loseyourself1's starred repositories
proxy_pool
Python ProxyPool for web spider
php_filter_chains_oracle_exploit
A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
v2ray-core
A platform for building proxies to bypass network restrictions.
rsa_sign2n
Deriving RSA public keys from message-signature pairs
jwt-editor
A Burp Suite extension for creating and editing JSON Web Tokens. This tool supports signing and verification of JWS, encryption and decryption of JWE and automation of several well-known attacks against applications that consume JWT.
jwt-editor
A Burp Suite extension and standalone application for creating and editing JSON Web Tokens. This tool supports signing and verification of JWS, encryption and decryption of JWE and automation of several well-known attacks against applications that consume JWT.
c-jwt-cracker
JWT brute force cracker written in C
CS-Situational-Awareness-BOF
Situational Awareness commands implemented using Beacon Object Files
GameSentry
一款提高安全测试效率的工具
sqlmap-gui
基于官版本 SQLMAP 进行人工汉化,并提供GUI界面及多个自动化脚本
flask-session-cookie-manager
:cookie: Flask Session Cookie Decoder/Encoder
CTF-Training
收集各大比赛的题目和Writeup
BJDCTF2020_January
A CTF freshman competition organized by Hangzhou Normal University, Jiangsu University of Science and Technology, and Jiangsu University
All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms、OA漏洞利用工具,爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。
Ladon
Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。Ladon 12.2内置262个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息,高危漏洞检测16个含MS17010、Zimbra、Exchange
ShuiZe_0x727
信息收集自动化工具
AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。