cqr-cryeye-forks's repositories
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, ThreatCrowd, Valhalla, Malware Bazaar, ThreatFox, Triage and it is able to scan Android devices against VT and HA.
PCredz
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
confused
Tool to check for dependency confusion vulnerabilities in multiple package management systems
pyWhat
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
domain-protect
Protect against subdomain takeover
maigret
🕵️♂️ Collect a dossier on a person by username from thousands of sites
vulcat
vulcat可用于扫描web端漏洞(框架、中间件、CMS等), 发现漏洞时会提示目标url和payload, 使用者可以根据提示 对漏洞进行验证并进一步利用
evilscan
NodeJS Simple Network Scanner
Aopo
内网自动化快速打点工具|资产探测|漏洞扫描|服务扫描|弱口令爆破
gokart
A static analysis tool for securing Go code
Moriarty-Project
This tool gives information about the phone number that you entered.
vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
smbmap
SMBMap is a handy SMB enumeration tool
blackbird
An OSINT tool to search for accounts by username in social networks.
fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
fscan-POC
Enhanced fscan's missed scan POC library
Uniscan
Uniscan web vulnerability scanner
Blazy
Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
flawfinder
a static analysis tool for finding vulnerabilities in C/C++ source code
pocV
Compatible with xray and nuclei poc framework
EHole
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
xray-zip
just asset of xray
dismap
Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
nali
一个查询IP地理信息和CDN服务提供商的离线终端工具.An offline tool for querying IP geographic information and CDN provider.
aquatone
A Tool for Domain Flyovers
SonarSearch
A rapid API for the Project Sonar dataset
apt2
APT2 is a pentest automation framework that can be used to assist pentesters, blue team members, and others in identifying easily exploitable issues and common attack paths.
unqlite-python
Python bindings for the UnQLite embedded NoSQL database