thetachan

headless-chrome

rules

通用的指纹识别规则

AngelSword

Python3编写的CMS漏洞检测框架

antSword

【中国蚁剑】一款跨平台的开源网站管理工具 // AntSword is a cross platform website management tools.

ATTCK-PenTester-Book

ATTCK-PenTester-Book

awvs-decode

The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

awvs_script_decode

解密好的AWVS10.5 data/script/目录下的脚本

chunked-coding-converter

Burp suite 分块传输辅助插件

Code-Audit

ctftool

Interactive CTF Exploration Tool

defcon-vm

Files from my DEFCON CTF VM.

dirmap

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

dnsgen

Generates combination of domain names from the provided input.

EgGateWayGetShell

锐捷EG易网关批量GetShell / Code By:Tas9er

Ehoney

e签宝安全团队积累十几年的安全经验，都将对外逐步开放，首开的Ehoney欺骗防御系统，该系统是基于云原生的欺骗防御系统，也是业界唯一开源的对标商业系统的产品，欺骗防御系统通过部署高交互高仿真蜜罐及流量代理转发，再结合自研密签及诱饵，将攻击者攻击引导到蜜罐中达到扰乱引导以及延迟攻击的效果，可以很大程度上保护业务的安全。护网必备良药

FastJson-JdbcRowSetImpl-RCE

JNDI加载RMIServer，对FastJson的反序列化攻击，附漏洞环境 & 利用Exp。护网杯CTF比赛原型题目“easy_web”。

gitdownload

fot downloadtest

github-dorks

Collection of github dorks and helper tool to automate the process of checking dorks

huwangbei2018_easy_laravel

护网杯2018 easy_laravel Docker环境

KCon

KCon is a famous Hacker Con powered by Knownsec Team.

PandaSniper

Linux C2 框架demo，为期2周的”黑客编程马拉松“，从学习编程语言开始到实现一个demo的产物

PowerShell-AD-Recon

PowerShell Scripts I find useful

qcloudapi-sdk-python

Tencent Cloud SDK for Python

RTF_11882_0802

PoC for CVE-2018-0802 And CVE-2017-11882

seeyon_v3x

shadowbroker

The Shadow Brokers "Lost In Translation" leak

SonarSearch

A MongoDB importer and API for Project Sonars DNS datasets

Sub-Drill

A very (very) simple subdomain finder based on online, free and API-less services.

thetachan.github.io

My blog, A poor security dog.

ThreatMapper

🔥 🔥 Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more. 🔥 🔥