huakaii

antSword

中国蚁剑是一款跨平台的开源网站管理工具

1000php

1000个PHP代码审计案例(2016.7以前乌云公开漏洞)

CrackMapExec

A swiss army knife for pentesting Windows/Active Directory environments

cve-2017-7494

Proof-of-Concept exploit for CVE-2017-7494(Samba RCE from a writable share)

ddos-dos-tools

some sort of ddos-tools

DSFS

Damn Small FI Scanner

EQGRP

Decrypted content of eqgrp-auction-file.tar.xz

eqgrp-free-file

Free sampling of files from the purported Equation Group hack.

evilgrade

exserial

Java Untrusted Deserialization Exploits Tools

Fastir_Collector

GourdScan

gryffin

Gryffin is a large scale web security scanning platform

icp-data

ICP Data.

KCon

KCon is a famous Hacker Con powered by Knownsec Team.

macOS-10.12.2-Exp-via-mach_voucher

Local Privilege Escalation for macOS 10.12.2 via mach_voucher and XNU port Feng Shui

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

masscan-web-ui

MASSCAN Web UI

metasploit-framework

Metasploit Framework

mimipenguin

A tool to dump the login password from the current linux user

netgraph

Capture and analyze http and tcp streams

phishlulz

poisontap

Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.

pupy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

reGeorg

The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.

RSPET

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

shadowbroker

shadowsocks

VxPwn

VxWorks漏洞挖掘相关

wig

WebApp Information Gatherer