所有收集类项目:

收集的所有开源工具: sec-tool-list: 超过18K, 包括Markdown和Json两种格式
安全资源收集类的 Repo: 1000+各类安全资源收集的Github Repo
全平台逆向资源:
- Windows平台安全: PE/DLL/DLL-Injection/Dll-Hijack/Dll-Load/UAC-Bypass/Sysmon/AppLocker/ETW/WSL/.NET/Process-Injection/Code-Injection/DEP/Kernel/...
- Linux安全: ELF/...
- macOS/iXxx安全: Mach-O/越狱/LLDB/XCode/...
- Android安全: HotFix/XPosed/Pack/Unpack/Emulator/Obfuscate
- 知名工具: IDA/Ghidra/x64dbg/OllDbg/WinDBG/CuckooSandbox/Radare2/BinaryNinja/DynamoRIO/IntelPin/Frida/QEMU/...
攻击性网络安全资源: 漏洞/渗透/物联网安全/数据渗透/Metasploit/BurpSuite/KaliLinux/C&C/OWASP/免杀/CobaltStrike/侦查/OSINT/社工/密码/凭证/威胁狩猎/Payload/WifiHacking/无线攻击/后渗透/提权/UAC绕过/...
网络相关的安全资源:
- 网络通信: 代理/SS/V2ray/GFW/反向代理/隧道/VPN/Tor/I2P/...
- 网络攻击: 中间人/PortKnocking/...
- 网络分析: 嗅探/协议分析/网络可视化/网络分析/网络诊断等
开源远控和恶意远控分析报告: 开源远控工具: Windows/Linux/macOS/Android; 远控类恶意恶意代码的分析报告等
Webshell工具和分析/使用文章: Webshell资源收集, 包括150个Github项目, 200个左右文章
取证相关工具和文章: 近300个取开源取证工具，近600与取证相关文章
蜜罐资源: 250+个开源蜜罐工具，350+与蜜罐相关文章
Burp Suite资源: 400+个开源Burp插件，500+与Burp相关文章

说明

英文版本
因Github Readme显示行数有限, 当前页面显示的为不完整版, 只显示了星数最高的前1000个工具. 点击查看完整版

工具列表

[45779星][19d] [C#] shadowsocks/shadowsocks-windows Shadowsocks的Windows客户端
[35448星][18d] [Py] scrapy/scrapy Scrapy, a fast high-level web crawling & scraping framework for Python.
[34576星][1m] [C++] x64dbg/x64dbg Windows平台x32/x64调试器
[34492星][3m] hack-with-github/awesome-hacking A collection of various awesome lists for hackers, pentesters and security researchers
[34045星][1m] [Py] minimaxir/big-list-of-naughty-strings “淘气”的字符串列表，当作为用户输入时很容易引发问题
[32060星][4y] [Py] shadowsocks/shadowsocks shadowsocks原版
[31162星][1m] [Go] fatedier/frp 快速的反向代理, 将NAT或防火墙之后的本地服务器暴露到公网
[27964星][1m] [JS] algorithm-visualizer/algorithm-visualizer an interactive online platform that visualizes algorithms from code.
[27960星][23d] [Kotlin] shadowsocks/shadowsocks-android A shadowsocks client for Android
[26047星][17d] [Py] certbot/certbot Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
[26031星][17d] [Py] certbot/certbot Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
[26004星][2m] [Swift] shadowsocks/shadowsocksx-ng Next Generation of ShadowsocksX
[25531星][28d] [Go] v2ray/v2ray-core A platform for building proxies to bypass network restrictions.
[24956星][14d] xitu/gold-miner 翻译优质互联网技术文章的社区
[24868星][22d] trimstray/the-book-of-secret-knowledge A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
[22613星][1m] [Shell] mathiasbynens/dotfiles
[22210星][4d] [PHP] danielmiessler/seclists 多种类型资源收集：用户名、密码、URL、敏感数据类型、Fuzzing Payload、WebShell等
[22020星][1m] [Go] filosottile/mkcert A simple zero-config tool to make locally trusted development certificates with any names you'd like.
[20779星][14d] [Java] skylot/jadx dex 转 java 的反编译器
[20221星][19d] [Shell] streisandeffect/streisand Streisand sets up a new server running your choice of WireGuard, OpenConnect, OpenSSH, OpenVPN, Shadowsocks, sslh, Stunnel, or a Tor bridge. It also generates custom instructions for all of these services. At the end of the run you are given an HTML file with instructions that can be shared with friends, family members, and fellow activists.
[19929星][1m] [C++] cmderdev/cmder Lovely console emulator package for Windows
[19823星][6d] [Jupyter Notebook] camdavidsonpilon/probabilistic-programming-and-bayesian-methods-for-hackers aka "Bayesian Methods for Hackers": An introduction to Bayesian methods + probabilistic programming with a computation/understanding-first, mathematics-second point of view. All in pure Python ;)
[19768星][3d] [Rust] jwilm/alacritty A cross-platform, GPU-accelerated terminal emulator
[19678星][8m] [TS] railsware/upterm A terminal emulator for the 21st century.
[19408星][1y] alvin9999/new-pac 科学/自由上网，免费ss/ssr/v2ray/goflyway账号，搭建教程
[19127星][18d] [Ruby] rapid7/metasploit-framework Metasploit Framework
[18703星][3y] fallibleinc/security-guide-for-developers Security Guide for Developers (实用性开发人员安全须知)
[18703星][17d] [Java] alibaba/arthas Alibaba Java诊断利器Arthas
[18649星][16d] [Java] nationalsecurityagency/ghidra 软件逆向框架
[17711星][4y] [Go] inconshreveable/ngrok 反向代理，在公网终端和本地服务之间创建安全的隧道
[17472星][29d] [Haskell] koalaman/shellcheck shellcheck: bash/sh脚本静态检测工具, 给出警告和建议
[17196星][21d] [Py] mitmproxy/mitmproxy An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
[17016星][9d] [C#] powershell/powershell PowerShell for every system!
[16279星][24d] [Py] trailofbits/algo algo：Ansible 脚本（基于Python），简化配置私人 IPSEC VPN 的过程，默认使用最安全的配置，支持常见云提供商，并且大多数设备都不需要客户端
[15897星][18d] [Py] sqlmapproject/sqlmap Automatic SQL injection and database takeover tool
[15856星][15d] [C] curl/curl 命令行工具和库，使用URL语法传输数据，支持HTTP，HTTPS，FTP，FTPS，GOPHER，TFTP，SCP，SFTP，SMB，TELNET，DICT，LDAP，LDAPS，FILE，IMAP，SMTP，POP3，RTSP和RTMP。libcurl提供了许多强大的功能
[15812星][10m] micropoor/micro8 从业10年渗透笔记
[15401星][2m] [Py] drduh/macos-security-and-privacy-guide Guide to securing and improving privacy on macOS
[14867星][2m] gfwlist/gfwlist gfwlist
[14557星][19d] [Java] tencent/tinker Tinker is a hot-fix solution library for Android, it supports dex, library and resources update without reinstall apk.
[14552星][2m] [Py] corentinj/real-time-voice-cloning Clone a voice in 5 seconds to generate arbitrary speech in real-time
[13941星][2m] [Py] binux/pyspider A Powerful Spider(Web Crawler) System in Python.
[13874星][24d] [JS] bannedbook/fanqiang 翻墙-科学上网
[13448星][24d] [Go] jesseduffield/lazydocker The lazier way to manage everything docker
[13393星][19d] [Vue] liyasthomas/postwoman
[13110星][1m] [Py] cool-rr/pysnooper Never use print for debugging again
[12738星][1m] [C] shadowsocks/shadowsocks-libev libev port of shadowsocks
[12676星][20d] [C#] 0xd4d/dnspy .NET debugger and assembly editor
[12335星][2m] [Ruby] diaspora/diaspora A privacy-aware, distributed, open source social network.
[12323星][17d] [Java] signalapp/signal-android A private messenger for Android.
[12302星][17d] [Java] signalapp/signal-android A private messenger for Android.
[12171星][2m] [Shell] hwdsl2/setup-ipsec-vpn Scripts to build your own IPsec VPN server, with IPsec/L2TP and Cisco IPsec on Ubuntu, Debian and CentOS
[12080星][18d] [JS] gitsquared/edex-ui A cross-platform, customizable science fiction terminal emulator with advanced monitoring & touchscreen support.
[12024星][2m] [Go] buger/goreplay 实时捕获HTTP流量并输入测试环境，以便持续使用真实数据测试你的系统
[11954星][24d] [C] openssl/openssl TLS/SSL and crypto library
[11760星][7m] [QML] swordfish90/cool-retro-term A good looking terminal emulator which mimics the old cathode display...
[11682星][27d] getlantern/download Lantern官方版本下载蓝灯翻墙科学上网外网加速器梯子路由
[11588星][18d] [C] radareorg/radare2 unix-like reverse engineering framework and commandline tools
[11554星][3d] [Py] swisskyrepo/payloadsallthethings A list of useful payloads and bypass for Web Application Security and Pentest/CTF
[11489星][2m] facert/awesome-spider 爬虫集合
[11486星][4m] [C] robertdavidgraham/masscan masscan：世界上最快的互联网端口扫描器，号称可6分钟内扫描整个互联网
[11435星][5d] [Py] owasp/cheatsheetseries The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
[11402星][16d] [Java] oracle/graal Run Programs Faster Anywhere
[11294星][17d] [Go] xtaci/kcptun A Stable & Secure Tunnel based on KCP with N:M multiplexing and FEC. Available for ARM, MIPS, 386 and AMD64
[11213星][3m] [Jupyter Notebook] selfteaching/the-craft-of-selfteaching One has no future if one couldn't teach themself.
[11034星][2y] [ObjC] bang590/jspatch JSPatch bridge Objective-C and Javascript using the Objective-C runtime. You can call any Objective-C class and method in JavaScript by just including a small engine. JSPatch is generally used to hotfix iOS App.
[10995星][10d] [ObjC] flipboard/flex An in-app debugging and exploration tool for iOS
[10944星][3m] [CSS] hacker0x01/hacker101 Hacker101
[10920星][1m] enaqx/awesome-pentest 渗透测试资源/工具集
[10798星][2y] [CoffeeScript] dropbox/zxcvbn Low-Budget Password Strength Estimation
[10794星][1m] [Java] konloch/bytecode-viewer A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
[10775星][4m] [JS] http-party/node-http-proxy A full-featured http proxy for node.js
[10735星][15d] [Go] txthinking/brook Go语言编写的跨平台代理
[10693星][3m] [Shell] nyr/openvpn-install OpenVPN road warrior installer for Debian, Ubuntu and CentOS
[10615星][24d] ruanyf/weekly 科技爱好者周刊，每周五发布
[10485星][13d] [Ruby] rubocop-hq/rubocop A Ruby static code analyzer and formatter, based on the community Ruby style guide.
[10378星][17d] [Go] goharbor/harbor An open source trusted cloud native registry project that stores, signs, and scans content.
[9911星][9m] imthenachoman/how-to-secure-a-linux-server An evolving how-to guide for securing a Linux server.
[9850星][27d] [C++] valvesoftware/proton Compatibility tool for Steam Play based on Wine and additional components
[9767星][18d] [Py] sherlock-project/sherlock Find Usernames Across Social Networks
[9761星][2m] [Shell] alex000kim/nsfw_data_scraper Collection of scripts to aggregate image data for the purposes of training an NSFW Image Classifier
[9561星][19d] [Go] cnlh/nps 一款轻量级、功能强大的内网穿透代理服务器。支持tcp、udp流量转发，支持内网http代理、内网socks5代理，同时支持snappy压缩、站点保护、加密传输、多路复用、header修改等。支持web图形化管理，集成多用户模式。
[9550星][26d] [Go] gocolly/colly Elegant Scraper and Crawler Framework for Golang
[9519星][26d] [JS] valve/fingerprintjs2 Modern & flexible browser fingerprinting library
[9517星][19d] [ObjC] gnachman/iterm2 iTerm2 is a terminal emulator for Mac OS X that does amazing things.
[9378星][1m] [Ruby] postalhq/postal 全功能邮件服务器
[9361星][1m] [Java] ibotpeaches/apktool A tool for reverse engineering Android apk files
[9330星][4m] [JS] localtunnel/localtunnel expose yourself
[9321星][5d] [C#] icsharpcode/ilspy .NET Decompiler
[9143星][1m] [PS] lukesampson/scoop A command-line installer for Windows.
[9063星][3m] vitalysim/awesome-hacking-resources A collection of hacking / penetration testing resources to make you better!
[9009星][19d] [C++] yuzu-emu/yuzu Nintendo Switch Emulator
[8859星][7m] [Go] rkt/rkt rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.
[8838星][2m] [Java] android-hacker/virtualxposed A simple app to use Xposed without root, unlock the bootloader or modify system image, etc.
[8785星][1m] [C] gentilkiwi/mimikatz A little tool to play with Windows security
[8684星][2y] [Java] code4craft/webmagic A scalable web crawler framework for Java.
[8618星][11m] [Py] waditu/tushare TuShare is a utility for crawling historical data of China stocks
[8602星][2m] microsoft/wsl Issues found on WSL
[8600星][1y] [C] irungentoo/toxcore toxcore：即时通讯，支持所有主流平台
[8564星][8m] [Shell] 233boy/v2ray 最好用的 V2Ray 一键安装脚本 & 管理脚本
[8455星][22d] [Py] wifiphisher/wifiphisher 流氓AP框架, 用于RedTeam和Wi-Fi安全测试
[8434星][2y] brannondorsey/wifi-cracking 破解WPA/WPA2 Wi-Fi 路由器
[8335星][2m] [Py] jhao104/proxy_pool Python爬虫代理IP池
[8180星][19d] [JS] netflix/pollyjs Record, Replay, and Stub HTTP Interactions.
[8140星][3d] [Shell] retropie/retropie-setup Shell script to set up a Raspberry Pi/Odroid/PC with RetroArch emulator and various cores
[8048星][1m] trimstray/the-practical-linux-hardening-guide This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
[8031星][3m] [Py] facebook/chisel Chisel is a collection of LLDB commands to assist debugging iOS apps.
[8020星][18d] [Py] mailpile/mailpile A free & open modern, fast email client with user-friendly encryption and privacy features
[7969星][4y] [Go] cyfdecyf/cow HTTP proxy written in Go. COW can automatically identify blocked sites and use parent proxies to access.
[7958星][4y] [ObjC] shadowsocks/shadowsocks-ios Removed according to regulations.
[7875星][1m] [C++] shiqiyu/libfacedetection An open source library for face detection in images. The face detection speed can reach 1500FPS.
[7818星][16d] [JS] gchq/cyberchef The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
[7748星][16d] [Go] git-lfs/git-lfs Git extension for versioning large files
[7733星][2m] [Java] java-decompiler/jd-gui A standalone Java Decompiler GUI
[7717星][1y] [Java] didi/virtualapk A powerful and lightweight plugin framework for Android
[7675星][30d] [PHP] friendsofphp/goutte Goutte, a simple PHP Web Scraper
[7613星][4m] [Py] sovereign/sovereign A set of Ansible playbooks to build and maintain your own private cloud: email, calendar, contacts, file sync, IRC bouncer, VPN, and more.
[7589星][1m] [Go] snail007/goproxy Proxy是高性能全功能的http代理、https代理、socks5代理、内网穿透、内网穿透p2p、内网穿透代理、内网穿透反向代理、内网穿透服务器、Websocket代理、TCP代理、UDP代理、DNS代理、DNS加密代理，代理API认证，全能跨平台代理服务器。
[7547星][22d] [Py] threat9/routersploit Exploitation Framework for Embedded Devices
[7493星][17d] [Py] s0md3v/xsstrike Most advanced XSS scanner.
[7431星][2m] [C++] shadowsocks/shadowsocks-qt5 A cross-platform shadowsocks GUI client
[7424星][6m] [Py] scrapinghub/portia Visual scraping for Scrapy
[7307星][26d] [Java] lionsoul2014/ip2region Ip2region is a offline IP location library with accuracy rate of 99.9% and 0.0x millseconds searching performance. DB file is less then 5Mb with all ip address stored. binding for Java,PHP,C,Python,Nodejs,Golang,C#,lua. Binary,B-tree,Memory searching algorithm
[7261星][1y] [Py] clips/pattern Web mining module for Python, with tools for scraping, natural language processing, machine learning, network analysis and visualization.
[7207星][8m] [Shell] teddysun/shadowsocks_install Auto Install Shadowsocks Server for CentOS/Debian/Ubuntu
[7154星][2m] [Shell] kholia/osx-kvm Run macOS on QEMU/KVM. No support is provided at the moment.
[7039星][25d] [Go] future-architect/vuls 针对Linux/FreeBSD 编写的漏洞扫描器. Go 语言编写
[7035星][14d] [C] hashcat/hashcat 世界上最快最先进的密码恢复工具
[7020星][20d] [Go] nats-io/nats-server High-Performance server for NATS, the cloud native messaging system.
[7019星][16d] [JS] cs01/gdbgui Browser-based frontend to gdb (gnu debugger). Add breakpoints, view the stack, visualize data structures, and more in C, C++, Go, Rust, and Fortran. Run gdbgui from the terminal and a new tab will open in your browser.
[7010星][5m] [Shell] etherdream/jsproxy 一个基于浏览器端 JS 实现的在线代理
[6991星][4m] [Java] pxb1988/dex2jar Tools to work with android .dex and java .class files
[6964星][1m] greatfire/wiki 自由浏览
[6894星][2m] [Go] sqshq/sampler A tool for shell commands execution, visualization and alerting. Configured with a simple YAML file.
[6861星][1m] [Shell] awslabs/git-secrets Prevents you from committing secrets and credentials into git repositories
[6802星][10m] [Java] amitshekhariitbhu/android-debug-database A library for debugging android databases and shared preferences - Make Debugging Great Again
[6738星][22d] [C++] keepassxreboot/keepassxc KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
[6738星][19d] [Java] zaproxy/zaproxy 在开发和测试Web App时自动发现安全漏洞
[6712星][22d] [Py] h2y/shadowrocket-adblock-rules 提供多款 Shadowrocket 规则，带广告过滤功能。用于 iOS 未越狱设备选择性地自动翻墙。
[6685星][3y] [C++] alibaba/andfix AndFix is a library that offer hot-fix for Android App.
[6632星][19d] [TS] peers/peerjs Peer-to-peer data in the browser.
[6630星][19d] [Py] networkx/networkx 用于创建、操纵和研究复杂网络的结构，Python包
[6568星][7m] [Go] shadowsocks/shadowsocks-go go port of shadowsocks (Deprecated)
[6523星][1m] [Go] bettercap/bettercap 新版的bettercap, Go 编写. bettercap 是强大的、模块化、可移植且易于扩展的 MITM 框架, 旧版用 Ruby 编写
[6479星][18d] [Shell] cisofy/lynis Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
[6463星][9m] [HTML] open-power-workgroup/hospital OpenPower工作组收集汇总的医院开放数据
[6360星][4d] [C] softethervpn/softethervpn Cross-platform multi-protocol VPN software. Pull requests are welcome. The stable version is available at
[6353星][2m] [Py] seatgeek/fuzzywuzzy Fuzzy String Matching in Python
[6314星][6m] [PHP] guyueyingmu/avbook AV 电影管理系统， avmoo , javbus , javlibrary 爬虫，线上 AV 影片图书馆，AV 磁力链接数据库
[6285星][3y] [PS] powershellmafia/powersploit PowerSploit - A PowerShell Post-Exploitation Framework
[6245星][23d] [Java] droidpluginteam/droidplugin A plugin framework on android,Run any third-party apk without installation, modification or repackage
[6213星][7m] rmerl/asuswrt-merlin Enhanced version of Asus's router firmware (Asuswrt) (legacy code base)
[6211星][3m] [Py] yandex/gixy Nginx 配置静态分析工具，防止配置错误导致安全问题，自动化错误配置检测
[6203星][3m] [ObjC] johnno1962/injectionforxcode Runtime Code Injection for Objective-C & Swift
[6202星][25d] [JS] avwo/whistle 基于Node实现的跨平台抓包调试代理工具（HTTP, HTTP2, HTTPS, Websocket）
[6176星][14d] [C++] radareorg/cutter 逆向框架 radare2的Qt界面，iaito的升级版
[6175星][19d] [Go] henrylee2cn/pholcus 是一款用户只需编写采集规则的高并发分布式爬虫软件，支持单机、服务端、客户端三种运行模式，拥有Web、GUI、命令行三种操作界面
[6166星][10m] [JS] alibaba/anyproxy A fully configurable http/https proxy in NodeJS
[6149星][4m] [TS] chimurai/http-proxy-middleware
[6147星][24d] [Py] shengqiangzhang/examples-of-web-crawlers 一些非常有趣的python爬虫例子,对新手比较友好,主要爬取淘宝、天猫、微信、豆瓣、QQ等网站
[6147星][1y] [Hack] facebook/fbctf Platform to host Capture the Flag competitions
[6140星][10m] [Py] schollz/howmanypeoplearearound 检测 Wifi 信号统计你周围的人数
[6129星][24d] [C#] unity-technologies/unitycsreference Unity C# reference source code
[6113星][17d] [Go] quay/clair Vulnerability Static Analysis for Containers
[6113星][17d] [Go] quay/clair clair：容器（appc、docker）漏洞静态分析工具。
[6107星][30d] [Py] s0md3v/photon Incredibly fast crawler designed for OSINT.
[6105星][1m] [Go] usefathom/fathom Fathom Lite. Simple, privacy-focused website analytics. Built with Golang & Preact.
[6101星][3m] [Java] google/android-classyshark 分析基于Android/Java的App或游戏
[6096星][2y] [C] jgamblin/mirai-source-code Leaked Mirai Source Code for Research/IoC Development Purposes
[6094星][5m] [Java] qihoo360/replugin RePlugin - A flexible, stable, easy-to-use Android Plug-in Framework
[6055星][7m] [JS] haotian-wang/google-access-helper 谷歌访问助手破解版
[6052星][19d] [Py] cyrus-and/gdb-dashboard Modular visual interface for GDB in Python
[6052星][1m] berzerk0/probable-wordlists Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
[6005星][23d] [Py] gallopsled/pwntools CTF framework and exploit development library
[5929星][19d] [Py] asciimoo/searx 网络元数据搜索引擎。汇总70 多个搜索引擎的搜素结果，避免用户被追踪或者被分析。可与 Tor 结合使用
[5876星][3m] [Gnuplot] nasa-jpl/open-source-rover A build-it-yourself, 6-wheel rover based on the rovers on Mars!
[5874星][3m] [Py] luyishisi/anti-anti-spider 越来越多的网站具有反爬虫特性，有的用图片隐藏关键数据，有的使用反人类的验证码，建立反反爬虫的代码仓库，通过与不同特性的网站做斗争（无恶意）提高技术。
[5853星][2y] qinyuhang/shadowsocksx-ng-r Next Generation of ShadowsocksX
[5847星][22d] [C++] dolphin-emu/dolphin Dolphin is a GameCube / Wii emulator, allowing you to play games for these two platforms on PC with improvements.
[5829星][8m] [JS] sindresorhus/fkill-cli Fabulously kill processes. Cross-platform.
[5824星][3m] [C] spacehuhn/esp8266_deauther 使用ESP8266 制作Wifi干扰器
[5808星][2y] shadowsocksrr/shadowsocksr-android A ShadowsocksR client for Android
[5777星][4m] [ObjC] square/ponydebugger Remote network and data debugging for your native iOS app using Chrome Developer Tools
[5753星][24d] [Go] casbin/casbin An authorization library that supports access control models like ACL, RBAC, ABAC in Golang
[5752星][2y] [Py] newsapps/beeswithmachineguns 创建多个micro EC2实例, 攻击指定Web App
[5751星][9m] [C] xoreaxeaxeax/movfuscator C编译器，编译的二进制文件只有1个代码块。
[5740星][22d] [Py] kivy/python-for-android Turn your Python application into an Android APK
[5722星][3d] [JS] wix/detox Gray box end-to-end testing and automation framework for mobile apps
[5717星][1m] [JS] swagger-api/swagger-editor Swagger Editor
[5677星][2y] [JS] liftoff/gateone Gate One is an HTML5-powered terminal emulator and SSH client
[5659星][2m] [C] rofl0r/proxychains-ng proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained proxychains project. the sf.net page is currently not updated, use releases from github release page instead.
[5654星][2m] [Roff] max2max/freess 免费ss账号免费shadowsocks账号免费v2ray账号 (长期更新)
[5602星][16d] [Ruby] presidentbeef/brakeman ROR程序的静态分析工具
[5586星][2m] rshipp/awesome-malware-analysis A curated list of awesome malware analysis tools and resources.
[5513星][9m] carpedm20/awesome-hacking Hacking教程、工具和资源
[5451星][3m] [Py] axi0mx/ipwndfu open-source jailbreaking tool for many iOS devices
[5420星][18d] [Py] mlflow/mlflow Open source platform for the machine learning lifecycle
[5414星][2y] [Rust] autumnai/leaf Open Machine Intelligence Framework for Hackers. (GPU/CPU)
[5406星][6m] [C] pwn20wndstuff/undecimus unc0ver jailbreak for iOS 11.0 - 12.4
[5351星][29d] [Go] zricethezav/gitleaks Audit git repos for secrets
[5308星][19d] [C++] coatisoftware/sourcetrail Sourcetrail - free and open-source interactive source explorer
[5273星][1y] [Py] xiyoumc/webhubbot Python + Scrapy + MongoDB . 5 million data per day !!!
[5269星][1y] [Py] awslabs/aws-shell An integrated shell for working with the AWS CLI.
[5253星][9d] [Py] mobsf/mobile-security-framework-mobsf Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
[5229星][4m] [Py] ytisf/thezoo A repository of LIVE malwares for your own joy and pleasure.
[5228星][2m] [Py] refirmlabs/binwalk 固件分析工具（命令行+IDA插件）
- IDA插件
- binwalk
[5226星][19d] [Shell] denisidoro/navi An interactive cheatsheet tool for the command-line
[5217星][27d] [Swift] yanue/v2rayu V2rayU,基于v2ray核心的mac版客户端,用于科学上网,使用swift编写,支持vmess,shadowsocks,socks5等服务协议,支持订阅, 支持二维码,剪贴板导入,手动配置,二维码分享等
[5215星][12d] [Py] mobsf/mobile-security-framework-mobsf Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
[5214星][19d] [Shell] vulhub/vulhub Pre-Built Vulnerable Environments Based on Docker-Compose
[5214星][8m] [Py] usarmyresearchlab/dshell 可扩展的网络取证分析框架。支持快速开发插件，以支持剖析网络数据包捕获。
[5181星][1m] [PHP] tennc/webshell webshell收集
[5173星][1y] [JS] samyk/poisontap Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.
[5169星][18d] [ObjC] macpass/macpass A native OS X KeePass client
[5164星][14d] [Go] dnscrypt/dnscrypt-proxy 灵活的DNS代理，支持现代的加密DNS协议，例如：DNS protocols such as DNSCrypt v2, DNS-over-HTTPS and Anonymized DNSCrypt.
[5132星][2m] [JS] bda-research/node-crawler Web Crawler/Spider for NodeJS + server-side jQuery ;-)
[5132星][18d] [C++] avast/retdec 基于 LLVM 的可重定位机器码反编译器, 可检测壳、检测和重构C++类继承、重构函数/类型/结构体等、可反编译为 C 或 Python 2种高级语言格式
[5131星][5m] [Py] n1nj4sec/pupy Python编写的远控、后渗透工具，跨平台（Windows, Linux, OSX, Android）
[5121星][3m] sbilly/awesome-security 与安全相关的软件、库、文档、书籍、资源和工具等收集
[5116星][17d] [ASP] hq450/fancyss fancyss is a project providing tools to across the GFW on asuswrt/merlin based router.
[5103星][2m] [Lua] alexazhou/verynginx A very powerful and friendly nginx base on lua-nginx-module( openresty ) which provide WAF, Control Panel, and Dashboards.
[5101星][5m] [PS] empireproject/empire 后渗透框架. Windows客户端用PowerShell, Linux/OSX用Python. 之前PowerShell Empire和Python EmPyre的组合
[5084星][21d] [HTML] owasp/owasp-mstg 关于移动App安全开发、测试和逆向的相近手册
[5082星][3m] [Shell] stackexchange/blackbox 文件使用PGP加密后隐藏在Git/Mercurial/Subversion
[5081星][6m] [Shell] kylemanna/docker-openvpn
[5080星][2m] [Java] meituan-dianping/walle Android Signature V2 Scheme签名下的新一代渠道包打包神器
[5076星][4y] [Py] shadowsocksr-backup/shadowsocksr Python port of ShadowsocksR
[5047星][21d] [Go] inlets/inlets Expose your local endpoints to the Internet
[5007星][2m] [Py] snare/voltron A hacky debugger UI for hackers
[4966星][18d] [Py] trustedsec/social-engineer-toolkit The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
[4966星][26d] [TS] jigsaw-code/outline-client Outline clients, developed by Jigsaw. The Outline clients use the popular Shadowsocks protocol, and lean on the Cordova and Electron frameworks to support Windows, Android / ChromeOS, Linux, iOS and macOS.
[4922星][1y] [Go] yinghuocho/firefly-proxy A proxy software to help circumventing the Great Firewall.
[4909星][3m] [Rust] sharkdp/hexyl 命令行中查看hex
[4909星][3d] [Py] alessandroz/lazagne Credentials recovery project
[4896星][12m] [Go] bitly/oauth2_proxy 反向代理，静态文件服务器，提供Providers(Google/Github)认证
[4882星][30d] [Java] guardianproject/haven 通过Android应用和设备上的传感器保护自己的个人空间和财产而又不损害
[4873星][15d] [C] offensive-security/exploitdb The official Exploit Database repository
[4857星][19d] [Go] gcla/termshark A terminal UI for tshark, inspired by Wireshark
[4842星][19d] [C++] hrydgard/ppsspp A PSP emulator for Android, Windows, Mac and Linux, written in C++. Want to contribute? Join us on Discord at
[4830星][8m] [Py] 10se1ucgo/disablewintracking Uses some known methods that attempt to minimize tracking in Windows 10
[4804星][18d] [C] google/oss-fuzz 开源软件fuzzing
[4776星][18d] [C++] facebook/redex Android App字节码优化器
[4759星][3d] [C++] paddlepaddle/paddle-lite Multi-platform high performance deep learning inference engine (『飞桨』多平台高性能深度学习预测引擎）
[4758星][7m] [Py] worldveil/dejavu Audio fingerprinting and recognition in Python
[4752星][27d] [Py] manisso/fsociety fsociety Hacking Tools Pack – A Penetration Testing Framework
[4736星][1m] [Go] ponzu-cms/ponzu Headless CMS with automatic JSON API. Featuring auto-HTTPS from Let's Encrypt, HTTP/2 Server Push, and flexible server framework written in Go.
[4692星][27d] [Shell] jrcs/docker-letsencrypt-nginx-proxy-companion LetsEncrypt companion container for nginx-proxy
[4690星][18d] [Go] ginuerzh/gost GO语言实现的安全隧道
[4678星][18d] [Py] secdev/scapy 交互式数据包操作, Python, 命令行+库
[4673星][19d] powershell/win32-openssh Win32 port of OpenSSH
[4672星][13d] [PHP] phan/phan Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
[4672星][19d] [JS] beefproject/beef The Browser Exploitation Framework Project
[4663星][1m] [C] google/ios-webkit-debug-proxy A DevTools proxy (Chrome Remote Debugging Protocol) for iOS devices (Safari Remote Web Inspector).
[4651星][18d] [JS] wuchangming/spy-debugger 微信调试，各种WebView样式调试、手机浏览器的页面真机调试。便捷的远程调试手机页面、抓包工具，支持：HTTP/HTTPS，无需USB连接设备。
[4625星][19d] [Ruby] vcr/vcr Record your test suite's HTTP interactions and replay them during future test runs for fast, deterministic, accurate tests.
[4610星][1y] [C] upx/upx UPX - the Ultimate Packer for eXecutables
[4600星][12m] [Py] ecthros/uncaptcha2 defeating the latest version of ReCaptcha with 91% accuracy
[4597星][18d] [C++] mozilla/rr 记录与重放App的调试执行过程
[4563星][22d] [Ruby] wpscanteam/wpscan WPScan is a free, for non-commercial use, black box WordPress Vulnerability Scanner written for security professionals and blog maintainers to test the security of their WordPress websites.
[4548星][1m] [C] jedisct1/dsvpn A Dead Simple VPN.
[4541星][4m] [TS] apis-guru/graphql-voyager
[4516星][19d] [Makefile] frida/frida Clone this repo to build Frida
[4511星][2m] [Shell] foxlet/macos-simple-kvm Tools to set up a quick macOS VM in QEMU, accelerated by KVM.
[4500星][3d] [Go] dragonflyoss/dragonfly Dragonfly is an intelligent P2P based image and file distribution system.
[4494星][1m] [Py] jopohl/urh Universal Radio Hacker: investigate wireless protocols like a boss
[4471星][1y] [Go] wallix/awless A Mighty CLI for AWS
[4468星][2m] [Py] jofpin/trape 学习在互联网上跟踪别人，获取其详细信息，并避免被别人跟踪
[4463星][6m] [JS] bfirsh/jsnes A JavaScript NES emulator.
[4449星][1y] [Py] sshuttle/sshuttle Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
[4446星][2y] [Py] lining0806/pythonspidernotes Python入门网络爬虫之精华版
[4441星][3m] [Shell] zardus/ctf-tools Some setup scripts for security research tools.
[4436星][15d] [JS] cure53/dompurify a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
[4423星][18d] [Swift] signalapp/signal-ios A private messenger for iOS.
[4411星][8m] [Py] injetlee/python Python脚本。模拟登录知乎，爬虫，操作excel，微信公众号，远程开机
[4367星][2y] [JS] yujiosaka/headless-chrome-crawler Distributed crawler powered by Headless Chrome
[4354星][2m] [C] openvpn/openvpn OpenVPN is an open source VPN daemon
[4352星][1y] [Py] lennylxx/ipv6-hosts Fork of
[4329星][26d] [Py] diafygi/acme-tiny A tiny script to issue and renew TLS certs from Let's Encrypt
[4317星][1m] [Py] tensorflow/cleverhans Python库，基准测试（benchmark）机器学习系统的漏洞生成（to）对抗样本（adversarial examples）
[4314星][21d] [Rust] timvisee/ffsend Easily and securely share files from the command line
[4306星][21d] [Shell] ashishb/android-security-awesome A collection of android security related resources
[4300星][4d] [Py] openmined/pysyft A library for encrypted, privacy preserving machine learning
[4294星][2y] [Py] rmax/scrapy-redis Redis-based components for Scrapy.
[4279星][8m] [ObjC] alonemonkey/monkeydev CaptainHook Tweak、Logos Tweak and Command-line Tool、Patch iOS Apps, Without Jailbreak.
[4271星][4m] [Py] dxa4481/trufflehog Searches through git repositories for high entropy strings and secrets, digging deep into commit history
[4258星][1y] [JS] butterproject/butter-desktop All the free parts of Popcorn Time
[4252星][1m] qazbnm456/awesome-web-security web 安全资源列表
[4248星][2m] [C#] xupefei/locale-emulator Yet Another System Region and Language Simulator
[4246星][2y] imeiji/shadowsocks_install Auto install shadowsocks server，thanks 秋水逸冰
[4242星][18d] [Go] gophish/gophish 网络钓鱼工具包
[4239星][1m] we5ter/scanners-box 安全行业从业者自研开源扫描器合辑
[4237星][3m] [Py] chyroc/wechatsogou 基于搜狗微信搜索的微信公众号爬虫接口
[4234星][4m] [Go] shopify/toxiproxy
[4218星][2y] [Go] michenriksen/gitrob 查找push到公开的Github repo中的敏感信息
[4209星][3m] [Py] evilsocket/opensnitch opensnitch：Little Snitch 应用程序防火墙的 GNU/Linux 版本。（Little Snitch：Mac操作系统的应用程序防火墙，能防止应用程序在你不知道的情况下自动访问网络）
[4190星][3m] [Py] aboul3la/sublist3r Fast subdomains enumeration tool for penetration testers
[4177星][18d] [Java] spring-projects/spring-security Spring Security
[4174星][2y] forter/security-101-for-saas-startups 初学者安全小窍门
[4152星][1y] [JS] kdzwinel/betwixt 在浏览器外，使用熟悉的Chrome DevTools界面分析网络流量
[4145星][6m] [Py] spiderclub/haipproxy
[4115星][10m] wtsxdev/reverse-engineering List of awesome reverse engineering resources
[4109星][2m] [Shell] angristan/openvpn-install Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS or Arch Linux.
[4096星][2y] [Py] xoreaxeaxeax/sandsifter x86 处理器 Fuzzer，查找 Intel 的隐藏指令和 CPU bug
[4090星][6d] drduh/yubikey-guide Guide to using YubiKey for GPG and SSH
[4066星][17d] [Py] google/clusterfuzz Scalable fuzzing infrastructure.
[4062星][3m] [Java] jesusfreke/smali smali/baksmali
[4060星][2m] [JS] sigalor/whatsapp-web-reveng WhatsApp Web API逆向与重新实现
[4054星][25d] [Py] spiderclub/weibospider
[4054星][25d] [Py] spiderclub/weibospider 微博爬虫
[4054星][3m] [Swift] lexrus/vpnon Turn On your VPN like a hero.
[4042星][4m] [JS] cuckoosandbox/cuckoo Cuckoo Sandbox is an automated dynamic malware analysis system
[4031星][2y] [JS] travist/jsencrypt A Javascript library to perform OpenSSL RSA Encryption, Decryption, and Key Generation.
[4014星][3m] [JS] apsdehal/awesome-ctf A curated list of CTF frameworks, libraries, resources and softwares
[4014星][3m] [JS] apsdehal/awesome-ctf A curated list of CTF frameworks, libraries, resources and softwares
[4007星][7d] [Go] montferret/ferret Declarative web scraping
[4003星][17d] [Go] dexidp/dex OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors
[3986星][4m] [Py] nullarray/autosploit Automated Mass Exploiter
[3980星][1m] [Rust] svenstaro/genact a nonsense activity generator
[3960星][21d] hq450/fancyss_history_package 科学上网插件的离线安装包储存在这里
[3960星][17d] [Py] angr/angr A powerful and user-friendly binary analysis platform!
[3954星][21d] [Go] eranyanay/1m-go-websockets handling 1M websockets connections in Go
[3945星][5m] [PHP] paragonie/awesome-appsec A curated list of resources for learning about application security
[3940星][2y] [C#] shadowsocksr-backup/shadowsocksr-csharp shadowsocksr C#
[3939星][21d] [C] aquynh/capstone Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
[3933星][3m] [PHP] fuzzdb-project/fuzzdb 通过动态App安全测试来查找App安全漏洞, 算是不带扫描器的漏洞扫描器
[3922星][9d] [C++] thealgorithms/c-plus-plus All Algorithms implemented in C++
[3922星][19d] [Py] secureauthcorp/impacket Python类收集, 用于与网络协议交互
[3908星][18d] [C++] baldurk/renderdoc RenderDoc is a stand-alone graphics debugging tool.
[3901星][3m] brucedone/awesome-crawler A collection of awesome web crawler,spider in different languages
[3900星][1m] [C++] xenia-project/xenia Xbox 360 Emulator Research Project
[3868星][2m] jivoi/awesome-osint OSINT资源收集
[3860星][19d] [JS] shadowsocks/shadowsocks-manager A shadowsocks manager tool for multi user and traffic control.
[3848星][3m] [ObjC] sveinbjornt/sloth Mac app that shows all open files, directories and sockets in use by all running processes. Nice GUI for lsof.
[3836星][4y] iosre/iosappreverseengineering The world’s 1st book of very detailed iOS App reverse engineering skills :)
[3828星][3m] [PHP] ethicalhack3r/dvwa Damn Vulnerable Web Application (DVWA)
[3826星][5y] shadowsocksr-backup/shadowsocks-rss ShadowsocksR update rss, SSR organization
[3810星][3d] [C] atmosphere-nx/atmosphere Atmosphère is a work-in-progress customized firmware for the Nintendo Switch.
[3796星][22d] [Py] paralax/awesome-honeypots an awesome list of honeypot resources
[3784星][3m] [Go] microsoft/ethr Ethr is a Network Performance Measurement Tool for TCP, UDP & HTTP.
[3784星][11m] [Py] longld/peda Python Exploit Development Assistance for GDB
[3778星][5d] acl4ssr/acl4ssr SSR 去广告ACL规则/SS完整GFWList规则，Telegram频道订阅地址
[3773星][1m] jjqqkk/chromium Chromium browser with SSL VPN. Use this browser to unblock websites.
[3749星][18d] [Go] hashicorp/consul-template Template rendering, notifier, and supervisor for
[3747星][6d] [C++] pcsx2/pcsx2 PCSX2 - The Playstation 2 Emulator
[3747星][5m] [Py] malwaredllc/byob BYOB (Build Your Own Botnet)
[3744星][23d] blacckhathaceekr/pentesting-bible links reaches 10000 links & 10000 pdf files .Learn Ethical Hacking and penetration testing .hundreds of ethical hacking & penetration testing & red team & cyber security & computer science resources.
[3743星][2m] [C] iaik/meltdown This repository contains several applications, demonstrating the Meltdown bug.
[3699星][5m] [C] secwiki/windows-kernel-exploits windows-kernel-exploits Windows平台提权漏洞集合
[3694星][1m] [C#] 0xd4d/de4dot .NET deobfuscator and unpacker.
[3691星][2y] [JS] samyk/evercookie JavaScript API，在浏览器中创建超级顽固的cookie，在标准Cookie、Flask Cookie等被清除之后依然能够识别客户端
[3690星][27d] [JS] lesspass/lesspass
[3688星][1m] [HTML] hamukazu/lets-get-arrested This project is intended to protest against the police in Japan
[3686星][5m] [C] facebook/fishhook A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS.
[3676星][1m] [PS] bloodhoundad/bloodhound a single page Javascript web application, uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment.
[3676星][17d] [TS] javascript-obfuscator/javascript-obfuscator A powerful obfuscator for JavaScript and Node.js
[3669星][2y] [Py] misterch0c/shadowbroker 方程式最新泄露
[3665星][1m] [Py] micahflee/onionshare Securely and anonymously send and receive files, and publish onion sites
[3664星][2y] [Py] qiyeboy/ipproxypool IPProxyPool代理池项目，提供代理ip
[3658星][1m] [D] gnunn1/tilix A tiling terminal emulator for Linux using GTK+ 3
[3649星][2m] [C++] anbox/anbox 在常规GNU / Linux系统上引导完整的Android系统，基于容器
[3647星][3m] [Java] ffay/lanproxy 将局域网个人电脑、服务器代理到公网的内网穿透工具，支持tcp流量转发，可支持任何tcp上层协议（访问内网网站、本地支付接口调试、ssh访问、远程桌面...）
[3632星][3m] [C++] trojan-gfw/trojan An unidentifiable mechanism that helps you bypass GFW.
[3627星][1m] [HTML] consensys/smart-contract-best-practices A guide to smart contract security best practices
[3626星][5y] [C#] brandonlw/psychson Phison 2251-03 (2303) Custom Firmware & Existing Firmware Patches (BadUSB)
[3609星][21d] [C] nmap/nmap Nmap
[3608星][14d] [Pascal] cheat-engine/cheat-engine Cheat Engine. A development environment focused on modding
[3605星][18d] [Go] slackhq/nebula A scalable overlay networking tool with a focus on performance, simplicity and security
[3604星][3y] [Perl] x0rz/eqgrp Decrypted content of eqgrp-auction-file.tar.xz
[3603星][25d] [Shell] drwetter/testssl.sh 检查服务器任意端口对 TLS/SSL 的支持、协议以及一些加密缺陷，命令行工具
[3597星][2y] [C#] nummer/destroy-windows-10-spying Destroy Windows Spying tool
[3574星][19d] [C] tencent/tencentos-tiny 腾讯物联网终端操作系统
[3564星][3y] [C] hak5darren/usb-rubber-ducky a Human Interface Device programmable with a simple scripting language allowing penetration testers to quickly and easily craft and deploy security auditing payloads that mimic human keyboard input.
[3544星][6y] [R] johnmyleswhite/ml_for_hackers 《Machine Learning for Hackers》随书代码
[3538星][5m] [Shell] chengr28/revokechinacerts Revoke Chinese certificates.
[3527星][19d] [JS] aol/moloch 数据包捕获、索引工具，支持数据库
[3520星][10m] [C] rpisec/mbe Course materials for Modern Binary Exploitation by RPISEC
[3510星][8m] [Go] fanpei91/torsniff 从BitTorrent网络嗅探种子
[3510星][8m] [Go] fanpei91/torsniff 从BitTorrent网络嗅探种子
[3505星][22d] [C] cyan4973/xxhash Extremely fast non-cryptographic hash algorithm
[3504星][6m] [PHP] hanc00l/wooyun_public 乌云公开漏洞、知识库爬虫和搜索
[3475星][1m] [Java] meituan-dianping/robust Robust is an Android HotFix solution with high compatibility and high stability. Robust can fix bugs immediately without a reboot.
[3473星][5y] [HTML] grangier/python-goose Html Content / Article Extractor, web scrapping lib in Python
[3465星][6m] [Go] jpillora/chisel 基于HTTP的快速 TCP 隧道
[3461星][1m] [C] shellphish/how2heap 学习各种堆利用技巧的repo
[3461星][4y] [Go] elazarl/goproxy An HTTP proxy library for Go
[3457星][15d] [Smarty] anankke/sspanel-uim 专为 Shadowsocks / ShadowsocksR / V2Ray 设计的多用户管理面板
[3455星][1m] [Perl] sullo/nikto Nikto web server scanner
[3451星][24d] [C] mikebrady/shairport-sync AirPlay audio player. Shairport Sync adds multi-room capability with Audio Synchronisation
[3450星][6m] [C] session-replay-tools/tcpcopy tcpcopy：TCP 流量回放工具，可用于性能测试、稳定性测试、压力测试、加载测试、smoke 测试等
[3443星][4m] [C#] kohsuke/winsw A wrapper executable that can be used to host any executable as an Windows service, in a liberal license
[3432星][3m] [C++] mandliya/algorithms_and_data_structures 180+ Algorithm & Data Structure Problems using C++
[3427星][2m] [PS] samratashok/nishang 渗透框架，脚本和Payload收集，主要是PowerShell，涵盖渗透的各个阶段
[3422星][5m] [C] wind4/vlmcsd KMS Emulator in C (currently runs on Linux including Android, FreeBSD, Solaris, Minix, Mac OS, iOS, Windows with or without Cygwin)
[3420星][2y] shadowsocksrr/shadowsocks-rss ShadowsocksR update rss, SSR organization
[3416星][4m] [JS] ionicabizau/scrape-it A Node.js scraper for humans.
[3414星][2m] icodesign/potatso Potatso is an iOS client that implements different proxies with the leverage of NetworkExtension framework in iOS 10+.
[3405星][6d] [Go] tophubs/toplist 今日热榜，一个获取各大热门网站热门头条的聚合网站，使用Go语言编写，多协程异步快速抓取信息，预览:
[3405星][22d] [C] screetsec/thefatrat Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…
[3383星][15d] jivoi/awesome-ml-for-cybersecurity 针对网络安全的机器学习资源列表
[3359星][6m] [C++] wangyu-/udp2raw-tunnel udp 打洞。通过raw socket给UDP包加上TCP或ICMP header，进而绕过UDP屏蔽或QoS，或在UDP不稳定的环境下提升稳定性
[3345星][3m] [Swift] yagiz/bagel a little native network debugging tool for iOS
[3341星][18d] [Py] stamparm/maltrail 恶意网络流量检测系统
[3337星][18d] [Py] google/grr remote live forensics for incident response
[3327星][25d] [C] microsoft/windows-driver-samples This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.
[3325星][2m] [C] vanhauser-thc/thc-hydra 网络登录破解，支持多种服务
[3322星][2y] scanate/ethlist The Comprehensive Ethereum Reading List
[3319星][25d] [ObjC] objective-see/lulu LuLu is the free macOS firewall
[3310星][19d] [C#] pkisharp/win-acme A simple ACME client for Windows (for use with Let's Encrypt et al.)
[3304星][1m] [C++] fireice-uk/xmr-stak Free Monero RandomX Miner and unified CryptoNight miner
[3301星][19d] [Shell] toniblyx/my-arsenal-of-aws-security-tools List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
[3295星][21d] [JS] koenkk/zigbee2mqtt Zigbee
[3294星][4m] [C] nbs-system/naxsi NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
[3289星][21d] [C] virustotal/yara The pattern matching swiss knife
[3280星][1m] [Java] oldmanpushcart/greys-anatomy Java诊断工具
[3279星][1m] [Go] mozilla/sops Simple and flexible tool for managing secrets
[3276星][3m] [Py] volatilityfoundation/volatility An advanced memory forensics framework
[3270星][1m] [Py] laramies/theharvester E-mails, subdomains and names Harvester - OSINT
[3263星][7m] [JS] sindresorhus/speed-test Test your internet connection speed and ping using speedtest.net from the CLI
[3259星][5y] [C++] google/lmctfy lmctfy is the open source version of Google’s container stack, which provides Linux application containers.
[3252星][1m] [Py] maurosoria/dirsearch Web path scanner
[3248星][3d] [C] magnumripper/johntheripper This is the official repo for John the Ripper, "Jumbo" version. The "bleeding-jumbo" branch is based on 1.9.0-Jumbo-1 which was released on May 14, 2019. An import of the "core" version of john this jumbo was based on (or newer) is found in the "master" branch (CVS:
[3248星][25d] [TS] jigsaw-code/outline-server 在DigitalOcean上创建和管理Outline服务器
[3247星][15d] [C] betaflight/betaflight Open Source Flight Controller Firmware
[3246星][1m] [Go] dvyukov/go-fuzz Randomized testing for Go
[3243星][20d] [Shell] gfw-breaker/ssr-accounts 一键部署Shadowsocks服务；免费Shadowsocks账号分享；免费SS账号分享; 翻墙；无界，自由门，SquirrelVPN
[3240星][4y] [C] shadowsocks/chinadns Protect yourself against DNS poisoning in China.
[3239星][8m] [HTML] leizongmin/js-xss Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
[3236星][6m] [Go] meshbird/meshbird cloud-native multi-region multi-cloud decentralized private networking
[3233星][30d] [C] tmate-io/tmate Instant Terminal Sharing
[3233星][2y] [CSS] jbtronics/crookedstylesheets 使用纯CSS收集网页/用户信息
[3232星][5m] [ObjC] naituw/ipapatch Patch iOS Apps, The Easy Way, Without Jailbreak.
[3230星][20d] [Rich Text Format] the-art-of-hacking/h4cker 资源收集：hacking、渗透、数字取证、事件响应、漏洞研究、漏洞开发、逆向
[3227星][4m] [C] yarrick/iodine 通过DNS服务器传输(tunnel)IPV4数据
[3224星][2m] [C++] spiderlabs/modsecurity ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analys…
[3222星][2m] [C] valdikss/goodbyedpi 绕过许多已知的网络服务提供商提供的阻止访问某些网站的深度数据包检查系统
[3219星][2m] [TS] google/incremental-dom An in-place DOM diffing library
[3203星][6m] hslatman/awesome-threat-intelligence A curated list of Awesome Threat Intelligence resources
[3202星][1y] [Shell] toyodadoubi/doubi 一个逗比写的各种逗比脚本~
[3198星][20d] [Makefile] lorien/awesome-web-scraping List of libraries, tools and APIs for web scraping and data processing.
[3195星][3d] [C++] px4/firmware PX4 Autopilot Software
[3190星][2y] [Py] kootenpv/whereami 使用Wifi信号和机器学习预测你的位置，精确度2-10米
[3188星][17d] [C] meetecho/janus-gateway Janus WebRTC Server
[3182星][1y] [Shell] txthinking/google-hosts Google hosts generator
[3179星][4d] [Shell] 1n3/sn1per 自动化渗透测试框架
[3168星][1m] [Py] mininet/mininet Emulator for rapid prototyping of Software Defined Networks
[3168星][22d] [CSS] juliocesarfort/public-pentesting-reports Curated list of public penetration test reports released by several consulting firms and academic security groups
[3161星][18d] [JS] minbrowser/min A fast, minimal browser that protects your privacy
[3154星][19d] [JS] duo-labs/cloudmapper 生成AWS环境的网络拓扑图
[3154星][1m] [Java] deathmarine/luyten An Open Source Java Decompiler Gui for Procyon
[3153星][3m] [Py] byt3bl33d3r/crackmapexec 后渗透工具，自动化评估大型Active Directory网络的安全性
[3152星][4m] [Shell] hwdsl2/docker-ipsec-vpn-server Docker image to run an IPsec VPN server, with IPsec/L2TP and Cisco IPsec
[3151星][6y] [Py] gnemoug/distribute_crawler 使用scrapy,redis, mongodb,graphite实现的一个分布式网络爬虫,底层存储mongodb集群,分布式使用redis实现,爬虫状态显示使用graphite实现
[3145星][2y] shadowsocksr-backup/shadowsocksr-android A ShadowsocksR client for Android
[3142星][3m] [PS] fireeye/commando-vm Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com
[3141星][21d] meirwah/awesome-incident-response A curated list of tools for incident response
[3136星][30d] [Go] uber/kraken P2P Docker registry capable of distributing TBs of data in seconds
[3135星][26d] [Shell] speed47/spectre-meltdown-checker 检查 Linux 主机是否受处理器漏洞Spectre & Meltdown 的影响
[3131星][2m] [CSS] readthedocs/sphinx_rtd_theme Sphinx theme for readthedocs.org
[3129星][19d] [C] qemu/qemu Official QEMU mirror. Please see
[3121星][1m] [Shell] softwaredownload/openwrt-fanqiang 最好的路由器翻墙、科学上网教程—OpenWrt—shadowsocks
[3120星][16d] [Go] tencent/bk-cmdb 蓝鲸智云配置平台(BlueKing CMDB)
[3108星][2m] [C] unicorn-engine/unicorn Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, X86)
[3102星][8m] [Go] michenriksen/aquatone 子域名枚举工具。除了经典的爆破枚举之外，还利用多种开源工具和在线服务大幅度增加发现子域名的数量。
[3097星][22d] [Shell] trimstray/htrace.sh My simple Swiss Army knife for http/https troubleshooting and profiling.
[3092星][3m] [C] zmap/zmap ZMap is a fast single packet network scanner designed for Internet-wide network surveys.
[3091星][5m] [Py] rarcega/instagram-scraper Scrapes an instagram user's photos and videos
[3091星][19d] [Py] tribler/tribler Privacy enhanced BitTorrent client with P2P content discovery
[3078星][2m] [Java] calebfenton/simplify Generic Android Deobfuscator
[3074星][10m] [JS] jipegit/osxauditor OS X Auditor is a free Mac OS X computer forensics tool
[3072星][3m] [JS] valve/fingerprintjs Anonymous browser fingerprint
[3066星][1y] [Swift] zhuhaow/spechtlite A rule-based proxy for macOS
[3061星][4m] [Py] spiderlabs/responder LLMNR/NBT-NS/MDNS投毒，内置HTTP/SMB/MSSQL/FTP/LDAP认证服务器, 支持NTLMv1/NTLMv2/LMv2
[3057星][3m] [Go] gwuhaolin/lightsocks 轻量级网络混淆代理，基于 SOCKS5 协议，可用来代替 Shadowsocks
[3055星][10d] [Go] imgproxy/imgproxy Fast and secure standalone server for resizing and converting remote images
[3054星][10m] [C] secwiki/linux-kernel-exploits linux-kernel-exploits Linux平台提权漏洞集合
[3052星][5m] [C++] google/robotstxt The repository contains Google's robots.txt parser and matcher as a C++ library (compliant to C++11).
[3048星][4d] [Go] cookiey/yearning A most popular sql audit platform for mysql
[3033星][18d] [Py] twintproject/twint An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
[3010星][1y] [PHP] owner888/phpspider 《我用爬虫一天时间“偷了”知乎一百万用户，只为证明PHP是世界上最好的语言》所使用的程序
[3005星][14d] [Py] felixonmars/dnsmasq-china-list Chinese-specific configuration to improve your favorite DNS server. Best partner for chnroutes.
[3000星][18d] [JS] ntop/ntopng 基于Web的流量监控工具
[2995星][1m] [Py] guardicore/monkey 自动化渗透测试工具, 测试数据中心的弹性, 以防范周边(perimeter)泄漏和内部服务器感染
[2993星][3m] [Dockerfile] thinkdevelop/free-ss-ssr SS账号、SSR账号、V2Ray账号
[2993星][9d] [JS] webgoat/webgoat 带漏洞WebApp
[2989星][19d] [JS] evilsocket/pwnagotchi 深度学习+Bettercap，基于A2C，从周围的WiFi环境中学习，以最大程度地利用捕获的WPA关键信息
[2988星][2y] phith0n/mind-map 各种安全相关思维导图整理收集
[2980星][7m] [C++] pytorch/elf ELF: a platform for game research with AlphaGoZero/AlphaZero reimplementation
[2980星][20d] [ObjC] google/santa 用于Mac系统的二进制文件白名单/黑名单系统
[2973星][2m] [C] microsoft/wsl2-linux-kernel The source for the Linux kernel used in Windows Subsystem for Linux 2 (WSL2)
[2967星][15d] [Go] dominikh/go-tools Staticcheck – a collection of static analysis tools for working with Go code
[2960星][2m] [Py] andresriancho/w3af Web App安全扫描器, 辅助开发者和渗透测试人员识别和利用Web App中的漏洞
[2956星][24d] [Py] cowrie/cowrie 中型/交互型 SSH/Telnet 蜜罐，
[2952星][10d] infosecn1nja/red-teaming-toolkit A collection of open source and commercial tools that aid in red team operations.
[2948星][1m] [C] libfuse/sshfs A network filesystem client to connect to SSH servers
[2942星][20d] [Go] securego/gosec Golang security checker
[2939星][18d] [Py] danmcinerney/wifijammer 持续劫持范围内的Wifi客户端和AP
[2938星][18d] [Zeek] zeek/zeek Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
[2937星][1y] [Shell] 91yun/serverspeeder 锐速破解版
[2927星][18d] [Py] trustedsec/ptf 创建基于Debian/Ubuntu/ArchLinux的渗透测试环境
[2927星][14d] secfigo/awesome-fuzzing A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
[2906星][1y] [Py] byt3bl33d3r/mitmf Framework for Man-In-The-Middle attacks
[2898星][8m] [C] p-h-c/phc-winner-argon2 The password hash Argon2, winner of PHC
[2895星][17d] [Go] 99designs/aws-vault A vault for securely storing and accessing AWS credentials in development environments
[2894星][2m] [C#] vsvim/vsvim Vim Emulator Plugin for Visual Studio 2015+
[2888星][18d] [HTML] ctf-wiki/ctf-wiki CTF Wiki Online. Come and join us, we need you!
[2887星][4y] [ObjC] maciekish/iresign iReSign allows iDevice app bundles (.ipa) files to be signed or resigned with a digital certificate from Apple for distribution. This tool is aimed at enterprises users, for enterprise deployment, when the person signing the app is different than the person(s) developing it.
[2885星][9m] [C++] wangyu-/udpspeeder A Tunnel which Improves your Network Quality on a High-latency Lossy Link by using Forward Error Correction,for All Traffics(TCP/UDP/ICMP)
[2873星][2y] [Py] liuxingming/sinaspider 新浪微博爬虫（Scrapy、Redis）
[2872星][20d] [C] lxc/lxc LXC - Linux Containers
[2867星][18d] [ObjC] facebook/idb idb is a flexible command line interface for automating iOS simulators and devices
[2867星][9m] [C#] quasar/quasarrat Remote Administration Tool for Windows
[2854星][1m] [Py] espressif/esptool ESP8266 and ESP32 serial bootloader utility
[2852星][24d] [C] ossec/ossec-hids 入侵检测系统
[2848星][6m] [Py] instantbox/instantbox Get a clean, ready-to-go Linux box in seconds.
[2845星][9m] [Shell] goreliu/wsl-terminal Terminal emulator for Windows Subsystem for Linux (WSL)
[2844星][30d] [Py] jrohy/multi-v2ray v2ray easy delpoy & manage tool， support multiple user & protocol manage
[2835星][2y] [TS] microsoftdx/vorlonjs A new, open source, extensible, platform-agnostic tool for remotely debugging and testing your JavaScript. Powered by node.js and socket.io
[2834星][1m] [C] tmk/tmk_keyboard Atmel AVR 和 Cortex-M键盘固件收集
[2833星][2y] [CSS] maxchehab/css-keylogging Chrome extension and Express server that exploits keylogging abilities of CSS.
[2833星][2m] [Assembly] ************/x86-bare-metal-examples 几十个用于学习 x86 系统编程的小型操作系统
[2829星][3m] [Go] kgretzky/evilginx2 独立的MITM攻击工具，用于登录凭证钓鱼，可绕过双因素认证
[2820星][1m] [Py] androguard/androguard Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
[2819星][22d] [C++] xmrig/xmrig xmrig: 门罗币挖矿代码 CPU 版
[2816星][2m] paulsec/awesome-sec-talks A collected list of awesome security talks
[2815星][26d] [C] processhacker/processhacker A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
[2810星][3m] valvesoftware/steam-for-linux Issue tracking for the Steam for Linux beta client
[2808星][10m] [Py] plasma-disassembler/plasma Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
[2808星][4y] [Lua] loveshell/ngx_lua_waf ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙
[2802星][19d] [C] klange/toaruos A completely-from-scratch hobby operating system: bootloader, kernel, drivers, C library, and userspace including a composited graphical UI, dynamic linker, syntax-highlighting text editor, network stack, etc.
[2800星][3m] secwiki/sec-chart 安全思维导图集合
[2795星][30d] [Swift] kasketis/netfox A lightweight, one line setup, iOS / OSX network debugging library!
[2793星][2m] [Makefile] shadowsocks/openwrt-shadowsocks Shadowsocks-libev for OpenWrt/LEDE
[2789星][19d] [C++] qtox/qtox qTox is a chat, voice, video, and file transfer IM client using the encrypted peer-to-peer Tox protocol.
[2783星][19d] [Go] aquasecurity/trivy A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
[2782星][2y] [C] seclab-ucr/intang research project for circumventing the "TCP reset attack" from the Great Firewall of China (GFW) by disrupting/desynchronizing the TCP Control Block (TCB) on the censorship devices.
[2773星][2m] [Py] kr1s77/python-crawler-tutorial-starts-from-zero python爬虫教程，带你从零到一，包含js逆向，selenium, tesseract OCR识别,mongodb的使用，以及scrapy框架
[2772星][2m] [JS] trufflesuite/ganache-cli Fast Ethereum RPC client for testing and development
[2769星][2m] [JS] s0md3v/awesomexss Awesome XSS stuff
[2767星][5d] [Go] adguardteam/adguardhome Network-wide ads & trackers blocking DNS server
[2764星][9m] [Py] p0cl4bs/wifi-pumpkin AP攻击框架, 创建虚假网络, 取消验证攻击、请求和凭证监控、透明代理、Windows更新攻击、钓鱼管理、ARP投毒、DNS嗅探、Pumpkin代理、动态图片捕获等
[2760星][15d] [TS] webhintio/hint
[2758星][15d] [PS] redcanaryco/atomic-red-team Small and highly portable detection tests based on MITRE's ATT&CK.
[2753星][2m] [Makefile] theos/theos A cross-platform suite of tools for building and deploying software for iOS and other platforms.
[2745星][1y] [C] vanhoefm/krackattacks-scripts 检测客户端和AP是否受KRACK漏洞影响
[2743星][1m] [JS] cyu/rack-cors Rack Middleware for handling Cross-Origin Resource Sharing (CORS), which makes cross-origin AJAX possible.
[2740星][2m] [ObjC] kjcracks/clutch Fast iOS executable dumper
[2736星][3y] [Py] hephaest0s/usbkill 反取证开关. 监控USB端口变化, 有变化时立即关闭计算机
[2733星][1m] [ObjC] dantheman827/ios-app-signer This is an app for OS X that can (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device.
[2718星][3m] [Py] drivendata/cookiecutter-data-science A logical, reasonably standardized, but flexible project structure for doing and sharing data science work.
[2716星][2m] [C] taviso/loadlibrary 使 Linux系统加载并调用 Windows DLL
[2708星][1m] [Shell] pivpn/pivpn 树莓派的OpenVPN安装程序
[2707星][3y] [Eagle] samyk/magspoof 信用卡/磁条欺骗
[2701星][19d] [Go] libp2p/go-libp2p libp2p implementation in Go
[2698星][18d] [Go] google/syzkaller 一个unsupervised、以 coverage 为导向的Linux 系统调用fuzzer
[2695星][15d] [JS] bkimminich/juice-shop OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
[2692星][1y] [Py] mame82/p4wnp1 基于Raspberry Pi Zero 或 Raspberry Pi Zero W 的USB攻击平台, 高度的可定制性
[2691星][18d] rmusser01/infosec_reference An Information Security Reference That Doesn't Suck
[2690星][1y] [HTML] chybeta/web-security-learning Web-Security-Learning
[2678星][4m] [Java] frohoff/ysoserial 生成会利用不安全的Java对象反序列化的Payload
[2669星][1m] [Py] cloudflare/flan A pretty sweet vulnerability scanner
[2660星][22d] xairy/linux-kernel-exploitation Linux 内核 Fuzz 和漏洞利用的资源收集
[2659星][20d] [Go] schollz/croc Easily and securely send things from one computer to another
[2650星][2y] [Py] shadowsocksrr/shadowsocksr Python port of ShadowsocksR
[2645星][4m] [Java] teevity/ice AWS Usage Tool
[2644星][1y] [C] ckolivas/cgminer ASIC and FPGA miner in c for bitcoin
[2631星][9m] leandromoreira/linux-network-performance-parameters Learn where some of the network sysctl variables fit into the Linux/Kernel network flow
[2627星][29d] [JS] popcorn-official/popcorn-desktop Popcorn Time is a multi-platform, free software BitTorrent client that includes an integrated media player. Desktop ( Windows / Mac / Linux ) a Butter-Project Fork
[2625星][3m] [Swift] zhuhaow/nekit A toolkit for Network Extension Framework
[2625星][2m] [JS] knownsec/kcon KCon is a famous Hacker Con powered by Knownsec Team.
[2623星][7d] [Shell] medicean/vulapps 快速搭建各种漏洞环境(Various vulnerability environment)
[2621星][2m] pditommaso/awesome-pipeline A curated list of awesome pipeline toolkits inspired by Awesome Sysadmin
[2620星][9d] taichi-framework/taichi A framework to use Xposed module with or without Root/Unlock bootloader, supportting Android 5.0 ~ 10.0
[2612星][3y] [Ruby] arachni/arachni Web Application Security Scanner Framework
[2611星][6m] [JS] h2non/toxy Hackable HTTP proxy for resiliency testing and simulated network conditions
[2607星][14d] [C++] danmar/cppcheck static analysis of C/C++ code
[2603星][2y] [Py] ecthros/uncaptcha 绕过谷歌 “I'mnot a robot”reCaptcha 验证，准确率达85%
[2599星][25d] [C++] fanout/pushpin 使用C ++编写的反向代理服务器，可以轻松实现WebSocket，HTTP流和HTTP长轮询服务
[2592星][17d] [Go] goproxy/goproxy.cn The most trusted Go module proxy in China.
[2591星][8y] [C] id-software/quake Quake GPL Source Release
[2587星][16d] [C] esnet/iperf A TCP, UDP, and SCTP network bandwidth measurement tool
[2583星][6d] [Shell] teddysun/across This is a shell script for configure and start WireGuard VPN server
[2583星][3m] [C] huntergregal/mimipenguin dump 当前Linux用户的登录密码
[2580星][2m] [Go] drk1wi/modlishka 一个强大而灵活的HTTP反向代理
[2578星][3m] [Py] greenwolf/social_mapper 对多个社交网站的用户Profile图片进行大规模的人脸识别
[2569星][6m] [Java] google/binnavi 二进制分析IDE, 对反汇编代码的控制流程图和调用图进行探查/导航/编辑/注释.(IDA插件的作用是导出反汇编)
[2568星][1m] [Py] hugsy/gef gdb增强工具，使用Python API，用于漏洞开发和逆向分析。
[2564星][7m] [C] geohot/qira QEMU Interactive Runtime Analyser
[2562星][6m] [Go] oj/gobuster Directory/File, DNS and VHost busting tool written in Go
[2551星][16d] [C#] netchx/netch 游戏加速器。支持:Socks5, Shadowsocks, ShadowsocksR, V2Ray 协议
[2551星][2y] evilsocket/bettercap 中间人攻击框架，功能完整，模块化设计，轻便且易于扩展。
[2540星][10m] [ObjC] nygard/class-dump Generate Objective-C headers from Mach-O files.
[2538星][9m] offensive-security/kali-nethunter The Kali NetHunter Project
[2536星][2y] [Py] google/nogotofail 帮助开发人员和安全研究人员在设备和应用程序上发现并修复弱TLS / SSL连接问题，定位敏感的明文流量。灵活、可扩展、功能强大
[2535星][3m] [Java] jboss-javassist/javassist Java bytecode engineering toolkit
[2533星][3y] [HTML] dirtycow/dirtycow.github.io Dirty COW
[2532星][4m] kbandla/aptnotes Various public documents, whitepapers and articles about APT campaigns
[2530星][2m] [C] yrutschle/sslh 应用协议多路复用器（例如，在同一端口上共享SSH和HTTPS）。接受指定端口上的连接，并根据对第一个数据包的测试结果将其转发
[2519星][1m] onlurking/awesome-infosec A curated list of awesome infosec courses and training resources.
[2515星][2m] [Py] ysrc/xunfeng 巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。
[2509星][3y] [C] dhavalkapil/icmptunnel Transparently tunnel your IP traffic through ICMP echo and reply packets.
[2507星][2m] [Shell] rebootuser/linenum Scripted Local Linux Enumeration & Privilege Escalation Checks
[2503星][8m] [C++] chengr28/pcap_dnsproxy Pcap_DNSProxy, a local DNS server based on packet capturing
[2499星][5y] [PHP] audi-1/sqli-labs SQLI labs to test error based, Blind boolean based, Time based.
[2498星][2m] [Py] 0xinfection/awesome-waf Everything awesome about web application firewalls (WAFs).
[2492星][2y] [Py] feross/spoofmac 伪造MAC地址(OS X, Windows, Linux)
[2490星][5m] [Go] ne0nd0g/merlin Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
[2489星][2m] [Py] smicallef/spiderfoot 自动收集指定目标的信息：IP、域名、主机名、网络子网、ASN、邮件地址、用户名
[2483星][11m] [C#] yck1509/confuserex An open-source, free protector for .NET applications
[2482星][3m] [Py] x0rz/tweets_analyzer Tweets metadata scraper & activity analyzer
[2479星][11m] [JS] weixin/miaow A set of plugins for Sketch include drawing links & marks, UI Kit & Color sync, font & text replacing.
[2479星][1y] [Py] geekan/scrapy-examples Multifarious Scrapy examples. Spiders for alexa / amazon / douban / douyu / github / linkedin etc.
[2476星][4m] [C] martin-ger/esp_wifi_repeater A full functional WiFi Repeater (correctly: a WiFi NAT Router)
[2474星][1m] [JS] vitaly-t/pg-promise PostgreSQL interface for Node.js
[2467星][27d] [Go] owasp/amass In-depth Attack Surface Mapping and Asset Discovery
[2466星][2m] [C++] pavel-odintsov/fastnetmon 快速 DDoS 检测/分析工具，支持 sflow/netflow/mirror
[2466星][8d] [PHP] misp/misp MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
[2461星][5m] [JS] thlorenz/proxyquire
[2456星][3y] [Py] google/enjarify 将Dalvik字节码转换为对应的Java字节码
[2454星][3y] [Py] bowenpay/wechat-spider 微信公众号爬虫
[2450星][10d] [Java] m66b/netguard A simple way to block access to the internet per app
[2442星][2m] [Py] xmendez/wfuzz Web application fuzzer
[2439星][22d] [Py] pwndbg/pwndbg GDB插件，辅助漏洞开发和逆向
[2437星][2m] [Py] the0demiurge/shadowsocksshare 从ss(r)共享网站爬虫获取共享ss(r)账号，通过解析并校验账号连通性，重新分发账号并生成订阅链接
[2437星][2m] [TSQL] rapid7/metasploitable3 Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
[2436星][8m] [Py] lionsec/katoolin Automatically install all Kali linux tools
[2430星][29d] [Py] pritunl/pritunl Enterprise VPN server
[2424星][3y] [Py] arthepsy/ssh-audit SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
[2422星][3y] rpisec/malware Course materials for Malware Analysis by RPISEC
[2421星][19d] [Py] infobyte/faraday 渗透测试和漏洞管理平台
[2409星][18d] [C] wireshark/wireshark Wireshark
[2406星][6d] [Java] mock-server/mockserver MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied traffic including encrypted SSL traffic and supports Port Forwarding, Web Proxying (i.e. HTTP proxy), HTTPS Tunneling Proxying (using HTTP CONNECT) and…
[2402星][12m] [C] haad/proxychains a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" for SOCKS4/5, "basic" for HTTP.
[2402星][1m] [C++] ggerganov/kbd-audio 利用麦克风捕捉到的音频, 分析键盘敲击的按键
[2401星][18d] [Go] xtaci/kcp-go provide a smooth, resilient, ordered, error-checked and anonymous delivery of streams over UDP packets,
[2399星][14d] [Py] ctfd/ctfd CTFs as you need them
[2395星][3y] [OCaml] facebookarchive/pfff 一堆工具的集合，用于执行静态分析、代码可视化、代码导航、保持格式的源码转换（例如：源码重构）。完美支持C、Java、JS、PHP，后续将支持其他一大堆语言。
[2391星][26d] [Java] mock-server/mockserver MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied traffic including encrypted SSL traffic and supports Port Forwarding, Web Proxying (i.e. HTTP proxy), HTTPS Tunneling Proxying (using HTTP CONNECT) and…
[2389星][2y] [Py] secretsquirrel/the-backdoor-factory 为PE, ELF, Mach-O二进制文件添加Shellcode后门
[2380星][2m] [Py] ab77/netflix-proxy Smart DNS proxy to watch Netflix
[2377星][5d] [HTML] tikam02/devops-guide DevOps Guide from basic to advanced with Interview Questions and Notes
[2377星][1y] [Py] danmcinerney/lans.py Inject code and spy on wifi users
[2376星][17d] [C] hfiref0x/uacme Defeating Windows User Account Control
[2375星][1m] security-onion-solutions/security-onion Linux distro for intrusion detection, enterprise security monitoring, and log management
[2375星][12m] hack-with-github/free-security-ebooks Free Security and Hacking eBooks
[2374星][5m] [Go] mlabouardy/komiser
[2374星][2m] [TeX] crypto101/book Crypto 101, the introductory book on cryptography.
[2364星][16d] [C] domoticz/domoticz monitor and configure various devices like: Lights, Switches, various sensors/meters like Temperature, Rain, Wind, UV, Electra, Gas, Water and much more
[2363星][2m] [Lua] snabbco/snabb 网络工具包，简单、快速
[2362星][26d] yeyintminthuhtut/awesome-red-teaming List of Awesome Red Teaming Resources
[2357星][3m] [PHP] kint-php/kint Kint - a powerful and modern PHP debugging tool.
[2357星][9d] [PS] k8gege/k8tools K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
[2345星][4m] [Go] vuvuzela/vuvuzela Private messaging system that hides metadata
[2345星][6y] [C] stefanesser/dumpdecrypted Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. This tool is necessary for security researchers to be able to look under the hood of encryption.
[2344星][22d] [C] tsl0922/ttyd Share your terminal over the web
[2341星][2y] [Py] rootphantomer/blasting_dictionary 爆破字典
[2340星][2m] [JS] pa11y/pa11y Pa11y is your automated accessibility testing pal
[2334星][5m] [Py] guohongze/adminset 自动化运维平台：CMDB、CD、DevOps、资产管理、任务编排、持续交付、系统监控、运维管理、配置管理
[2332星][2m] [Shell] eliaskotlyar/xiaomi-dafang-hacks Xiaomi DaFang Hacks / XiaoFang 1S / Wyzecam V2 / Wyzecam Pan / Other T20 Devices
[2328星][2m] [Shell] v1s1t0r1sh3r3/airgeddon This is a multi-use bash script for Linux systems to audit wireless networks.
[2321星][5y] [C] abrasive/shairport Airtunes emulator! Shairport is no longer maintained.
[2314星][20d] [C] mintty/wsltty Mintty as a terminal for Bash on Ubuntu on Windows / WSL
[2314星][1y] [Java] csploit/android cSploit - The most complete and advanced IT security professional toolkit on Android.
[2305星][2m] [C] moby/hyperkit A toolkit for embedding hypervisor capabilities in your application
[2303星][1m] [C#] dotnetcore/dotnetspider DotnetSpider, a .NET Standard web crawling library. It is lightweight, efficient and fast high-level web crawling & scraping framework
[2301星][3y] [Py] lmacken/pyrasite 向运行中的 Python进程注入代码
[2292星][2m] [C] aurorawright/luma3ds Noob-proof (N)3DS "Custom Firmware"
[2289星][3y] [Py] therook/subbrute A DNS meta-query spider that enumerates DNS records, and subdomains.
[2287星][4m] [JS] retirejs/retire.js scanner detecting the use of JavaScript libraries with known vulnerabilities
[2286星][2m] [JS] talkingdata/inmap 大数据地理可视化
[2262星][3m] [Py] novnc/websockify Websockify is a WebSocket to TCP proxy/bridge. This allows a browser to connect to any application/server/service. Implementations in Python, C, Node.js and Ruby.
[2260星][19d] dumb-password-rules/dumb-password-rules Shaming sites with dumb password rules.
[2252星][18d] [JS] jcubic/jquery.terminal jQuery Terminal Emulator - web based terminal
[2249星][2y] [Go] mehrdadrad/mylg 网络诊断工具
[2238星][16d] [Go] aquasecurity/kube-bench Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
[2236星][4d] [Shell] wulabing/v2ray_ws-tls_bash_onekey V2Ray Nginx+vmess+ws+tls/ http2 over tls 一键安装脚本
[2236星][5y] [Go] filosottile/heartbleed A checker (site and tool) for CVE-2014-0160
[2235星][2m] [Py] jinfagang/weibo_terminater Final Weibo Crawler Scrap Anything From Weibo, comments, weibo contents, followers, anything. The Terminator
[2235星][2y] [JS] cure53/h5sc HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
[2230星][2m] [Rust] cloudflare/boringtun an implementation of the WireGuard® protocol designed for portability and speed.
[2224星][2m] [C] texane/stlink stm32 discovery line linux programmer
[2217星][20d] [Go] google/mtail extract whitebox monitoring data from application logs for collection in a timeseries database
[2215星][6y] [C++] codebutler/firesheep 演示HTTP会话劫持攻击的Firefox扩展
[2214星][24d] getlantern/lantern-binaries Lantern installers binary downloads.
[2212星][2y] [JS] dcodeio/bcrypt.js Optimized bcrypt in plain JavaScript with zero dependencies.
[2211星][2m] [C++] google/bloaty Bloaty McBloatface: a size profiler for binaries
[2204星][2m] sobolevn/awesome-cryptography A curated list of cryptography resources and links.
[2194星][18d] [C] armmbed/mbedtls An open source, portable, easy to use, readable and flexible SSL library
[2189星][1y] [Py] datasploit/datasploit 对指定目标执行多种侦查技术：企业、人、电话号码、比特币地址等
[2187星][5m] [JS] emadehsan/thal Getting started with Puppeteer and Chrome Headless for Web Scraping
[2184星][3y] enddo/awesome-windows-exploitation A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom
[2181星][2m] [JS] secgroundzero/warberry WarBerryPi - Tactical Exploitation
[2180星][2m] [Go] mmatczuk/go-http-tunnel Fast and secure tunnels over HTTP/2
[2174星][1y] [JS] iam4x/pokemongo-webspoof 在PokémonGo伪造iOS设备GPS位置
[2171星][2m] [Py] commixproject/commix Automated All-in-One OS command injection and exploitation tool.
[2169星][2m] gbdev/awesome-gbdev A curated list of Game Boy development resources such as tools, docs, emulators, related projects and open-source ROMs.
[2163星][1y] [C++] maestron/botnets This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY
[2162星][2m] [C] conorpp/u2f-zero U2F USB token optimized for physical security, affordability, and style
[2161星][2y] [C#] openhardwaremonitor/openhardwaremonitor Open Hardware Monitor
[2161星][10m] exakat/php-static-analysis-tools A reviewed list of useful PHP static analysis tools
[2161星][3m] [PHP] antonioribeiro/tracker Tracker gathers a lot of information from your requests to identify and store
[2155星][10m] jermic/android-crack-tool 集成了Android开发中常见的一些编译/反编译工具,方便用户对Apk进行逆向分析,提供Apk信息查看功能
[2153星][3m] [Py] trustedsec/unicorn 通过PowerShell降级攻击, 直接将Shellcode注入到内存
[2152星][6y] [Ruby] plamoni/siriproxy A (tampering) proxy server for Apple's Siri
[2151星][19d] [Java] google/wycheproof Project Wycheproof tests crypto libraries against known attacks.
[2150星][3d] [Py] fortynorthsecurity/eyewitness 给网站做快照，提供服务器Header信息，识别默认凭证等
[2149星][2m] [Py] jonathansalwan/ropgadget This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectures.
[2144星][4y] [Ruby] mojombo/god Ruby process monitor
[2138星][2y] [Py] rub-nds/pret Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
[2138星][1y] [Go] jetstack/kube-lego Automatically request certificates for Kubernetes Ingress resources from Let's Encrypt
[2138星][26d] [C] alexaltea/orbital Experimental PlayStation 4 emulator
[2137星][25d] [Assembly] pret/pokered disassembly of Pokémon Red/Blue
[2135星][18d] [C] wireguard/wireguard-monolithic-historical fast, modern, secure kernel VPN tunnel
[2133星][26d] [Ruby] urbanadventurer/whatweb Next generation web scanner
[2132星][26d] goq/telegram-list List of telegram groups, channels & bots // Список интересных групп, каналов и ботов телеграма // Список чатов для программистов
[2131星][2y] [Py] scrapy-plugins/scrapy-splash Scrapy+Splash for JavaScript integration
[2131星][2m] [Py] elceef/dnstwist 域名置换引擎，用于检测打字错误，网络钓鱼和企业间谍活动
[2127星][4m] yeahhub/hacking-security-ebooks Top 100 Hacking & Security E-Books (Free Download)
[2126星][4y] [C] yarrick/pingfs Stores your data in ICMP ping packets
[2123星][10m] [Go] shiyanhui/dht BitTorrent DHT Protocol && DHT Spider.
[2122星][7y] [C++] lloyd/node-memwatch A NodeJS library to keep an eye on your memory usage, and discover and isolate leaks.
[2120星][9m] [Py] linkedin/qark 查找Android App的漏洞, 支持源码或APK文件
[2116星][2m] infoslack/awesome-web-hacking A list of web application security
[2116星][8m] [Py] calebmadrigal/trackerjacker 映射你没连接到的Wifi网络, 类似于NMap, 另外可以追踪设备
[2113星][1m] [Swift] krzysztofzablocki/lifetimetracker Find retain cycles / memory leaks sooner.
[2106星][4y] [C] hashcat/hashcat-legacy Advanced CPU-based password recovery utility
[2093星][15d] [C] flatpak/flatpak Linux application sandboxing and distribution framework
[2092星][1m] swiftonsecurity/sysmon-config Sysmon configuration file template with default high-quality event tracing
[2083星][9d] tanprathan/mobileapp-pentest-cheatsheet The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
[2080星][2m] [Go] theupdateframework/notary Notary is a project that allows anyone to have trust over arbitrary collections of data
[2078星][2m] edoverflow/bugbounty-cheatsheet A list of interesting payloads, tips and tricks for bug bounty hunters.
[2078星][1y] bluscreenofjeff/red-team-infrastructure-wiki Wiki to collect Red Team infrastructure hardening resources
[2075星][18d] [Java] elderdrivers/edxposed Elder driver Xposed Framework.
[2073星][5m] [Py] whaleshark-team/cobra Source Code Security Audit (源代码安全审计)
[2067星][3d] [Java] williamfiset/algorithms A collection of algorithms and data structures
[2066星][2m] hmaverickadams/beginner-network-pentesting Notes for Beginner Network Pentesting Course
[2064星][21d] [Go] 42wim/matterbridge bridge between mattermost, IRC, gitter, xmpp, slack, discord, telegram, rocket.chat, steam, twitch, ssh-chat, zulip, whatsapp, keybase, matrix and more with REST API (mattermost not required!)
[2064星][3m] [C++] lordnoteworthy/al-khaser 在野恶意软件使用的技术：虚拟机，仿真，调试器，沙盒检测。
[2061星][19d] [Py] welliamcao/opsmanage 自动化运维平台: 代码及应用部署CI/CD、资产管理CMDB、计划任务管理平台、SQL审核|回滚、任务调度、站内WIKI
[2061星][27d] [C++] darthton/blackbone Windows memory hacking library
[2059星][5d] [HTML] gtfobins/gtfobins.github.io Curated list of Unix binaries that can be exploited to bypass system security restrictions
[2057星][25d] [ObjC] ios-control/ios-deploy Install and debug iPhone apps from the command line, without using Xcode
[2057星][9m] [Shell] foospidy/payloads web 攻击 Payload 集合
[2054星][3d] [Java] jeremylong/dependencycheck OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
[2053星][30d] [C#] mathewsachin/captura Capture Screen, Audio, Cursor, Mouse Clicks and Keystrokes
[2053星][4m] [Go] maxmcd/webtty Share a terminal session over WebRTC
[2053星][2m] [Java] genymobile/gnirehtet Gnirehtet provides reverse tethering for Android
[2052星][19d] [C++] openthread/openthread OpenThread released by Google is an open-source implementation of the Thread networking protocol
[2051星][27d] [Py] sensepost/objection runtimemobile exploration
[2050星][1m] [Py] nabla-c0d3/sslyze SSL/TLS服务器扫描
[2049星][19d] [Go] projectcontour/contour Contour is a Kubernetes ingress controller using Lyft's Envoy proxy.
[2049星][25d] [Go] goodrain/rainbond Enterprise application cloud operating system(企业应用云操作系统)
[2044星][2y] [Py] derv82/wifite 自动化无线攻击工具
[2042星][1y] [C] minhaskamal/creepycodecollection A Nonsense Collection of Disgusting Codes (quine-polyglot-code-golf-obfuscated-signature-creepy-codes-mandelbrot-esoteric-language-esoteric-programming-strange-golfing-spooky-weird)
[2040星][10m] [C] dekunukem/nintendo_switch_reverse_engineering A look at inner workings of Joycon and Nintendo Switch
[2035星][21d] [Py] j3ssie/osmedeus Fully automated offensive security framework for reconnaissance and vulnerability scanning
[2034星][5m] [HTML] nikolait/googlescraper A Python module to scrape several search engines (like Google, Yandex, Bing, Duckduckgo, ...). Including asynchronous networking support.
[2031星][8d] [JS] jeremykenedy/laravel-auth Laravel 6 with user authentication, registration with email confirmation, social media authentication, password recovery, and captcha protection. Uses offical [Bootstrap 4](
[2028星][22d] [Go] projectdiscovery/subfinder Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
[2028星][22d] [Go] projectdiscovery/subfinder 使用Passive Sources, Search Engines, Pastebins, Internet Archives等查找子域名
[2025星][5y] [CoffeeScript] shadowsocks/shadowsocks-gui Shadowsocks GUI client
[2020星][3m] [Py] xuefenghuang/lianjia-scrawler 链家二手房租房在线数据，存量房交易服务平台数据，详细数据分析教程
[2018星][2m] qazbnm456/awesome-cve-poc CVE PoC列表
[2017星][9d] infosecn1nja/ad-attack-defense Attack and defend active directory using modern post exploitation adversary tradecraft activity
[2016星][1y] [C] xoreaxeaxeax/rosenbridge Hardware backdoors in some x86 CPUs
[2016星][3y] [Swift] urinx/iosapphook 专注于非越狱环境下iOS应用逆向研究，从dylib注入，应用重签名到App Hook
[2011星][8m] [Py] fsecurelabs/drozer The Leading Security Assessment Framework for Android.
[2005星][4y] [C] probablycorey/wax Wax is now being maintained by alibaba
[2003星][3m] [Go] skynetservices/skydns DNS service discovery for etcd
[2003星][2m] [C++] asmjit/asmjit Complete x86/x64 JIT and AOT Assembler for C++
[2002星][11d] [TS] microsoft/vscode-react-native VSCode extension for React Native - supports debugging and editor integration
[2001星][2m] [Swift] github/softu2f Software U2F authenticator for macOS
[2000星][22d] [Rust] indygreg/pyoxidizer A modern Python application packaging and distribution tool
[1998星][24d] [Py] momosecurity/aswan 陌陌风控系统静态规则引擎，零基础简易便捷的配置多种复杂规则，实时高效管控用户异常行为。
[1997星][2m] [Py] wistbean/learn_python3_spider python爬虫教程系列、从0到1学习python爬虫，包括浏览器抓包，手机APP抓包，如 fiddler、mitmproxy，各种爬虫涉及的模块的使用
[1996星][1y] [BitBake] 1n3/intruderpayloads BurpSuite Intruder Payload收集
[1990星][4y] [Go] yahoo/gryffin Gryffin is a large scale web security scanning platform.
[1990星][2y] dloss/python-pentest-tools 可用于渗透测试的Python工具收集
[1986星][1m] [Go] ullaakut/cameradar Cameradar hacks its way into RTSP videosurveillance cameras
[1979星][9d] [Java] kyson/androidgodeye AndroidGodEye:A performance monitor tool , like "Android Studio profiler" for Android , you can easily monitor the performance of your app real time in pc browser
[1973星][2y] [Py] minimaxir/facebook-page-post-scraper Data scraper for Facebook Pages, and also code accompanying the blog post How to Scrape Data From Facebook Page Posts for Statistical Analysis
[1970星][7d] [C] adaway/adaway AdAway is an open source ad blocker for Android using the hosts file.
[1970星][25d] [Py] cea-sec/miasm Reverse engineering framework in Python
[1967星][2y] [Py] dormymo/spiderkeeper admin ui for scrapy/open source scrapinghub
[1966星][16d] [C] meituan-dianping/logan Logan is a lightweight case logging system based on mobile platform.
[1966星][10m] [JS] weichiachang/stacks-cli Check website stack from the terminal
[1964星][24d] [Perl] spiderlabs/owasp-modsecurity-crs OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
[1964星][3y] obfuscator-llvm/obfuscator Obfuscator-LLVM
[1959星][1m] [Py] bisguzar/twitter-scraper Twitter爬虫, 利用Twitter前端API
[1958星][1m] [Go] mpolden/echoip IP address lookup service
[1957星][18d] [CSS] cyb3rward0g/helk 对ELK栈进行分析，具备多种高级功能，例如SQL声明性语言，图形，结构化流，机器学习等
[1957星][19d] chaitin/xray xray 安全评估工具 | 使用之前务必先阅读文档
[1956星][2m] [Py] nixawk/pentest-wiki PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
[1955星][17d] [Go] solo-io/gloo An Envoy-Powered API Gateway
[1954星][1y] [Go] hyperhq/hyperd HyperContainer Daemon
[1954星][23d] [C] microsoft/procdump-for-linux Linux 版本的 ProcDump
[1952星][3y] [C#] lazocoder/windows-hacks Creative and unusual things that can be done with the Windows API.
[1946星][7m] [Java] fuzion24/justtrustme An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning
[1945星][20d] [Go] zalando/skipper An HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress
[1945星][6d] [C#] lucasg/dependencies A rewrite of the old legacy software "depends.exe" in C# for Windows devs to troubleshoot dll load dependencies issues.
[1944星][3y] [Py] aoncyberlabs/windows-exploit-suggester This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
[1943星][6m] [C] darkk/redsocks transparent TCP-to-proxy redirector
[1938星][2y] [Py] gaojiuli/gain Web crawling framework based on asyncio.
[1933星][20d] [C++] powerdns/pdns PowerDNS
[1930星][4m] toolswatch/blackhat-arsenal-tools Black Hat 武器库
[1930星][28d] [C++] mhammond/pywin32 Python for Windows (pywin32) Extensions
[1928星][4y] [Py] ziggear/shadowsocks backup of https://github.com/shadowsocks/shadowsocks
[1926星][30d] [C#] hmbsbige/shadowsocksr-windows ShadowsocksR for Windows
[1925星][1m] [Py] lanjelot/patator Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
[1924星][1m] olivierlaflamme/cheatsheet-god Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
[1924星][1y] [Py] derv82/wifite2 无线网络审计工具wifite 的升级版/重制版
[1923星][7d] [C++] acidanthera/lilu Arbitrary kext and process patching on macOS
[1921星][6m] [Py] scrapy/scrapyd A service daemon to run Scrapy spiders
[1919星][18d] [C] ntop/ndpi Open Source Deep Packet Inspection Software Toolkit
[1912星][20d] [Shell] toniblyx/prowler AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark and DOZENS of additional checks including GDPR and HIPAA (+100). Official CIS for AWS guide:
[1911星][17d] [C] chipsec/chipsec 分析PC平台的安全性, 包括硬件、系统固件（BIOS/UEFI）和平台组件
[1907星][24d] [Go] minishift/minishift Run OpenShift 3.x locally
[1906星][3m] [Py] pycqa/bandit 在Python代码中查找常见的安全问题
[1905星][6m] [JS] robinmoisson/staticrypt Password protect a static HTML page
[1904星][14d] [Py] bregman-arie/devops-interview-questions Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization
[1898星][10d] [PHP] phpmetrics/phpmetrics Static analysis tool for PHP
[1898星][17d] [Py] mozilla/mozdef Mozilla Enterprise Defense Platform
[1895星][1m] [Py] aquasecurity/kube-hunter Hunt for security weaknesses in Kubernetes clusters
[1894星][1y] [Py] aploium/zmirror 一个Python反向HTTP代理程序, 用于快速、简单地创建别的网站的镜像, 自带本地文件缓存、CDN支持
[1893星][5y] [C++] tum-vision/lsd_slam LSD-SLAM
[1893星][20d] [C] merbanan/rtl_433 解码来自以433.9 MHz广播的设备（例如温度传感器）的流量
[1891星][5m] [C] shadowsocks/simple-obfs A simple obfuscating tool (Deprecated)
[1886星][1m] [YARA] yara-rules/rules Repository of yara rules
[1882星][5m] [Py] python-security/pyt Python Web App 安全漏洞检测和静态分析工具
[1882星][5m] bypass007/emergency-response-notes 应急响应实战笔记，一个安全工程师的自我修养。
[1881星][5m] [Shell] arismelachroinos/lscript 自动化无线渗透和Hacking 任务的脚本
[1877星][1m] [Java] adoptopenjdk/jitwatch Log analyser / visualiser for Java HotSpot JIT compiler. Inspect inlining decisions, hot methods, bytecode, and assembly. View results in the JavaFX user interface.
[1873星][2m] [C] tinyproxy/tinyproxy a light-weight HTTP/HTTPS proxy daemon for POSIX operating systems
[1872星][24d] [TS] rangle/augury Angular Debugging and Visualization Tools
[1871星][1m] [Lua] vulnerscom/nmap-vulners NSE script based on Vulners.com API
[1871星][11m] [PHP] bartblaze/php-backdoors A collection of PHP backdoors. For educational or testing purposes only.
[1867星][1y] [Java] jindrapetrik/jpexs-decompiler JPEXS Free Flash Decompiler
[1864星][4y] [ObjC] xcodeghostsource/xcodeghost "XcodeGhost" Source
[1864星][19d] [Shell] pirate/wireguard-docs
[1863星][16d] [C++] pytorch/glow Compiler for Neural Network hardware accelerators
[1862星][18d] [TS] snyk/snyk CLI and build-time tool to find & fix known vulnerabilities in open-source dependencies
[1862星][30d] [Py] lorien/grab Web Scraping Framework
[1860星][3m] [Py] pwnlandia/mhn 蜜罐网络
[1859星][6m] [Py] lanbing510/doubanspider 豆瓣读书的爬虫
[1859星][1y] [C++] googlecreativelab/open-nsynth-super Open NSynth Super is an experimental physical interface for the NSynth algorithm
[1857星][1y] [Java] yeriomin/yalpstore Download apks from Google Play Store
[1855星][18d] [Py] hunters-forge/threathunter-playbook A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
[1854星][25d] [C] github/glb-director GitHub Load Balancer Director and supporting tooling.
[1852星][1y] [Py] jinnlynn/genpac PAC/Dnsmasq/Wingy file Generator, working with gfwlist, support custom rules.
[1851星][7m] [Assembly] pooler/cpuminer cpuminer：莱特币和比特币的多线程 CPU 矿机
[1849星][3y] [Java] chora10/cknife Cknife
[1848星][9m] [Py] netflix-skunkworks/stethoscope Personalized, user-focused recommendations for employee information security.
[1846星][6m] [Py] veil-framework/veil 生成免杀的Metasploit Payload
[1846星][3m] [C] retroplasma/earth-reverse-engineering Reversing Google's 3D satellite mode
[1845星][7m] [Java] nekocode/camerafilter
[1845星][3m] djadmin/awesome-bug-bounty A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
[1837星][1y] [Py] nyloner/nyspider 各种爬虫
[1837星][3m] [Go] influxdata/kapacitor Open source framework for processing, monitoring, and alerting on time series data
[1834星][2m] [Shell] ttlequals0/autovpn Create On Demand Disposable OpenVPN Endpoints on AWS.
[1832星][4m] [JS] coreybutler/node-windows Windows support for Node.JS scripts (daemons, eventlog, UAC, etc).
[1831星][1y] [CSS] ctfs/write-ups-2015 Wiki-like CTF write-ups repository, maintained by the community. 2015
[1827星][19d] [Py] trailofbits/manticore 动态二进制分析工具，支持符号执行（symbolic execution）、污点分析（taint analysis）、运行时修改。
[1827星][22d] [C] mgba-emu/mgba mGBA Game Boy Advance Emulator
[1826星][7m] [C++] iagox86/dnscat2 在 DNS 协议上创建加密的 C&C channel
[1824星][2m] [Go] puerkitobio/gocrawl Polite, slim and concurrent web crawler.
[1817星][6m] [Java] xtuhcy/gecco 易用的轻量化网络爬虫
[1816星][1m] [Go] gdamore/tcell Tcell is an alternate terminal package, similar in some ways to termbox, but better in others.
[1808星][23d] [Py] yandex/yandex-tank Load and performance benchmark tool
[1808星][8m] [Py] lijiejie/subdomainsbrute 子域名爆破
[1803星][1y] [Go] intelsdi-x/snap an open telemetry framework designed to simplify the collection, processing and publishing of system data through a single API.
[1801星][1y] [Py] ctfs/write-ups-2017 Wiki-like CTF write-ups repository, maintained by the community. 2017
[1801星][1y] aozhimin/ios-monitor-platform
[1800星][3y] [ObjC] kpwn/yalu102 incomplete iOS 10.2 jailbreak for 64 bit devices by qwertyoruiopz and marcograssi
[1793星][8m] [C++] wrbug/dumpdex Android脱壳
[1792星][14d] [Shell] leebaird/discover 自定义的bash脚本, 用于自动化多个渗透测试任务, 包括: 侦查、扫描、解析、在Metasploit中创建恶意Payload和Listener
[1789星][1m] selierlin/share-ssr-v2ray 解决科学上网问题
[1787星][4y] caesar0301/awesome-pcaptools 用于处理网络痕迹的工具收集
[1786星][1m] [C++] apitrace/apitrace Tools for tracing OpenGL, Direct3D, and other graphics APIs
[1782星][4m] [Py] epinna/weevely3 用于后渗透的Web Shell，可以在运行时通过网络对其进行扩展
[1781星][1m] [PHP] ezyang/htmlpurifier Standards compliant HTML filter written in PHP
[1779星][1m] 17mon/china_ip_list IPList for China by IPIP.NET
[1777星][7m] [JS] pstadler/flightplan Run sequences of shell commands against local and remote hosts.
[1777星][20d] [Go] convox/rack Private PaaS built on native AWS services for maximum privacy and minimum upkeep
[1775星][15d] [C] schwabe/ics-openvpn OpenVPN for Android
[1775星][2y] [JS] cazala/coin-hive CoinHive cryptocurrency miner for node.js
[1773星][3y] [ObjC] tapwork/heapinspector-for-ios Find memory issues & leaks in your iOS app without instruments
[1771星][16d] onethawt/idaplugins-list IDA插件收集
[1771星][3y] [ObjC] alibaba/wax Wax is a framework that lets you write native iPhone apps in Lua.
[1770星][16d] sirredbeard/awesome-wsl Awesome list dedicated to Windows Subsystem for Linux
[1770星][2y] [CSS] b374k/b374k a useful tool for system or web administrator to do remote management without using cpanel, connecting using ssh, ftp etc.
[1767星][19d] atarity/deploy-your-own-saas List of "only yours" cloud services for everyday needs
[1763星][1y] [PS] fuzzysecurity/powershell-suite My musings with PowerShell
[1763星][3y] [Go] elastic/logstash-forwarder An experiment to cut logs in preparation for processing elsewhere. Replaced by Filebeat:
[1761星][18d] [C] google/wuffs Wrangling Untrusted File Formats Safely
[1761星][1y] [JS] puppeteer/examples Use case-driven examples for using Puppeteer and headless chrome
[1760星][26d] [Go] xiaoming2028/free-pac 科学上网/梯子/自由上网/翻墙 SS/SSR/V2Ray/Brook 搭建教程
[1760星][1y] coreb1t/awesome-pentest-cheat-sheets Collection of the cheat sheets useful for pentesting
[1758星][22d] [PHP] wordpress/wordpress-coding-standards PHP_CodeSniffer rules (sniffs) to enforce WordPress coding conventions
[1756星][3m] [PHP] orangetw/my-ctf-web-challenges Collection of CTF Web challenges I made
[1756星][7m] [Smali] ahmyth/ahmyth-android-rat Android Remote Administration Tool
[1754星][10m] [Py] constverum/proxybroker Proxy [Finder | Checker | Server]. HTTP(S) & SOCKS
[1753星][5m] [Py] lgandx/responder Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
[1752星][2m] ngalongc/bug-bounty-reference Inspired by
[1750星][10m] [Shell] ryanmjacobs/c Compile and execute C "scripts" in one go!
[1748星][4m] tunz/js-vuln-db A collection of JavaScript engine CVEs with PoCs
[1748星][2m] [PS] fireeye/flare-vm 火眼发布用于 Windows 恶意代码分析的虚拟机：FLARE VM
[1741星][2y] [Go] vzex/dog-tunnel p2p tunnel,(udp mode work with kcp,
[1740星][6m] [Shell] quericy/one-key-ikev2-vpn A bash script base on Centos or Ubuntu help you to create IKEV2/L2TP vpn.
[1740星][1y] [Java] ac-pm/inspeckage Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)
[1737星][14d] [TSQL] brentozarultd/sql-server-first-responder-kit sp_Blitz, sp_BlitzCache, sp_BlitzFirst, sp_BlitzIndex, and other SQL Server scripts for health checks and performance tuning.
[1731星][3y] [Go] s-rah/onionscan OnionScan is a free and open source tool for investigating the Dark Web.
[1727星][17d] [C] google/honggfuzz Security oriented fuzzer with powerful analysis options. Supports evolutionary, feedback-driven fuzzing based on code coverage (software- and hardware-based)
[1723星][5m] [C] jeelabs/esp-link esp8266 wifi-serial bridge, outbound TCP, and arduino/AVR/LPC/NXP programmer
[1722星][4m] [Py] anorov/cloudflare-scrape A Python module to bypass Cloudflare's anti-bot page.
[1720星][16d] [Ruby] cliffe/secgen creates vulnerable virtual machines so students can learn security penetration testing techniques
[1717星][2m] [Go] eth0izzle/shhgit 监听Github Event API，实时查找Github代码和Gist中的secret和敏感文件
[1716星][8m] [Py] guelfoweb/knock 使用 Wordlist 枚举子域名
[1716星][4m] [R] briatte/awesome-network-analysis A curated list of awesome network analysis resources.
[1714星][27d] [C++] microsoft/detours Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
[1714星][1m] [Go] hashicorp/memberlist Golang package for gossip based membership and failure detection
[1711星][16d] [HTML] clong/detectionlab Vagrant & Packer scripts to build a lab environment complete with security tooling and logging best practices
[1709星][23d] [Go] hunterlong/statping Status Page for monitoring your websites and applications with beautiful graphs, analytics, and plugins. Run on any type of environment.
[1708星][4y] [C] signal11/hidapi A Simple library for communicating with USB and Bluetooth HID devices on Linux, Mac, and Windows.
[1705星][4m] [PHP] xtr4nge/fruitywifi FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system (Jessie) adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM (Raspberry Pi), Raspbian (Raspberry Pi), Pwnpi (Raspberry Pi), Bugtraq, NetHunter.
[1705星][1y] [Swift] haxpor/potatso Potatso is an iOS client that implements Shadowsocks proxy with the leverage of NetworkExtension framework. ***This project is unmaintained, try taking a look at this fork
[1705星][10m] [CSS] bagder/http2-explained A detailed document explaining and documenting HTTP/2, the successor to the widely popular HTTP/1.1 protocol
[1701星][5m] [JS] expressjs/csurf CSRF token middleware
[1695星][7m] [Py] yelp/osxcollector A forensic evidence collection & analysis toolkit for OS X
[1694星][3y] [CoffeeScript] okturtles/dnschain A blockchain-based DNS + HTTP server that fixes HTTPS security, and more!
[1694星][23d] [HTML] chromium/badssl.com
[1693星][9m] [Makefile] raspberrypi/noobs NOOBS (New Out Of Box Software) - An easy Operating System install manager for the Raspberry Pi
[1692星][1y] owasp/devguide The OWASP Guide
[1692星][6m] [C] networkprotocol/netcode.io 基于UDP的安全通信协议
[1691星][3m] [Py] rootm0s/winpwnage UAC bypass, Elevate, Persistence and Execution methods
[1686星][2m] [Swift] pmusolino/wormholy iOS network debugging, like a wizard 🧙‍♂️
[1682星][3m] [NSIS] angryip/ipscan Angry IP Scanner - fast and friendly network scanner
[1682星][3d] roave/securityadvisories ensures that your application doesn't have installed dependencies with known security vulnerabilities
[1681星][2m] ivrodriguezca/re-ios-apps A completely free, open source and online course about Reverse Engineering iOS Applications.
[1679星][7m] [C] easyhook/easyhook The reinvention of Windows API Hooking
[1679星][7m] dsasmblr/game-hacking Tutorials, tools, and more as related to reverse engineering video games.
[1677星][1m] [Go] golang/crypto [mirror] Go supplementary cryptography libraries
[1676星][16d] [Java] apache/geode Apache Geode
[1673星][9d] [Go] mosn/mosn MOSN is a powerful cloud-native proxy acts as a edge proxy or service mesh's data plane.
[1672星][8m] [C++] yegord/snowman Snowman反编译器，支持x86, AMD64, ARM。有独立的GUI工具、命令行工具、IDA/Radare2/x64dbg插件，也可以作为库使用
- IDA插件
- snowman QT界面
- nocode 命令行工具
- nc 核心代码，可作为库使用
[1670星][15d] [JS] ghacksuserjs/ghacks-user.js An ongoing comprehensive user.js template for configuring and hardening Firefox privacy, security and anti-fingerprinting
[1668星][3m] [Py] boppreh/keyboard Hook and simulate global keyboard events on Windows and Linux.
[1666星][4y] [Java] dodola/hotfix 安卓App热补丁动态修复框架
[1666星][15d] [Py] cea-sec/ivre Network recon framework.
[1663星][2y] [Shell] juude/droidreverse android 逆向工程工具集
[1662星][1m] [Py] gerapy/gerapy Distributed Crawler Management Framework Based on Scrapy, Scrapyd, Django and Vue.js
[1660星][17d] [Py] ehco1996/django-sspanel 用diango开发的全新的shadowsocks网络面板
[1659星][30d] [JS] tylerbrock/mongo-hacker MongoDB Shell Enhancements for Hackers
[1659星][5m] [CSS] functionclub/v2ray.fun 正在开发的全新 V2ray.Fun
[1659星][1y] [Py] evyatarmeged/raccoon 高性能的侦查和漏洞扫描工具
[1657星][20d] [C#] jbevain/cecil C#库, 探查/修改/生成 .NET App/库
[1655星][2m] [Java] tiann/epic Dynamic java method AOP hook for Android(continution of Dexposed on ART), Supporting 4.0~10.0
[1655星][11m] [JS] evilcos/xssor2 XSS'OR - Hack with JavaScript.
[1654星][18d] [PHP] easyengine/easyengine Command-line control panel for Nginx Server to manage WordPress sites running on Nginx, PHP, MySQL, and Let's Encrypt
[1653星][7m] [Objective-C++] tencent/oomdetector OOMDetector is a memory monitoring component for iOS which provides you with OOM monitoring, memory allocation monitoring, memory leak detection and other functions.
[1653星][20d] [Go] bitnami-labs/sealed-secrets A Kubernetes controller and tool for one-way encrypted Secrets
[1652星][10m] tylerha97/awesome-reversing A curated list of awesome reversing resources
[1652星][1y] [Java] fesh0r/fernflower Unofficial mirror of FernFlower Java decompiler (All pulls should be submitted upstream)
[1650星][19d] sarojaba/awesome-devblog Awesome Devblog
[1649星][3y] [JS] camwiegert/baffle A tiny javascript library for obfuscating and revealing text in DOM elements.
[1646星][2m] [PHP] c0ny1/upload-labs 一个帮你总结所有类型的上传漏洞的靶场
[1645星][2m] [Shell] internetwache/gittools find websites with their .git repository available to the public
[1644星][12m] [C] dlundquist/sniproxy Proxies incoming HTTP and TLS connections based on the hostname contained in the initial request of the TCP session.
[1642星][1m] [Go] awnumar/memguard 处理内存中敏感的值，纯Go语言编写。
[1641星][5m] [Java] jaredrummler/androidprocesses DEPRECATED
[1640星][4y] [Py] ctfs/write-ups-2014 Wiki-like CTF write-ups repository, maintained by the community. 2014
[1640星][4y] [Py] ctfs/write-ups-2014 Wiki-like CTF write-ups repository, maintained by the community. 2014
[1637星][18d] [JS] efforg/privacybadger Privacy Badger is a browser extension that automatically learns to block invisible trackers.
[1636星][2y] jhaddix/tbhm The Bug Hunters Methodology
[1633星][10d] [C++] lief-project/lief Library to Instrument Executable Formats
[1625星][1m] [HTML] scrapy/scrapely A pure-python HTML screen-scraping library
[1624星][10m] [JS] localtunnel/server server for localtunnel.me
[1624星][10m] [C] nmikhailov/validity90 Reverse engineering of Validity/Synaptics 138a:0090, 138a:0094, 138a:0097, 06cb:0081, 06cb:009a fingerprint readers protocol
[1622星][3m] [Go] ysrc/yulong-hids 一款由 YSRC 开源的主机入侵检测系统
[1621星][2m] [Py] opendevops-cn/opendevops CODO是一款为用户提供企业多混合云、一站式DevOps、自动化运维、完全开源的云管理平台、自动化运维平台
[1620星][3y] [Makefile] drizzlerisk/drizzledumper 是一款基于内存搜索的Android脱壳工具。
[1620星][3m] [Ruby] ambethia/recaptcha ReCaptcha helpers for ruby apps
[1617星][2y] [JS] addyosmani/a11y Accessibility audit tooling for the web (beta)
[1613星][1m] [Java] spotbugs/spotbugs SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
[1613星][8m] [Go] sipt/shuttle A web proxy in Golang with amazing features.
[1611星][4m] [Py] knownsec/pocsuite This project has stopped to maintenance, please to
[1611星][6d] [Swift] indragiek/inappviewdebugger A UIView debugger (like Reveal or Xcode) that can be embedded in an app for on-device view debugging
[1609星][1m] [Go] sofastack/sofa-mosn 使用 Go 语言开发的网络代理软件，作为云原生的网络数据平面，旨在为服务提供多协议，模块化，智能化，安全的代理能力
[1609星][5m] [Py] mozilla/cipherscan 查找指定目标支持的SSL ciphersuites
[1608星][3m] [Java] internetarchive/heritrix3 Heritrix is the Internet Archive's open-source, extensible, web-scale, archival-quality web crawler project.
[1607星][3m] [C] firmianay/ctf-all-in-one CTF竞赛入门指南
[1605星][1y] [Py] nccgroup/scout2 Security auditing tool for AWS environments
[1602星][7m] [Py] w1109790800/penetration 渗透超全面的渗透资料
[1600星][2m] [C] ntop/n2n Peer-to-peer VPN
[1600星][2y] [JS] keraf/nocoin No Coin is a tiny browser extension aiming to block coin miners such as Coinhive.
[1599星][2m] [ObjC] ealeksandrov/provisionql Quick Look plugin for apps and provisioning profile files
[1595星][4y] l3m0n/pentest_study 从零开始内网渗透学习
[1593星][4y] [Go] hu17889/go_spider An awesome Go concurrent Crawler(spider) framework. The crawler is flexible and modular. It can be expanded to an Individualized crawler easily or you can use the default crawl components only.
[1592星][3y] [C] jech/polipo The Polipo caching HTTP proxy
[1590星][1m] [Go] eolinker/goku-api-gateway A Powerful HTTP API Gateway in pure golang！Goku API Gateway （中文名：悟空 API 网关）是一个基于 Golang开发的微服务网关，能够实现高性能 HTTP API 转发、服务编排、多租户管理、API 访问权限控制等目的，拥有强大的自定义插件系统可以自行扩展，并且提供友好的图形化配置界面，能够快速帮助企业进行 API 服务治理、提高 API 服务的稳定性和安全性。
[1590星][21d] [Shell] mzet-/linux-exploit-suggester Linux privilege escalation auditing tool
[1585星][7m] [Ruby] brunofacca/zen-rails-security-checklist Checklist of security precautions for Ruby on Rails applications.

codecat007 / sec-tool-list

所有收集类项目:

说明

工具列表

About