szliuyujie's repositories
GyoiThon
GyoiThon is a growing penetration test tool using Machine Learning.
password_pwncheck
Kerberos / Windows AD / Linux PAM password change check against breached lists (HIBP), and other rules
lazyrecon
This script is intended to automate your reconnaissance process in an organized fashion
assessment-mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
aws-devsecops-workshop
A continuous security pipeline demo for the AWS DevSecOps Workshop.
jumpserver
Jumpserver是全球首款完全开源的堡垒机,是符合 4A 的专业运维审计系统。
DockerAttack
Various Tools and Docker Images
tactical-exploitation
Modern tactical exploitation toolkit.
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks in support of network security assessments. #nsacyber
igoat
OWASP iGoat - A Learning Tool for iOS App Pentesting and Security by Swaroop Yermalkar
XBruteForcer
Brute Force Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento
railsgoat
A vulnerable version of Rails that follows the OWASP Top 10
BlackWidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
PcapXray
:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
devseccon2018
for DevSecCon2018 workshop
awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
PowerGRR
PowerGRR provides an easy way for using the GRR API from PowerShell running on Windows, macOS and Linux.
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
security-automation-with-ansible-2
Ansible Playbooks for Security Automation with Ansible2 book
bootcamp
A open contribute bootcamp to develop DevSecOps skills...
theZoo
A repository of LIVE malwares for your own joy and pleasure
xxe-lab
一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo
WebAppSec
Web Application Security
FruityWifi
FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM (Raspberry Pi), Raspbian (Raspberry Pi), Pwnpi (Raspberry Pi), Bugtraq, NetHunter.
AssetsView
Assets View资产发现、网络拓扑管理系统
sparta
Network Infrastructure Penetration Testing Tool
inception
一个集审核、执行、备份及生成回滚语句于一身的MySQL自动化运维工具
DevSecOps-Toolchain
DevSecOps Toolchain
lykops
lykops是一套web可视化的运维自动化项目,基于python3+django开发的。可视化、简化执行ansible任务,并提供详细的任务执行报告。