danny-lei's repositories
As-Exploits
**蚁剑后渗透框架
awesome-security-weixin-official-accounts
网络安全类公众号推荐,欢迎大家推荐
Behinder
“冰蝎”动态二进制加密网站管理客户端
BlackMamba
C2/post-exploitation framework
commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com
DataV
Vue数据可视化组件库(类似阿里DataV,大屏数据展示),提供SVG的边框及装饰、图表、水位图、飞线图等组件,简单易用,长期更新(React版已发布)
DVWA
Damn Vulnerable Web Application (DVWA)
Goby
Attack surface mapping
GobyVuls
Vulnerabilities of Goby supported with exploitation.
Godzilla
哥斯拉
iDataV
大屏数据可视化 Big screen data visualization demo
juicy-potato
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
ksubdomain
无状态子域名爆破工具
Kunyu
Kunyu, more efficient corporate asset collection
Ladon
大型内网渗透扫描器&Cobalt Strike,Ladon8.8内置117个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
olist213_Information_Security_Books
150本信息安全方面的书籍书籍(持续更新)
Python-Network-Programming-Cookbook-Second-Edition
Python Network Programming Cookbook – Second Edition, published by Packt
Rust-Study-Resource
Rust学习资源收集。
sqlmap
Automatic SQL injection and database takeover tool
upload-labs
一个想帮你总结所有类型的上传漏洞的靶场
vue-big-screen
一个基于 vue、datav、Echart 框架的大数据可视化(大屏展示)模板,实现大数据可视化。通过 vue 组件实现数据动态刷新渲染,内部图表可自由替换。部分图表使用 DataV 自带组件,可自由进行更改(ps:最新的更新请前往码云查看,下面有链接)。
w13scan
Passive Security Scanner (被动式安全扫描器)
Windows-Exploit-Suggester
This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
xunfeng
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。