tudouya's starred repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
awesome-ml-for-cybersecurity
:octocat: Machine Learning for Cyber Security
IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
php-malware-finder
Detect potentially malicious PHP files
intrigue-core
Discover Your Attack Surface!
subdomain3
A new generation of tool for discovering subdomains( ip , cdn and so on)
chromebackdoor
Chromebackdoor is a PoC of pentest tool, this tool use a MITB technique for generate a windows executable ".exe" after launch run a malicious extension or script on most popular browsers, and send all DOM datas on command and control.
pentestER-Fully-automatic-scanner
DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc
Github_Nuggests
自动爬取Github上文件敏感信息泄露,抓取邮箱密码并自动登录邮箱验证,支持126,qq,sina,163邮箱
MobileApp-Pentest-Cheatsheet
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
rainmap-lite
Rainmap Lite - Responsive web based interface that allows users to launch Nmap scans from their mobiles/tablets/web browsers!
FingerPrint
web应用指纹识别
awesome-chinese-infosec-websites
A curated list of Chinese websites and personal blogs about ethical hacking and pentesting
IncExtensiveList
从扫描器结果分离出的一些大公司泛解析ip列表
Local-file-disclosure-SQL-Injection-Lab
This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. If you have any doubt, ping me at https://twitter.com/IndiShell1046 :)
LearnSQLin
📖面向MySQL注入的一些技巧