Beast code in Giters

feiniaoyizhi's starred repositories

weblogicScanner

weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883

Language:Python197300

JNDI-Injection-Exploit

JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）

Language:JavaMIT254300

yarGen

yarGen is a generator for YARA rules

Language:PythonNOASSERTION151700

HaE

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Language:JavaApache-2.0275500

copagent

java memory web shell extracting tool

Language:JavaApache-2.039600

Fofa-gui

Fofa采集工具-自修改版本

27800

BurpSuite-collections

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Language:HTMLMIT326100

shiroPoc

Language:Java32100

Decryption-Tools

90100

POC-EXP

Collecting and writing PoC or EXP for vulnerabilities on some application

Language:PythonGPL-3.039500

CTF-Training

收集各大比赛的题目和Writeup

Language:Python39800

ctf-pwns

Some pwn challenges selected for training and education.

Language:C37700

CTF_web

a project aim to collect CTF web practices .

Language:PHPMIT67400

vulstudy

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。

Language:Shell218900

SpringBootVulExploit

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

Language:Java570700

pikachu

一个好玩的Web安全-漏洞测试平台

Language:PHPApache-2.0362600

SB-Actuator

Spring Boot Actuator未授权访问【XXE、RCE】单/多目标检测

Language:Python50500

xray

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Language:VueNOASSERTION1018200

Behinder

“冰蝎”动态二进制加密网站管理客户端

574400

Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

817200

RedisDesktopManager

Language:C++NOASSERTION2286000

MobaXterm-keygen

A keygen for MobaXterm

Language:PythonGPL-3.078500

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPMIT13600

feiniaoyizhi