laowang1026

Sn1per

Attack Surface Management Platform

agentscope

Start building LLM-empowered multi-agent applications in an easier way.

pentest-tools

A collection of custom security tools for quick needs.

S3Scanner

Scan for misconfigured S3 buckets across S3-compatible APIs!

java-sec-code

Java web common vulnerabilities and security code which is base on springboot and spring security

HUNT

SpringBoot-Scan

针对SpringBoot的开源渗透框架，以及Spring相关高危漏洞利用工具

wordlists

Real-world infosec wordlists, updated regularly

noPac

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

ApkAnalyser

一键提取安卓应用中可能存在的敏感信息。

Log4j2-CVE-2021-44228

Remote Code Injection In Log4j

wmiexec-RegOut

Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-software in lateral movement like WMIHACKER.

Server-Side-Template-Injection

Template injection allows an attacker to include template code into an existant (or not) template. A template engine makes designing HTML pages easier by using static template files which at runtime replaces variables/placeholders with actual values in the HTML pages

hugb_hello_world

Sample program used to show students Gradle in action.

403fuzzer

Fuzz 403/401ing endpoints for bypasses

hugb_hello_world

Sample program used to show students Gradle in action.

Log4j2-RCE-Scanner

BurpSuite Extension: Log4j2 RCE Scanner