triplekill

ATAttack

敌后侦察

1million

CMWTAT_Digital_Edition

CloudMoe Windows 10/11 Activation Toolkit get digital license, the best open source Win 10/11 activator in GitHub. GitHub 上最棒的开源 Win10/Win11 数字权利（数字许可证）激活工具！

FingerprintHub

侦查守卫(ObserverWard)的指纹库

goby-poc

439个goby poc，可能会有重复自行判断，来源于网络收集的Goby&POC，实时更新。

Hack-Tools-1

The all-in-one Red Team extension for Web Pentester 🛠

ica2tcp

A SOCKS proxy for Citrix.

Memoryshell-JavaALL

收集内存马打入方式

metrics-agent

系统监控agent

MSRPC-to-ATTACK

A repository that maps commonly used attacks using MSRPC protocols to ATT&CK

nft-marketplace

OpenSea-like NFT marketplace

OA-EXPTOOL

OA综合利用工具，集合将近20款OA漏洞批量扫描

osmedeus

A Workflow Engine for Offensive Security

PentestDB

各种数据库的利用姿势

suricata-rules-1

suricata rule检测规则和lua脚本

threatFeeds

OpenCTI.BR ThreatFeeds Public Repository

whatweb-plus

whatweb 增强版 合并多个指纹库 8000+插件（提供exe版）

XProxy

虚拟旁路由网关，支持内网设备IPv4与IPv6双栈透明代理

Yasso

强大的内网渗透辅助工具集-让Yasso像风一样 支持rdp，ssh，redis，postgres，mongodb，mssql，mysql，winrm等服务爆破，快速的端口扫描，强大的web指纹识别，各种内置服务的一键利用（包括ssh完全交互式登陆，mssql提权，redis一键利用，mysql数据库查询，winrm横向利用，多种服务利用支持socks5代理执行）

awesome-osint

:scream: A curated list of amazingly awesome OSINT

cdncheck_cn

修改：https://github.com/projectdiscovery/cdncheck

clash-core

backup of clash core

CSAgent

CobaltStrike 4.x通用白嫖及汉化加载器

feedupdate

feed update

go-domain-suffix-trie

安全开发基础组件：域名后缀树（Golang实现）

go-ndpi

A nDPI wrapper by golang based on CGO

seq2seq-web-attack-detection

The implementation of the Seq2Seq model for web attack detection. The Seq2Seq model is usually used in Neural Machine Translation. The main goal of this project is to demonstrate the relevance of the NLP approach for web security.

sigset

sigset

testcode

testcode

wapalyzer

🌐 Identify the technologies powering any website. This is a fork of the now deleted Wappalyzer project by @AliasIO and community.