Fkbug's repositories
exploit
一个自动化渗透框架
kerberos_enum_userlists
Collection of username lists for enumerating kerberos domain users
xsec-proxy-scanner
xsec-proxy-scanner是一款速度超快、小巧的代理扫描器
DBScanner
自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch),包含未授权访问及常规弱口令检测
DL_for_xss
Deep learnning for detection with xss
CVE-2017-12617
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
GoInit
一个帮助学习和使用Golang的项目
token-priv
Token Privilege Research
HackMySQL
Using To MySQL Elevate Privileges.
ExploitOnCLI
Trying to be the best tool to search for exploits in the terminal.
EQGRP
Decrypted content of eqgrp-auction-file.tar.xz
awesome-python
A curated list of awesome Python frameworks, libraries, software and resources
Python_PoC
一款python编写的Web安全检测PoC&&EXP框架
tomcat-weak-password-scanner
醉考拉tomcat后台弱口令扫描器,命令行版+图形界面版。
Chinese-Names-Corpus
中文人名语料库
fuzz-wooyun-org
WooYun Fuzz 库
wiki.secmobi.com
SecMobi Wiki is a collection of mobile security resources.
WebshellManager
w8ay 一句话WEB端管理工具
a-full-list-of-wordlists
this contain the burp pack
SRCMS
SRCMS(轻响应)企业应急响应中心开发框架模版
AntiDebug
此目录收集整理反调试方法
dvta
Damn Vulnerable Thick Client App
ABPTTS
TCP tunneling over HTTP/HTTPS for web application servers
1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
mobile
基于Jingle框架的移动开发
scansploit
Exploit using barcodes, QRcodes, earn13, datamatrix