songofhack's repositories
awesome-pentest-note
渗透测试☞经验/思路/总结
checkn1x
Light (~50MB) images for jailbreaking iOS devices
CobaltStr4.4
Cobalt Strike is a commercial, full-featured, remote access tool that bills itself as "adversary simulation software designed to execute targeted attacks and emulate the post-exploitation actions of advanced threat actors". Cobalt Strike’s interactive post-exploit capabilities cover the full range of ATT&CK tactics, all executed within a single, integrated system.
conti-leaks-backup
backup of the conti leaks rar (not decrypted do it ur self dumbass)
Conti_Leaked
All about Conti Leak on 1 March 2022
CppGuide
C/C++学习,后端开发进阶指南。
CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
DeepFaceLab
DeepFaceLab is a tool that utilizes machine learning to replace faces in videos. Includes prebuilt ready to work standalone Windows 7,8,10 binary (look readme.md).
DNSlog-GO
DNSLog-GO 是一款golang编写的监控 DNS 解析记录的工具,自带WEB界面
flamingo
flamingo 一款高性能轻量级开源即时通讯软件
garss
Github Actions采集RSS, 打造无广告内容优质的头版头条超赞宝藏页
ghidra
Ghidra is a software reverse engineering (SRE) framework
goblin
一款适用于红蓝对抗中的仿真钓鱼系统
Godzilla
哥斯拉
HackReport
渗透测试报告/资料文档/渗透经验文档/安全书籍
immunity---canvas-7.26--leak-
this is the leak
Information_Security_Books
150本信息安全方面的书籍书籍(持续更新)
interactsh
An OOB interaction gathering server and client library
JNDI-Inject-Exploit
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
PaddleOCR
Awesome multilingual OCR toolkits based on PaddlePaddle (practical ultra lightweight OCR system, support 80+ languages recognition, provide data annotation and synthesis tools, support training and deployment among server, mobile, embedded and IoT devices)
PenetrationTest-Tips
渗透测试,渗透测试小技巧,渗透测试Tips,师傅们跟我一起维护更新吧~
Pentest_Note
渗透测试常规操作记录
poc--exp
常用渗透poc收集
pocsuite3
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
post-hub
后渗透:学习、实战
QingScan
一个漏洞扫描器粘合剂,添加目标后30款工具自动调用;支持 web扫描、系统扫描、子域名收集、目录扫描、主机扫描、主机发现、组件识别、URL爬虫、XRAY扫描、AWVS自动扫描、POC批量验证,SSH批量测试、vulmap。
tools
Python渗透漏洞工具
winafl
A fork of AFL for fuzzing Windows binaries