galaxylove's repositories
APT_REPORT
Interesting apt report collection and some special ioc express
Atlas
Quick SQLMap Tamper Suggester
BruteX
Automatically brute force all services running on a target.
commando-vm
Complete Mandiant Offensive VM (Commando VM), the first full Windows-based penetration testing virtual machine distribution. The security community recognizes Kali Linux as the go-to penetration testing platform for those that prefer Linux. Commando VM is for penetration testers that prefer Windows. We know that building a Windows penetration testing environment can be tedious - we aim to streamline and simplify this process. Commando VM includes over 140 tools.
CVE-2019-2725
CVE-2019-2725 命令回显
dirmap
一个高级web目录扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑
Emergency-Response-Notes
应急响应实战笔记,一个安全工程师的自我修养。
jQuery-File-Upload
File Upload widget with multiple file selection, drag&drop support, progress bar, validation and preview images, audio and video for jQuery. Supports cross-domain, chunked and resumable file uploads. Works with any server-side platform (Google App Engine, PHP, Python, Ruby on Rails, Java, etc.) that supports standard HTML form file uploads.
JSFinder
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest)
libpku
北京大学课程资料整理
MSSQL_SQL_BYPASS_WIKI
MSSQL注入提权,bypass的一些总结
MYSQL_SQL_BYPASS_WIKI
mysql注入,bypass的一些心得
Papers
Some papers about cyber security
phpinfo_scanner
一个抓取phpinfo重要信息的小工具
REKCARC-TSC-UHT
清华大学计算机系课程攻略 Guidance for courses in Department of Computer Science and Technology, Tsinghua University
Shr3dKit
Red Team Tool Kit
SJTU-Courses
上海交通大学课程资料分享
subDomainsBrute
A fast sub domain brute tool for pentesters子域名扫描器
terminal
The new Windows Terminal, and the original Windows console host -- all in the same place!
The-Hacker-Playbook-3-Translation
对 The Hacker Playbook 3 的翻译。
USTC-CS-Courses-Resource
:heart:**科学技术大学计算机学院课程资源(https://mbinary.xyz/ustc-cs/)
vxhunter
ToolSet for VxWorks Based Embedded Device Analyses
Vxscan
python3写的综合扫描工具,主要用来敏感文件探测(目录扫描与js泄露接口),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,弱口令探测,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
w12scan
网络资产搜索发现引擎,毕业设计 (My graduation design,like shodan fofa and zoomeye, but stronger)
WDScanner
WDScanner平台目前实现了如下功能:分布式web漏洞扫描、客户管理、漏洞定期扫描、子域名枚举、端口扫描、网站爬虫、暗链检测、坏链检测、网站指纹搜集、专项漏洞检测、代理搜集及部署等功能。
zju-icicles
浙江大学课程攻略共享计划
ZSXQFileDownload
知识星球,小密圈 附件批量下载