liu0tufang's repositories
antispy
AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.
APT_Digital_Weapon
Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
AssetScan
资产探测工具,检测存活,检测风险端口,常规端口,全端口探测等等,对探测的端口的脆弱面进行安全分析进行
awesome-cyber-security
[Moved to: https://github.com/alphaSeclab/awesome-cyber-security ][Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
awvs_190703137
Docker Awvs
BlockchainSecurityTutorial
NoneAge Blockchain Security Tutorial
CS-checklist
PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penestration checklist
CVE-2019-13272
CVE-2019-13272
DBScanner-1
未授权访问+弱口令批量检测
dpia
GDPR个人数据合规评估
fanhaodaquan
番号大全。
hunter
Hunter作为中通DevSecOps闭环方案中的一环,扮演着很重要的角色,开源之后希望能帮助到更多企业。
internet-security
互联网资安风控实战
ispy
ispy V1.0 - Eternalblue(ms17-010)/Bluekeep(CVE-2019-0708) Scanner and exploit ( Metasploit automation )
jxwaf
JXWAF(锦衣盾)是一款基于openresty(nginx+lua)开发的web应用防火墙
Ladon
大型内网渗透扫描器&Cobalt Strike,包含信息收集/端口扫描/服务识别/网络资产/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010、Weblogic、ActiveMQ、Tomcat等,密码口令爆破含(Mysql、Oracle、MSSQL)、FTP、SSH(Linux)、VNC、Windows(IPC、WMI、SMB)等,可高度自定义插件支持.NET程序集、DLL(C#/Delphi/VC)、PowerShell等语言编写的插件,支持通过配置INI批量调用任意外部程序或命令,EXP生成器一键生成Web漏洞POC,可快速扩展扫描或利用能力。支持Cobalt Strike插件化直接内存加载Ladon扫描快速拓展内网横向移动
loginlog_windows
读取登录过本机的登录失败或登录成功的所有计算机信息,在内网渗透中快速定位运维管理人员。 Reference: https://github.com/ysrc/yulong-hids
logkit
Very powerful server agent for collecting & sending logs & metrics with an easy-to-use web console.
Mobile-Security-Framework-MobSF
Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static analysis, dynamic analysis, malware analysis and web API testing.
passive-scan-client
Burp被动扫描流量转发插件
qnsm
QNSM is network security monitoring framework based on DPDK.
sec-tool-list
More than 16000 security tools, sorted by star count. Both in markdown and json format.
Security-Data-Analysis-and-Visualization
2018-2020青年安全圈-活跃技术博主/博客
sysmonx
SysmonX - An Augmented Drop-In Replacement of Sysmon
vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
vulnerability-list
在渗透测试中快速检测常见中间件、组件的高危漏洞。
WatchAD
AD Security Intrusion Detection System
wesng
Windows Exploit Suggester - Next Generation
yulong-hids
一款由 YSRC 开源的主机入侵检测系统