Giters
onlyfriend

onlyfriend

Geek Repo

1

followers

11

following

69

stars

Github PK Tool:Github PK Tool

onlyfriend's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonLicense:MITStargazers:60544Issues:1832Issues:0

Python-programming-exercises

100+ Python challenging programming exercises

Stargazers:26735Issues:829Issues:83

scan4all

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Language:GoLicense:BSD-3-ClauseStargazers:5473Issues:65Issues:107

POC

收集整理漏洞EXP/POC,大部分漏洞来源网络,目前收集整理了1100多个poc/exp,长期更新。

Stargazers:3659Issues:158Issues:11

MDUT

MDUT - Multiple Database Utilization Tools

Language:JavaLicense:AGPL-3.0Stargazers:1954Issues:40Issues:58

APIKit

APIKit:Discovery, Scan and Audit APIs Toolkit All In One.

Language:JavaLicense:GPL-3.0Stargazers:1886Issues:21Issues:64

awesome-cloud-security

awesome cloud security 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员

License:Apache-2.0Stargazers:1751Issues:27Issues:0

Apt_t00ls

高危漏洞利用工具

Language:JavaStargazers:1663Issues:28Issues:13

SELKS

A Suricata based IDS/IPS/NSM distro

Language:ShellLicense:GPL-3.0Stargazers:1458Issues:99Issues:406

2023Hvv

2023 HVV情报速递~

Stargazers:1451Issues:44Issues:5

Fvuln

F-vuln(全称:Find-Vulnerability)是为了自己工作方便专门编写的一款自动化工具,主要适用于日常安全服务、渗透测试人员和RedTeam红队人员,它集合的功能包括:存活IP探测、开放端口探测、web服务探测、web漏洞扫描、smb爆破、ssh爆破、ftp爆破、mssql爆破等其他数据库爆破工作以及大量web漏洞检测模块。

Stargazers:1070Issues:16Issues:25

bypass-av-note

免杀技术大杂烩---乱拳也打不死老师傅

Stargazers:1067Issues:16Issues:0

PasswordDic

2011-2019年Top100弱口令密码字典 Top1000密码字典 服务器SSH/VPS密码字典 后台管理密码字典 数据库密码字典 子域名字典

Stargazers:924Issues:15Issues:10

vulnerability

收集、整理、修改互联网上公开的漏洞POC

Language:GoLicense:MITStargazers:800Issues:33Issues:3

ByPassBehinder4J

冰蝎Java WebShell自动化免杀生成

Stargazers:765Issues:14Issues:4

DudeSuite

Dude Suite Web Security Tools

Stargazers:728Issues:11Issues:34

ultimaste-nuclei-templates

极致攻防实验室 nuclei 检测 POC

Stargazers:600Issues:25Issues:1

FofaMap

FofaMap是一款基于Python3开发的跨平台FOFA API数据采集器,支持普通查询、网站存活检测、统计聚合查询、Host聚合查询、网站图标查询、批量查询等查询功能。同时FofaMap还能够自定义查询FOFA数据,并根据查询结果自动去重和筛选关键字,生成对应的Excel表格。另外春节特别版还可以调用Nuclei对FofaMap查询出来的目标进行漏洞扫描,让你在挖洞路上快人一步。

Language:PythonLicense:Apache-2.0Stargazers:477Issues:11Issues:33

YongYouNcTool

用友NC系列漏洞检测利用工具,支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等

Language:JavaStargazers:462Issues:3Issues:2

Find-SomeThing

红队批量脆弱点搜集工具

Language:PythonLicense:CC0-1.0Stargazers:321Issues:8Issues:10

evil_minio

EXP for CVE-2023-28434 MinIO unauthorized to RCE

Language:GoLicense:AGPL-3.0Stargazers:302Issues:3Issues:6

HAC_Bored_Writing

各种漏洞批量扫描poc、exp,涵盖未授权、RCE、文件上传、sql注入、信息泄露等

Language:PythonStargazers:281Issues:4Issues:2

Caesar

一个全新的敏感文件发现工具

Language:GoStargazers:267Issues:3Issues:0

Dirscan

Dirscan是一款由go编写的高性能、高并发的目录扫描器,现在已经支持GET、HEAD、递归扫描、代理、爬虫等功能功能,后续努力实现更多功能。

Language:GoLicense:MITStargazers:214Issues:8Issues:13

cf

云环境利用框架(Cloud exploitation framework)主要用来方便红队人员在获得 AK 的后续工作。

Language:GoLicense:Apache-2.0Stargazers:212Issues:1Issues:0

fs

符合个人渗透开发习惯的fscan

Language:GoLicense:MITStargazers:193Issues:4Issues:3

YonyouNC_Tip

Language:PythonStargazers:168Issues:2Issues:0

blindSQLi

A python based blind SQL injection exploitation script

Language:PythonStargazers:133Issues:6Issues:0

swagger-scan

对在测试中常见的swagger页面泄露 ,进行批量的测试,未授权和被动扫描

Language:PythonStargazers:112Issues:1Issues:1

CVE-2023-32315-Openfire-Bypass

openfire rce

Language:JavaStargazers:1Issues:0Issues:0