ciyixi's starred repositories
SpringBoot-Scan
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
getrails-tool
Get trails tool: Get all urls indexed of target
Information_Collection_Handbook
Handbook of information collection for penetration testing and src
Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
shiro_killer
批量ShiroKey检测爆破工具
free-project-course
Free course for Resume, 整理和搜集网络免费的项目实战课程,包括 Java 项目实战,Python 项目实战,C++ 项目实战等
cnvd_general_assets
配合爱企查和fofa实现注册资本大于5000w公司的公网通用资产查询搜索,方便证书挖掘
BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
AngelSword
Python3编写的CMS漏洞检测框架
ByPassBehinder4J
冰蝎Java WebShell自动化免杀生成
thinkphp_gui_tools
ThinkPHP漏洞综合利用工具, 图形化界面, 命令执行, 一键getshell, 批量检测, 日志遍历, session包含,宝塔绕过
All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms、OA漏洞利用工具,爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。
rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Android-Security-Notes-personal
个人整理的Android安全学习笔记
go-sec-code
Go相关的安全研究
Coremail-scanner
A vulnerability scanner that detects the leakage of Coremail device configuration files.
social-vuln-scanner
Gathers public information on companies to highlight social engineering risk.
RustyProcessInjectors
Just some Rust process injector POCs, nothing weird.
AV_Evasion_Tool
掩日 - 免杀执行器生成工具