原来是老王's repositories
APIKit
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
BurpFastJsonScan
一款基于BurpSuite的被动式FastJson检测插件
BurpShiroPassiveScan
一款基于BurpSuite的被动式shiro检测插件
CVEs
A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.
dora
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
EHole
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
FinalShellDecodePass
FinalShellDecodePass 加密解密
flink
Apache Flink
go-find
A useful file search tool
HackingKubernetes
This repository contain any information that can be used to hack Kubernetes
interactsh-collaborator
Burpsuite plugin for Interact.sh
JDBC-Attack
JDBC Connection URL Attack
jolokia-exploitation-toolkit
jolokia-exploitation-toolkit
jsForward
解决web及移动端H5数据加密Burp调试问题
k0otkit
k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
malicious-pdf
Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator
NetUser
使用windows api添加用户,可用于net无法使用时.分为nim版,c++版本,RDI版,BOF版。
PentestNote
一些渗透姿势记录
PwdBUD
一款SRC密码生成工具,尝试top字典无果后,可以根据域名、公司名等因素来生成特定的字典
RelayX
NTLM relay test.
SharpADUserIP
提取DC日志,快速获取域用户对应IP地址
TProxer
A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
uro
declutters url lists for crawling/pentesting
Web-Security-Learning
Web-Security-Learning
Webpackfind
Webpack自动化信息收集
yakit
yak gRPC Client GUI - 集成化单兵工具平台
zipcreater
ZipCreater主要应用于跨目录的文件上传漏洞的利用,它能够快速进行压缩包生成。