易悟's repositories
Mining-the-Social-Web-2nd-Edition
The official online compendium for Mining the Social Web, 2nd Edition (O'Reilly, 2013)
Android-Responder
Scripts for running Responder.py in an Android (rooted) device.
apt2
automated penetration toolkit
cipherli.st
Ciplerli.st - strong ciphers for NGINX, Apache and Lighttpd
CrackMapExec
A swiss army knife for pentesting Windows/Active Directory environments
EQGRP-Free-Files
EQGRP-Free-Files here.,
ews-java-api
A java client library to access Exchange web services. The API works against Office 365 Exchange Online as well as on premises Exchange.
fancybear
Fancy Bear Source Code
Firewall
美国国家安全局NSA下属方程式黑客组织(Equation Group)被The Shadow Brokers(影子经纪人)hack出来的并免费分享的源码
FrameworkBenchmarks
Source code for the framework benchmarking project
Generate-Macro
This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.
gr-gsm
Gnuradio blocks and tools for receiving GSM transmissions
Hijacker
Aircrack, Airodump, Aireplay, MDK3 and Reaver GUI Application for Android - Requires monitor mode
jsfuck
Write any JavaScript with 6 Characters: []()!+
JustTrustMe
An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning
LinEnum
Scripted Local Linux Enumeration & Privilege Escalation Checks
log4jdbc
log4jdbc is a Java JDBC driver that can log SQL and/or JDBC calls (and optionally SQL timing information) for other JDBC drivers using the Simple Logging Facade For Java (SLF4J) logging system.
ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
ng-boot-oauth
oauth2 demo with angularjs and springboot
openftp4
A list of all FTP servers in IPv4 that allow anonymous logins.
public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups
research
comma.ai for the people to experiment with
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
Resty
The minimalist framework of RESTful(server and client) - Resty
routersploit
The Router Exploitation Framework
SQLiScanner
Automatic SQL injection with Charles and sqlmapapi
tesseract
Tesseract Open Source OCR Engine (main repository)
XRulez
A command line tool for creating malicious outlook rules
zhihu-py3
[不再维护] Zhihu UNOFFICIAL API library in python3, with help of bs4, lxml, requests and html2text.