jiandandan's repositories
WebGoat
WebGoat 8.0
metasploit-framework
Metasploit Framework
awesome-python-cn
Python资源大全中文版,包括:Web框架、网络爬虫、模板引擎、数据库、数据可视化、图片处理等,由伯乐在线持续更新。
sqlmap
Automatic SQL injection and database takeover tool
vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container Image, Running Container, WordPress, Programming language libraries, Network devices
puppeteer
Headless Chrome Node API
wpscan
WPScan is a free, for non-commercial use, black box WordPress Vulnerability Scanner written for security professionals and blog maintainers to test the security of their WordPress websites.
AutumnBox
图形化ADB工具箱
requests
Python HTTP Requests for Humans™ ✨🍰✨
exploitdb
The official Exploit Database repository
frida
Clone this repo to build Frida
nmap
Nmap - the Network Mapper. Github mirror of official SVN repository.
angr
A powerful and user-friendly binary analysis platform!
sleuthkit
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
impacket
Impacket is a collection of Python classes for working with network protocols.
w3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
cobra
Source Code Security Audit (源代码安全审计)
wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
ossec-hids
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
commix
Automated All-in-One OS command injection and exploitation tool.
invoke
Pythonic task management & command execution.
binwalk
Firmware Analysis Tool
owtf
Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
Penetration_Testing_POC
搜集有关渗透测试中的POC、脚本等小工具
Sublist3r
Fast subdomains enumeration tool for penetration testers
grr
GRR Rapid Response: remote live forensics for incident response