tuola's starred repositories
ivre
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
WS-Attacker
WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum (https://nds.rub.de/ ) and the Hackmanit GmbH (https://www.hackmanit.de/).
fxcop-security-guard
FxCop rules that aim to help security audit on .NET applications.
awesome-honeypots
an awesome list of honeypot resources
phpsecinfo
PhpSecInfo provides an equivalent to the phpinfo() function that reports security information about the PHP environment, and offers suggestions for improvement.
pythonwebhack
用python实现的web框架建立的在线渗透平台
php-static-analysis-tools
A reviewed list of useful PHP static analysis tools
Pentest-Bookmarks
Database of websites for penetration testing
solutions-bwapp
In progress rough solutions to bWAPP / bee-box
WackoPicko
WackoPicko is a vulnerable web application used to test web application vulnerability scanners.