Fkbug's repositories
AlanFramework
A post-exploitation framework
BurpSuite-collections
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
charlotte
c++ fully undetected shellcode launcher ;)
cupp
Common User Passwords Profiler (CUPP)
DarkEye
渗透测试情报收集工具
DcRat
A simple remote tool written in C#. 一个简单的c#远控
DNSStager
Hide your payload in DNS
domain_hunter_pro
domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等
DongTaiDoc
灵芝IAST是一款交互式应用安全评估工具,覆盖了Java WEB相关安全风险的检测,具有近实时检测、准确率高、误报率低、漏洞链路清晰等特点|使用之前请阅读官方文档
Hack-Tools
The all-in-one Red Team extension for Web Pentester 🛠
Labeled-Elfs
A collection of well labeled ELF binaries compiled from benign and malicious code in various ways. Great for exploring similarity in executables and training various ML models.
lanproxy
lanproxy是一个将局域网个人电脑、服务器代理到公网的内网穿透工具,支持tcp流量转发,可支持任何tcp上层协议(访问内网网站、本地支付接口调试、ssh访问、远程桌面...)。目前市面上提供类似服务的有花生壳、TeamView、GoToMyCloud等等,但要使用第三方的公网服务器就必须为第三方付费,并且这些服务都有各种各样的限制,此外,由于数据包会流经第三方,因此对数据安全也是一大隐患。技术交流QQ群 1067424330
lf
Terminal file manager
next-terminal
Next Terminal是使用Golang和React开发的一款HTML5的远程桌面网关,具有小巧、易安装、易使用、资源占用小的特点,支持RDP、SSH、VNC和Telnet协议的连接和管理。
note
记录自己写的工具和学习笔记
Rafel-Rat
-------> RAFEL<------ Android Rat Written in Java With WebPanel For Controlling Victims...Hack Android Devices
RedWarden
Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
rengine
reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.
reverse-shell-generator
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
SCFProxy
A little proxy tool based on Tencent Cloud Function Service.
SharpNoPSExec
Get file less command execution for lateral movement.
SniperPhish
SniperPhish - The Web-Email Spear Phishing Toolkit
ssf
Secure Socket Funneling - Network tool and toolkit - TCP and UDP port forwarding, SOCKS proxy, remote shell, standalone and cross platform
streamlit-cheat-sheet
A cheat sheet for streamlit
STS2G
Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang
vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
wappalyzergo
A high performance go implementation of Wappalyzer Technology Detection Library
wesng
Windows Exploit Suggester - Next Generation
winsw
A wrapper executable that can run any executable as a Windows service, in a permissive license.
WordPress-Brute-Force
Super fast login WordPress Brute Force