wochicheng

jadx

Dex to Java decompiler

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Apktool

A tool for reverse engineering Android apk files

subfinder

Fast passive subdomain enumeration tool.

rubick

🔧 Electron based open source toolbox, free integration of rich plug-ins. 基于 electron 的开源工具箱，自由集成丰富插件。

AzurLaneAutoScript

Azur Lane bot (CN/EN/JP/TW) 碧蓝航线脚本 | 无缝委托科研，全自动大世界

cve

Gather and update all available and newest CVEs with their PoC.

PoC-in-GitHub

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

go-study-index

Go 语言学习资料索引

SpringBootVulExploit

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

jwt_tool

:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens

subDomainsBrute

A fast sub domain brute tool for pentesters

velociraptor

Digging Deeper....

oletools

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

find-sec-bugs

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

dnsx

dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.

BinAbsInspector

BinAbsInspector: Vulnerability Scanner for Binaries

KubiScan

A tool to scan Kubernetes cluster for risky permissions

cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

kubesploit

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

ESD

Enumeration sub domains(枚举子域名)

godlp

sensitive information protection toolkit

aliyun-cli

Alibaba Cloud CLI

fofax

FOFAX是一个基于fofa.info的API命令行查询工具

Awesome-Binary-Similarity

An awesome & curated list of binary code similarity papers

PyExZ3

Python Exploration with Z3

HoneypotDic

蜜罐抓到的Top密码，根据使用频率排序，持续更新中...

CVE-2021-21972-vCenter-6.5-7.0-RCE-POC

vault_range_poc

Project Vault Range PoC: Know your enemy and yourself to build better defense-in-depth solution!

Pyexz3Plus

Try to make pyexz3 to do string symbol execution.