snk7

Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

infer

A static analyzer for Java, C, C++, and Objective-C

awesome-malware-analysis

Defund the Police.

android-security-awesome

A collection of android security related resources

sec-chart

安全思维导图集合

Blasting_dictionary

爆破字典

MobileApp-Pentest-Cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

Mind-Map

各种安全相关思维导图整理收集

android

cSploit - The most complete and advanced IT security professional toolkit on Android.

GitHack

A `.git` folder disclosure exploit

go-sdl2

SDL2 binding for Go

GSIL

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

WDScanner

WDScanner平台目前实现了如下功能：分布式web漏洞扫描、客户管理、漏洞定期扫描、子域名枚举、端口扫描、网站爬虫、暗链检测、坏链检测、网站指纹搜集、专项漏洞检测、代理搜集及部署等功能。

php-malware-finder

Detect potentially malicious PHP files

fuzzdb

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

fuxi

Penetration Testing Platform

SecToolSet

The security tool(project) Set from github。github安全项目工具集合

mooder

Mooder是一款开源、安全、简洁、强大的团队内部知识分享平台。

wyportmap

目标端口扫描+系统服务指纹识别

findWebshell

findWebshell是一款基于python开发的webshell检测工具。

awvs_script_decode

解密好的AWVS10.5 data/script/目录下的脚本

CVE-2018-3245

CVE-2018-3245-PoC

doom

DOOM是在thorn上实现的分布式任务分发的ip端口漏洞扫描器

Mobile-App-Pentest

bt-waf-crack

宝塔bt网站防火墙(waf)破解

springcss-cve-2014-3625

spring mvc cve-2014-3625

rsakey-cracker

Tool to brute-force the passphrase of a RSA private key in PEM format.

fenghuangscanner_v3

常见端口及服务弱口令扫描

fuzz_dict

常用的一些fuzz及爆破字典，欢迎大神继续提供新的字典及分类。

struts-scan

Python2编写的struts2漏洞全版本检测和利用工具