huy4ng's repositories
31-days-of-pentesting
31 Tips for pentesters & security engineers
api_wordlist
A wordlist of API names for web application assessments
Awesome-Cybersecurity-Datasets
A curated list of amazingly awesome Cybersecurity datasets
awesome-hacker-api-tools
A collection of hacker tools using HackerOne's API
burp-copy-as-ffuf
Burp Extension that copies a request and builds a FFUF skeleton
BypassSecuritySoftware
该仓库用于放置自己编写绕过杀软的程序
crest-cpsa
Project to train for CREST CPSA exam. Includes 225 leaked questions
fuzz.txt
Potentially dangerous files
generator
CyberDoggos NFT Generator
lazyCSRF
A more useful CSRF PoC generator on Burp Suite
MyRubbishScripts
自己写的一些垃圾脚本,防丢
osmedeus
A Workflow Engine for Offensive Security
Payloads
Payload Arsenal for Pentration Tester and Bug Bounty Hunters
Reconator
Automated Recon for Pentesting & Bug Bounty
rogue-jndi
A malicious LDAP server for JNDI injection attacks
sfg-blog-posts
Source code examples for blog posts
SimplesApachePathTraversal
Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519
tiktok
抖音批量下载与去水印工具, 视频、图集、合集、音乐(原声)
WAF-bypass-xss-payloads
XSS payloads for bypassing WAF. This repository is updating continuously.
WeChatExtension-ForMac
Mac微信功能拓展/微信插件/微信小助手(A plugin for Mac WeChat)
Yasso
强大的内网渗透辅助工具集-让Yasso像风一样 支持rdp,ssh,redis,postgres,mongodb,mssql,mysql,winrm等服务爆破,快速的端口扫描,强大的web指纹识别,各种内置服务的一键利用(包括ssh完全交互式登陆,mssql提权,redis一键利用,mysql数据库查询,winrm横向利用,多种服务利用支持socks5代理执行)