositories
HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
impacket
Impacket is a collection of Python classes for working with network protocols.
afrog-pocs
afrog-pocs 是 afrog 漏洞检测工具的官方 PoCs(Proof of Concepts)库。
ARL
ARL官方仓库备份项目+指纹添加工具:ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Awesome-Redteam
一个红队知识仓库
awesome-security-weixin-official-accounts
网络安全类公众号推荐,欢迎大家推荐
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
burpsuite_hack
一款代理SQLI扫描器
domain_hunter_pro
domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等
e0e1-abroad
e0e1-abroad 国外项目范围收集
ecapture
Capture SSL/TLS text content without a CA certificate using eBPF. This tool is compatible with Linux/Android x86_64/Aarch64.
ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
h1domains
HackerOne "in scope" domains
hackerone-reports
Top disclosed reports from HackerOne
NucleiTP
自动整合全网Nuclei的漏洞POC,实时同步更新最新POC!
PerlinPuzzle-Webshell-PHP
使用分支对抗技术制作的PHP Webshell,截止2024年1月18日,共数十个查杀引擎免杀
pyhackme
接近真实世界的web漏洞靶场
Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
sec_profile
爬取secwiki和xuanwu.github.io/sec.today,分析安全信息站点、安全趋势、提取安全工作者账号(twitter,weixin,github等)
SecDictionary
实战沉淀字典
sperm
浏览过的精彩逆向文章汇总,值得一看
trufflehog
Find and verify secrets
variant
Go Anti-Virus Framework免杀
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
vulnerability-paper
收集的文章 https://mrwq.github.io/vulnerability-paper/
Vulnerability-Wiki
一个基于 docsify 的综合漏洞知识库,目前漏洞数量 900+
wealth-learning
:books: 财富自由资料库
web-sec
WEB安全手册(红队安全技能栈),漏洞理解,漏洞利用,代码审计和渗透测试总结。【持续更新】