l3m0n

host_scan

这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go

AssetsHunter

资产狩猎框架-AssetsHunter，信息收集是一项艺术~

nemo_go

Nemo是用来进行自动化信息收集的一个简单平台，通过集成常用的信息收集工具和技术，实现对内网及互联网资产信息的自动收集，提高隐患排查和渗透测试的工作效率。

yakit

Cyber Security ALL-IN-ONE Platform

biu

网络资产攻击面梳理

fapro

Fake Protocol Server

IoT-vulhub

IoT固件漏洞复现环境

ebpfkit

ebpfkit is a rootkit powered by eBPF

CVE-2021-1675

C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527

HaE

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

exploits

fastjson-bypass-autotype-1.2.68

fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.

flask_memory_shell

Flask 内存马

CVE-2021-3156

Sudo Baron Samedit Exploit

domain_hunter_pro

domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等

HFish

安全、可靠、简单、免费的企业级蜜罐

DefaultCreds-cheat-sheet

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

BurpCustomizer

Because just a dark theme wasn't enough!

seckill

苗苗 约苗 九价 秒杀 脚本

Tmall_Tickets

天猫超市茅台抢票功能

dcpwn

an impacket-dependent script exploiting CVE-2019-1040

red_team_tool_countermeasures

TailorScan

自用缝合怪内网扫描器，支持端口扫描，识别服务，获取title，扫描多网卡，ms17010扫描，icmp存活探测。

httpx

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

browserless

Deploy headless browsers in Docker. Run on our cloud or bring your own. Free for non-commercial uses.

fscan

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

Microsoft-Activation-Scripts

A Windows and Office activator using HWID / Ohook / KMS38 / Online KMS activation methods, with a focus on open-source code and fewer antivirus detections.

JavaThings

Share Things Related to Java - Java安全漫谈笔记相关内容