tudouya's starred repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
LearnSQLin
📖面向MySQL注入的一些技巧
chromebackdoor
Chromebackdoor is a PoC of pentest tool, this tool use a MITB technique for generate a windows executable ".exe" after launch run a malicious extension or script on most popular browsers, and send all DOM datas on command and control.
Local-file-disclosure-SQL-Injection-Lab
This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. If you have any doubt, ping me at https://twitter.com/IndiShell1046 :)
intrigue-core
Discover Your Attack Surface!
php-malware-finder
Detect potentially malicious PHP files
IncExtensiveList
从扫描器结果分离出的一些大公司泛解析ip列表
subdomain3
A new generation of tool for discovering subdomains( ip , cdn and so on)
awesome-chinese-infosec-websites
A curated list of Chinese websites and personal blogs about ethical hacking and pentesting
pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
awesome-ml-for-cybersecurity
:octocat: Machine Learning for Cyber Security
Github_Nuggests
自动爬取Github上文件敏感信息泄露,抓取邮箱密码并自动登录邮箱验证,支持126,qq,sina,163邮箱
MobileApp-Pentest-Cheatsheet
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
FingerPrint
web应用指纹识别
pentestER-Fully-automatic-scanner
DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc
rainmap-lite
Rainmap Lite - Responsive web based interface that allows users to launch Nmap scans from their mobiles/tablets/web browsers!
IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.