cyal1's repositories
SendToXray
SendToXray - Burp Suite Extender, Send HTTP request to XRAY proxy.
bbrf-client
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
BlackDex
BlackDex is an Android unpack tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phones or emulators, you can unpack APK File in several seconds.
dirsearch
Web path scanner
DNSStager
Hide your payload in DNS
EHole
EHole(棱洞)2.0 重构版-红队重点攻击系统指纹探测工具
elk
log analyse
evil-winrm
The ultimate WinRM shell for hacking/pentesting
evilarc
Create tar/zip archives that can exploit directory traversal vulnerabilities
FavFreak
Making Favicon.ico based Recon Great again !
fuzz.txt
Potentially dangerous files
h1stats
a tool that compiles a csv of all h1 program stats
JSP-Webshells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Proxylogon
ProxyLogon Pre-Auth SSRF To Arbitrary File Write
pub
Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb
r0capture
安卓应用层抓包通杀脚本
RedRabbit
Red Team PowerShell Script
redtool
日常积累的一些红队工具及自己写的脚本,更偏向于一些diy的好用的工具,并不是一些比较常用的msf/awvs/xray这种
requests-raw
Use requests to send HTTP raw sockets (To Test RFC Compliance)
shiro-550-with-NoCC
奇安信北京攻防团队: Shiro-550 不依赖CC链利用工具
SniperPhish
SniperPhish - The Web-Email Spear Phishing Toolkit
subnetsmap
Discover subnets blind during internal network
tabby
A CAT called tabby ( Code Analysis Tool )
weaver_exp
泛微OA漏洞综合利用脚本
weblogic-framework
weblogic-framework
wifite2
Rewrite of the popular wireless network auditor, "wifite"
wxappUnpacker-1
小程序反编译(支持分包)
x8
Hidden parameters discovery suite