sanchahua's repositories
And64InlineHook
Lightweight ARMv8-A(ARM64, AArch64, Little-Endian) Inline Hook Library for Android C/C++
Android_InlineHook
Android内联hook框架
Anti-BlueStacks
绕过BlueStacks内核的反模拟器检测
AUTO-EARN
一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
Caesar
一个全新的敏感文件发现工具
crack_libsgmain
Reverse libsgmain 聚安全sgmain逆向
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the pentesters during an engagement / A valid dataset for the data scientist
ExAndroidNativeEmu
An improved version of AndroidNativeEmu
FartRepair
fart修复脚本
FastjsonScan
一个简单的Fastjson反序列化检测burp插件
FRIDA-DEXDump
A simple script to search & dump dex file on memory.
fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
gadgetinspector
一个通过分析字节码进行污点分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。加入了挖掘Fastjson反序列化gadget chains(曾使用它挖掘到了Fastjson、Jackson通用的gadget chain)和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静态检测功能。
geacon
Practice Go programming and implement CobaltStrike's Beacon in Go
GhostShell
Malware indetectable, with AV bypass techniques, anti-disassembly, etc.
gld
Go shellcode LoaDer
Godzilla
哥斯拉
Leoric
PoC of fighting against force-stop kill process on Android
nuclei
Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.
password_brute_dictionary
口令爆破字典,有键盘组合字典、拼音字典、字母与数字混合这三种类型
privacy
个人数据泄漏检测网站,适用于近期流传的 40GB+ 数据。
rmiscout
RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
Soldier76
PUBG - 罗技鼠标宏 | 兴趣使然的项目,完虐收费宏!点个Star支持一下作者![PUBG - Logitech mouse macro | Support 12 kinds of guns without recoil!]
SuperWordlist
基于实战沉淀下的各种弱口令字典
tabby
A CAT called tabby ( Code Analysis Tool )
WebLogic-Shiro-shell
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell
weibo-web-api
微博 登录 发帖 点赞 web协议
XposedAppium
基于Xposed自动化框架